Senior Identity Architect - Nashville, 37201, United States of America

Job Summary:

We are currently seeking an experienced Identity Architect to lead architectural design, strategic planning, and delivery across the full Identity & Access Management landscape. The Identity Architect will play a critical role in shaping UMG’s global identity ecosystem across areas such as Access Management, IGA, PAM, Directory Services, and PKI.

This hands-on role will drive scalable and secure identity solutions, leading complex integrations across on-premises and multi-cloud environments. The successful candidate will possess deep technical expertise, a strategic mindset, and a strong ability to influence cross-functional teams and executive stakeholders.

Job Functions:

• Architect and design enterprise-wide IAM solutions aligned with business goals, security policies, and compliance requirements.
• Provide leadership and oversight for strategic IAM functions including PAM, IGA, SSO, MFA, Federation, PKI, Directory Services, and Secrets Management.
• Define technical direction for IAM tools and develop overall strategic framework for implementation across the company with an emphasis on standard configurations.
• Lead architecture planning and lifecycle designs for all personas including employees, partners, customers, and non-human identities.
• Establish the target-state identity architecture and effectively communicate and guide engineers to implementing that vision.
• Develop secure and scalable authentication, authorization, and account provisioning workflows.
• Partner with engineering teams to integrate identity services into applications and infrastructure using APIs and automation pipelines.
• Evaluate complex business requirements and effectively guide cross-functional teams to implement secure identity frameworks.
• Create and maintain architectural documentation, standards, and design patterns for IAM services.
• Contribute to solution development and code when needed, and review designs to ensure compliance with architecture and security standards.
• Engage with internal and external stakeholders to communicate strategy, resolve roadblocks, and champion IAM modernization initiatives.

Job Requirements:

Qualifications:

• 10+ years of experience in IAM or Security Architecture roles, with demonstrated success in designing enterprise-scale IAM platforms
• Strong expertise with IAM protocols (SAML, OAuth2, OIDC, SCIM, LDAP, Kerberos, FIDO) and modern cloud identity models
• Extensive hands-on experience with products like CyberArk, PingOne, Ping Davinci, EntraID, Saviynt, HashiCorp Vault, Digicert, Onfido, and Active Directory
• Expert-level understanding of Authentication, Authorization, Directory Services, PKI, MFA, Federation, and PAM
• Experience designing secure APIs and automating operational functions
• Proven ability to lead architectural governance and collaborate across security, infrastructure, application, and compliance teams
• Track record of implementing secure, scalable identity solutions in multi-cloud and hybrid environments
• Excellent communication and leadership skills with the ability to influence at all levels of the organization
• Experience working in Agile environments with cross-functional engineering teams

Desirable:

• Bachelor’s or Master’s Degree in Computer Science, Engineering, or related technical discipline
• Professional certifications such as CISSP, CISM, Microsoft Certified: Identity and Access Administrator, or TOGAF
• Background in risk-based authentication, adaptive access, and identity analytics
• Experience in media, entertainment, or global enterprises
• Experience in cloud application development and maintenance
• Strong understanding of cloud security, container security, and zero trust architecture
• Experience deploying passwordless technology in a hybrid environment
• Knowledge of IAM-related compliance frameworks such as SOX, GDPR, NIST, ISO 27001