Summary
The job is for an experienced Identity and Access Management (IAM) Solution Architect to work remotely for 6 months on a client's multi-year IAM transformation project. The candidate should have a strong background in designing IAM architecture for complex environments.
Requirements
- 7-10 years’ experience working in the Identity and Access management (IAM) information security space in an architecture capacity
- 5-7 years’ experience with the following: Workforce IAM, Consumer IAM (CIAM), Federation and single sign-on (B2B and B2C), National Institute of Standards and Technology (NIST) 800-53, NIST 800-63, NIST Cybersecurity Framework (CSF)
- Experience creating high and low level IAM architecture patterns
- Experience developing and implementing IAM strategies and roadmaps
- Experience with major IAM platforms including: Microsoft Active Directory, Microsoft Azure Active Directory, Oracle Identity Manager, F5 Access Policy Manager (APM), Optimal IDM
- A solid understanding of access control patterns including role-based access control (RBAC) and attribute-based access control (ABAC)
- Experience consulting on all phases of a full IAM lifecycle including: Book of record (BoR) to identity management system (IDMS) identity feeds, IDMS to directory and application identity provisioning, Application consumption of identity
- Strong written and verbal communication skills
- Supporting communication of IAM efforts to all levels of an organization including C-Level
- Experience with IAM governance including: Information security policies and procedures, User lifecycle management (provisioning, de-provisioning, and maintenance), User and access recertification
- Understanding of major authentication and authorization protocols including: OAuth, OpenID Connect, SAML 2.0, Kerberos NTLM Authentication, Unix/Linux authentication and authorization
- Business outcomes mindset
- Directory services design experience such as AD and AAD
- Excellent interpersonal communication skills with strong spoken and written English
- Scripting experience
- Implementation experience
- Collaborative team worker
Responsibilities
- Support omni-channel standard patterns based on the target state IAM solution architecture
- Drive workforce IAM solution architecture and scoping of engineering design
- Create engineering diagrams to support the overall solution architecture
- Maintain and update the overall solution architecture
- Solution Architecture and Engineering Diagrams for technical discovery and integration with other systems
- Support the development of basic use cases / role models for Day 1 (Birthright) access
- Create engineering diagrams for implementation into IDMS
- Support the implementation of target state digital identity records for employees, contractors, and robots
- Provide access management architecture and engineering services
- Support the architecture and engineering for IDMS compliance across business sectors
- Support architecture and engineering for enhancing access recertifications for better end user experience
- Support AD / AAD architecture and engineering requirements
Benefits
6-month remote project
