IAM Architect (Njus)

Purpose of Position

We are seeking a skilled and experienced Identity and Access Management (IAM) Architect to join our team. As an IAM Architect, you will be responsible for designing and implementing robust identity and access management solutions to ensure the security and integrity of our organization's digital assets. You will collaborate with cross-functional teams to understand business requirements, assess existing IAM infrastructure, and develop strategic roadmaps to enhance our security posture.

Tasks and Responsibilities

• Architecture Design: Design and architect IAM solutions that align with business objectives, regulatory requirements, and industry best practices. Develop IAM architecture blueprints, models, and documentation to guide implementation and integration efforts.

• Identity Governance: In partnership with the Cybersecurity GRC team, define and implement identity governance processes to manage user identities, roles, and entitlements effectively. Establish processes for identity lifecycle management, access provisioning, de-provisioning, and role-based access control (RBAC).

• Access Control: Develop access control strategies and mechanisms to enforce least privilege principles and prevent unauthorized access to sensitive resources.

• Identity Federation: Configure identity federation solutions to enable secure authentication and authorization across heterogeneous IT environments. Establish trust relationships with external identity providers (IdPs) and federate identities seamlessly across cloud and on-premises applications.

• Security Integration: Collaborate with cybersecurity teams to integrate IAM solutions with other security controls such as security information and event management (SIEM), privileged access management (PAM), and data loss prevention (DLP) systems. Ensure IAM systems comply with relevant security standards and regulations.

• Vendor Management: Evaluate and select IAM technologies, products, and vendors based on technical requirements, scalability, interoperability, and cost-effectiveness.

• Technical Leadership: Provide forward-looking technical leadership and guidance to IAM engineers, administrators, and developers. Leverage automation whenever possible. Mentor team members, conduct knowledge sharing sessions, and promote a culture of continuous learning and improvement within the IAM domain.

Education

Bachelor's in Information Technology or Computer Information Systems

Certifications and Licenses

Years of Experience

4-6 years of experience

Core Competencies

Strives for Positive Results

Curiosity

Collaboration

Adaptability

Service-Oriented

Knowledge, Skills, Abilities and Other (KSAOs)

• In-depth knowledge of IAM concepts, standards, protocols, and technologies such as SAML, OAuth, OpenID Connect, SCIM, LDAP, Kerberos, etc.

• Hands-on experience with IAM platforms and tools such as Okta, Microsoft Azure AD, Delinea, Keyfactor, etc.

• Strong understanding of cybersecurity principles, risk management, and regulatory compliance requirements (e.g., GDPR, HIPAA, PCI DSS).

• Outstanding organizational, interpersonal and communication (written and verbal) skills

• Attention to detail, organized and able to work and research independently

• Demonstrated adaptability, analytical and problem-solving ability, and attention to detail