iAM Architect - SAML Federation

Job Description :

Role : IAM Architect

Role Overview :

The IAM Architect is responsible for designing, implementing, and governing enterprise-wide Identity and Access Management (IAM) solutions.

This role ensures secure, scalable, and compliant access to systems, applications, and data.

The IAM Architect will collaborate with business leaders, IT teams, and security stakeholders to establish IAM strategies, roadmaps, and technical architectures aligned with organizational goals.

Key Responsibilities :

IAM Strategy & Roadmap :

- Define and drive the IAM strategy, standards, and architecture in alignment with enterprise security policies and business needs.

Management, and Federation.

Solution Architecture & Design :

- Design IAM solutions across on-premises and cloud (Azure AD, AWS IAM, GCP IAM).

- Architect solutions for Authentication, Authorization, SSO, MFA, RBAC/ABAC, Federation (SAML/OAuth/OIDC), and Directory Services.

- Provide technical leadership in deploying IAM tools such as SailPoint, Okta, ForgeRock, Ping Identity, CyberArk, Saviynt, etc.

Implementation & Integration :

- Lead IAM solution implementation, ensuring integration with enterprise applications, HR systems, ERP, CRM, and cloud platforms.

- Oversee API, LDAP, SCIM, and connector-based integrations.

Governance & Compliance :

- Ensure IAM solutions meet compliance requirements (SOX, GDPR, HIPAA, ISO27001, NIST).

- Establish policies for privileged access management, audit logging, and reporting.

- Conduct regular security assessments, gap analysis, and risk remediation.

Collaboration & Leadership :

- Partner with business and IT stakeholders to understand identity needs and translate them into secure solutions.

- Stay updated on IAM trends, zero-trust security models, and emerging technologies.

Qualifications & Skills :

Education : Bachelors/Masters in Computer Science, Information Security, or related field.

Experience :

- 8 - 12+ years in Information Security/Identity Management.

- 4 - 5+ years as IAM Solution Architect or similar leadership role.

Technical Expertise :

- Strong knowledge of IAM frameworks and protocols (SAML, OAuth2.0, OIDC, SCIM, LDAP, Kerberos).

- Hands-on experience with at least one leading IAM platform (e.g., SailPoint, Okta, Ping, ForgeRock, CyberArk, Saviynt).

- Familiarity with cloud IAM (Azure AD, AWS IAM, GCP IAM).

- Understanding of Zero Trust, PAM, CIAM, and IGA concepts.

Soft Skills :

- Excellent communication, stakeholder management, and leadership skills.

- Ability to translate complex IAM concepts into business-friendly language.

Preferred Certifications :

- Certified Identity and Access Manager (CIAM).

- Certified Information Security Manager (CISM).

- Vendor-specific certifications (Okta Certified Architect, SailPoint IdentityNow

Engineer/Architect, CyberArk Defender/Guardian, etc.