Architect

ISC Architect

Role Purpose

The IAM Architect is responsible for defining designing and governing the enterprise Identity Access Management Architecture This role ensures IAM solutions are secure scalable and aligned with business security and regulatory requirements

The IAM Architect provides technical leadership across IAM domains identity lifecycle access governance authentication authorisation privileged access and directory services and acts as the design authority for IAM platforms and integrations

Key Responsibilities

Architecture Design

Define the end-to-end IAM architecture covering identity lifecycle access governance authentication authorisation and privileged access

Produce high quality architectural artefacts including HLDs LLDs integration patterns data flows and security models

Ensure IAM designs align with enterprise architecture principles Zero Trust and security standards

Lead solution design for IAM platforms such as SailPoint Azure AD or CyberArk

Technical Leadership

Act as the technical authority for IAM across multiple projects and workstreams

Provide guidance to engineers’ developers and project teams on IAM patterns standards and best practices

Review and approve solution designs configuration approaches and integration methods

Ensure IAM solutions are resilient scalable and support operational requirements

IAM Strategy Roadmap

Contribute to the development of the IAM strategy and multiyear roadmap

Identify capability gaps and recommend improvements or new technologies

Support maturity assessments and define targetstate IAM capabilities

Integration Engineering

Design integrations between IAM platforms and enterprise applications directories HR systems and cloud services

Define identity data models attribute mappings and provisioningdeprovisioning logic

Support role mining access modelling and governance design activities

Ensure secure API SSO and federation patterns SAML OAuth OIDC

Security Compliance Risk

Ensure IAM architecture meets regulatory audit and internal security policy requirements

Define and validate IAM controls eg least privilege MFA privileged access

Support threat modelling and security assessments for IAM solutions

Identify risks and propose mitigation strategies

Stakeholder Vendor Engagement

Work closely with security architecture HR IT operations and application teams

Engage with IAM vendors and implementation partners to ensure alignment with architectural standards

Provide technical input into SOWs RFPs and vendor evaluations

Documentation Governance

Maintain architectural standards patterns and reference models for IAM

Ensure documentation is complete accurate and aligned with enterprise governance

Participate in architecture review boards and design assurance processes

Essential Skills Experience

Strong experience as an IAM Architect or senior IAM engineer in complex enterprise environments

Deep understanding of IAM domains

Identity lifecycle management

Access governance certification

RBACABAC

SSO MFA federation

Privileged Access Management

Directory services AD Azure AD

Handson experience with major IAM platforms particularly SailPoint and Azure AD Okta CyberArk or similar

Strong knowledge of authentication and authorisation standards SAML OAuth2 OIDC SCIM

Experience designing cloud based IAM architectures Azure AWS SaaS

Strong understanding of security frameworks Zero Trust CAF eCAF NIST ISO 27001

Ability to produce high quality architectural documentation

Experience working with HR systems and identity data flows

Desirable Skills

Experience in regulated or critical infrastructure sectors

Knowledge of microservices API security and modern application architectures

Experience with role mining access modelling and identity governance maturity assessments

Familiarity with DevOps automation and CICD pipelines for IAM deployments

Experience supporting largescale IAM transformations or cloud migrations

Skills

Mandatory Skills : OT Security - OT /ICS Cybersecurity