6 days ago Be among the first 25 applicants
Overview
We are seeking a highly skilled IAM Architect with deep expertise in Identity and Access Management (IAM), Data Privacy, and Cloud Security. This role will be responsible for designing and delivering enterprise-grade IAM authorization architectures, data access controls, and privacy frameworks to secure mission-critical systems and data. You will collaborate with stakeholders, security engineers, and development teams to establish reference architectures, models, and governance standards that ensure scalable, compliant, and secure access management across the enterprise.
Responsibilities
- Architect IAM Solutions: Define enterprise-wide IAM authorization policies and frameworks (PBAC, ABAC, RBAC). Develop reference architectures, conceptual models, logical models, and physical models for IAM and data security. Integrate identity governance workflows (lifecycle, entitlements, delegated administration, access governance automation).
- Data Privacy & Access Control
- Design and implement data access control policies for structured and unstructured data.
- Integrate data governance tools (e.g., Microsoft Purview) for compliance, classification, and monitoring.
- Establish data protection frameworks (encryption, key management, recovery, secure storage).
- Cloud Security Architecture
- Design secure cloud-native architectures on Azure (primary), aligned with CIS, NIST, ISO 27001 standards.
- Implement application onboarding workflows with SailPoint and Entra ID.
- Collaborate on unified access and authorization solutions across enterprise applications (including Salesforce).
- Automation & Governance
- Automate security and IAM deployments via CI/CD pipelines (Azure DevOps) and Infrastructure-as-Code (Terraform).
- Develop developer guidance, documentation, and runbooks to ensure consistent IAM adoption.
- Present architectural solutions and roadmap progress to senior stakeholders and leadership.
Required Skills & Experience
- IAM Expertise: 8+ years of hands-on IAM and cloud architecture experience; Strong command of IAM tools: Entra ID (Azure AD), SailPoint, PlainID; Proven experience designing and implementing authorization frameworks (PBAC, ABAC, RBAC).
- Cloud & Data Security: Advanced knowledge of Azure security services (AWS/GCP a plus); Experience with data governance & privacy tools (e.g., Microsoft Purview); Proficiency in data protection, encryption, and compliance frameworks (GDPR, HIPAA, SOC2).
- Technical Foundations: Strong background in .NET, APIs, OAuth/JWT, with working knowledge of C#, JavaScript, Python; Familiarity with databases (SQL Server, Postgres, Cosmos DB, Oracle) and their IAM/security models; Understanding of enterprise architecture frameworks (TOGAF, Zachman).
- Soft Skills: Excellent stakeholder engagement and presentation skills; Strong problem-solving mindset and ability to simplify complex IAM challenges; Ability to work independently or lead a small architecture team.
Nice to Have
- Certifications: Azure Solutions Architect Expert, Azure Security Engineer, CISSP, AWS/GCP Architect.
- Experience with data loss prevention (DLP), classification, and labeling strategies.
- Exposure to continuous security monitoring, firewalls, and network security integration.
Seniority level
- Mid-Senior level
Employment type
- Contract
Job function
- Design, Art/Creative, and Information Technology
- Industries
- IT Services and IT Consulting
Equal Opportunity
Papigen is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or any other characteristic protected by applicable law. We encourage candidates from underrepresented groups to apply.
#J-18808-Ljbffr