Principal Solution Architect

Roles and responsibilities

As organizations increasingly rely on digital infrastructures, the need for a robust Identity and Access Management (IAM) program becomes essential. The role involves building and implementing a comprehensive IAM strategy that aligns with business objectives and regulatory requirements. Collaboration with stakeholders is crucial to design effective strategies and define key performance indicators (KPIs) that will measure the program's success. This collaborative approach ensures that all relevant parties are engaged in the IAM journey, fostering a culture of security across the organization.

Multi-Cloud Strategy and Architecture Roadmap

Given the complexities of multi-cloud environments, developing a strategic roadmap is vital. This involves establishing IAM policies and standards that are adaptable across various platforms, such as Oracle, AWS, and Azure. By creating a comprehensive architecture roadmap, the IAM program can effectively support diverse operational needs while ensuring compliance with industry standards. This proactive approach enhances the organization's ability to manage identities and access securely across multiple cloud services.

Zero-Trust Alignment

In today’s security landscape, adopting a Zero-Trust model is crucial. Implementing end-to-end solutions for identity provisioning and deprovisioning ensures that only authenticated and authorized users gain access to sensitive resources. This role emphasizes secure authentication and authorization practices, integrating them seamlessly into the organizational framework. By championing Zero-Trust principles, organizations can significantly reduce their attack surface and enhance overall security posture.

Integration with Cybersecurity Frameworks

Aligning IAM requirements with established cybersecurity frameworks, such as NIST, Hitrust, and Cybersecurity Framework (CSF), is essential for maintaining compliance and managing risks effectively. This integration not only strengthens the organization’s security measures but also provides a structured approach to IAM governance. It ensures that IAM practices are not only effective but also compliant with industry regulations.

Collaboration with Application Teams

Guiding application teams in the adoption of Privileged Access Management (PAM) is another key responsibility. By promoting best practices and providing resources for IAM service use, organizations can ensure that IAM policies are integrated into application development and deployment processes. This collaboration fosters a security-first mindset within development teams, enhancing overall application security.

Desired candidate profile

Just-In-Time Access and Modern Security Principles

Integrating Just-In-Time (JIT) access within Continuous Integration/Continuous Deployment (CI/CD) pipelines is a critical strategy for enhancing security while maintaining operational efficiency. Applying cloud best practices to IAM strategies ensures that access controls are dynamically managed, reducing risks associated with persistent access.

Finally, acting as a change agent to promote modern IAM security principles across teams is vital. Conducting design reviews to identify and address security architecture vulnerabilities not only mitigates risks but also fosters a culture of continuous improvement in security engineering practices.

Qualifications

Candidates should possess 7+ years in IAM service delivery, with 5+ years in zero-trust architecture across major cloud platforms. Familiarity with identity assurance frameworks, strong skills in Microsoft IAM technologies, and expertise in identity federation, access management, and directory services are essential. A deep understanding of SAML, OAuth, RBAC, and agile methodologies, along with relevant IAM and cloud certifications (preferably Azure), will be crucial for success in this role. Proficient English communication skills will facilitate effective colla