Identity and Access Management Architect

Requirements: 2FA, Active Directory, adfs, IAM, kerberos, pingfederate, saml, two-factor authentica

Location:New York, NY

Job Type:Full Time

Salary: $170k - $220k

Description of Responsibilities

Our Infrastructure team has an exciting opportunity for a Senior Identity and Access Management Architect.  This person will take ownership of the complex Identity and Access Management (IAM) solutions and development of frameworks for the enterprise-wide platform.

Key responsibilities:

● Responsible for global Identity and Access Management framework, centered around AD and third party identity management technologies,

● Develop and manage Logical Access policies, processes and workflows

● Design and manage AuthZN systems that reflect state-of-the-art user-security best practices and compliance requirements, ensuring a focus on balancing security effectiveness without introducing material operational friction – strong focus on DevOps and team enablement

● Entitlement management; Enterprise directory architecture and design; Role Based Access Control; Single sign on; Identity federation; and/or privileged access management.

● Strong experience with IAM security practices in cloud based infrastructures (specifically AWS) is required

● The ability to work well in a team setting, managing through influence

● Actively participate in planning and strategy discussions and help define the organization and service delivery roadmap


● Manage core IAM capabilities to include: IGA, PKI, UBA, password vaulting, MFA, and SSO

● Experience with reading / writing code in an object oriented programming language (Java, C#, Python, etc.) and with web services (JSON, SOAP, XML, etc.)

● Basic understanding in writing SQL and PL/SQL as well as understanding of relational databases

● Strong customer service management and the understanding of a high quality service delivery experience

● Develop monitoring and report on the health, effectiveness and efficiency of IAM services

● Ability to work off-business hours in some cases, depending on logical access requests/demands

● Design solutions for foundational IAM principals including: least privilege access, password management, audit logging, certificate management, privileged access and user behavior analytics

● 5 years of experience in Logical Access or a combination of experience in Logical Access and related functions

● Experience in account provisioning tasks involving Windows/Active Directory, and Linux required

● Experience in building Identity & Access Management programs, including working with integrators, eliciting workflows and key business processes

● Ability to work in dynamic changing organization and be able to adjust as business requirements change

● ITIL V3 & DevOps experience

● Upbeat, positive, hands-on management

● Self-starter, resolution-minded, outside the box thinker and doer

● Ability to successfully interface with a wide range of personnel within the Company

Apply for this job