Position Description: The IGA/IAM Senior Architect (Identity Governance & Administration / Identity and Access Management) with strong experience in either IGA or IAM domains to build secure solutions and accelerate the delivery of Identity and Access Management professional services and capabilities.
Help drive the adoption of modern Identity and Access Management solutions in collaboration with various teams and client stakeholders
Lead the experimentation with emerging IGA/IAM technologies and tools, as well as drive innovation with strategic partners to help drive reusable and value-added solutions
Develop an understanding of the needs and requirements of IGA/IAM solutions
Research and evaluate available IGA/IAM technologies to meet customer requirements.
Consult with customers to evaluate functional requirements.
Coordinate with the business and technical teams to clarify functional requirements
Create detailed work-stream proposals which include, functional and data business requirements, process flows, use cases, information needs, test scenarios, and obtain associated functional design specification approvals
Develop and document architecture, capabilities, and constraints for design procedures and processes.
Prepare detailed workflow charts and diagrams that describe input, output, and logical operation, and convert them into a series of configurations in IGA/IAM system
Guide in translation of functional / non-functional requirements into technical solutions.
Translate proposed capabilities into technical requirements.
Build, install, configure, and test IGA/IAM solution as per design finalized. Responsible to install, integrate and deploy any of the following - SailPoint, ClearSkye, CyberArk, Okta, ForgeRock, Savyint, Thycotic, Beyond Trust products in client environments
Design and develop automated provisioning and reconciliation / aggregation of IT resources.
Experience with ServiceNow development or integration highly preferable
Troubleshooting and resolving system service failures by identifying and analyzing the situation and providing corrective actions.
Working with and often managing a multi-shore delivery team to provide cost-effective consulting services.
Oversee installation, implementation, configuration, and support of IGA/IAM system components.
Develop and Review IGA/IAM software testing and validation procedures.
Serve as a liaison to other teams in planning, coordination, development and deployment of multi-team enhancement or projects
Ensure delivery of project and enhancement requirements meet the requirements defined by the business customer
Ensure projects are delivered within the budget outlined in the SOW
Participate in business proposals, contracts, and RFP process
Work closely with dispersed resources throughout multiple cities and countries
Assist in recruiting of security, risk, and compliance professionals
Participate in the company practice development through thought leadership, attending industry conferences, tradeshows, and case studies
Understands role-based metrics and apply to meet expectations
Available during a standard workday 8-5 per client time zone unless otherwise specified
8+ years of overall experience in delivery and sales support of IT, Cybersecurity and/or Identity and Access Management solutions
5-7 years of IGA/IAM experience; Strong working experience working with IGA/IAM technologies (SailPoint, Oracle, CA Identity Suite, ForgeRock, ClearSkye, or Okta etc.)
Experienced in architecture, design and deployment of industry leading identity and access solutions across a hybrid, on-premises, multi-cloud and/or SaaS environments
Proficiency in HTTPS, XML and/or Java
Aptitude in technical research and the willingness to perform necessary research
Ability to work with others to create, implement and teach new protocols
Knowledge of current compliance regulations and the solutions necessary to meet them
Experienced in architecting and designing IGA/IAM solutions; understanding AS-IS architecture to come up with a TO-BE architecture
Bachelor's degree from an accredited college/university
Strong process flow and diagramming skills (Visio application).
Expert level understanding of identity management and lifecycle, privileged access, access governance, contextual access, authorization, authentication, access delegation, directory services, access reviews and certifications, user lifecycle management, immutable vs mutable identifiers, and interoperability between the components
Experience with identity standards and protocols including SAML, OAuth, OIDC, SCIM
Experience with best-practice and implementation frameworks for zero trust, SSO, MFA, adaptive and risk-based authentication, ephemeral credentials, secrets management, role/attribute/policy-based access controls, and cloud native identity and access solutions
Experience implementing and integrating with enterprise-grade systems that are highly scalable, performant, reliable, and secure in global environments
Experience with published standards, guidance, best practices, profiles, and frameworks related to IGA/IAM and cyber security and practical implementation in an enterprise (NIST, ISO, SANS CIS Critical Security Controls)
Experience with at least one of the major cloud providers (AWS, Azure, GCP), cloud-native architectures, data security and integration services
Experience with deployment orchestration, automation, and security configuration management (Jenkins, Puppet, Chef, etc)
Experience with SecDevOps tools for CI/CD, version control, Infrastructure as Code (ex: GoCD, GitHub, Ansible, Terraform)
Should be having excellent problem-solving skills, able to balance strategic plans with short-term tactical actions and iterative improvements
Coordinate and collaborate with stakeholders to build strong relationships that enable robust debate, and survive periodic disagreements regarding priorities
Relevant IGA/IAM, security, risk and technology certifications are a plus