The IAM Business Security Architect will develop and deploy xIAM solutions, improve onboarding processes, and provide architecture advisory services for security operations.
Cloud Security Services is currently looking for an experienced external Identity and Access Management (xIAM / CIAM) architect with background in global, complex, and diverse xIAM environments to assist with the development of a program that will design, develop, and deploy xIAM solutions. Experience with business architecture is a plus as the right candidate will be enabling change management activities to identify areas where process controls could be made more efficient and help reduce cycle times for onboarding of new resources onto the team through training, education and mentoring activities. This is a 6-month remote opportunity with the possibility of going full-time.
Key Responsibilities:
Provide Business Architecture for Security support to meet primary goals for:
- Maturing Business Architecture for Security
- Operating Model
- Staffing Plan
- Clarifying Roles & Responsibilities
- RACI
- Role-Based Curricula Development
- Onboarding Process Improvement
- Reduce Ramp-up Time for New Hires
- xIAM Architecture Advisory
- Analysis
- Reference Architecture
- Solution Architecture
This is in order to (1) Advance client’s target state xIAM platforms / services with key capabilities around BYOID (Bring Your Own ID), common identity, modern authentication, core profile data management, consent & privacy management, etc. and (2) Meet the xIAM needs of specific applications by leveraging target state xIAM platforms / services where available, or by delivering interim solutions when requisite target state xIAM platforms / services are not yet finalized.
Responsibilities:
- xIAM program architecture support
- Support to advance product roadmap milestones, as needed
- Align target skill sets with business objectives and deliverables
- Develop RACI or related framework that outlines the resource roles and responsibilities in alignment with client objectives
- Facilitate and develop new hire (resource) onboarding processes
- Facilitate and develop new hire (resource) training content and processes
- Facilitate playbook creation and maintenance protocol
- Develop method to assess efficiency and effectiveness of onboarding processes
- Define and document continuous improvement recommendations
Required Skills:
- 7-10 years’ experience working in the Identity and Access management (IAM) information security space in an architecture and engineering capacity.
- 5-7 years’ experience with the following:
- Global Workforce IAM
- Global Consumer IAM (CIAM)
- Federation and single sign-on (B2B and B2C)
- National Institute of Standards and Technology (NIST) 800-53
- NIST 800-63
- NIST Cybersecurity Framework (CSF)
- Experience creating high and low level IAM architecture patterns
- Experience developing and implementing IAM strategies and roadmaps
- Experience with major IAM platforms including:
- Microsoft Active Directory
- One Identity Manager
- Ping Federate
- Experience building roles and responsibilities (e.g., RACI matrices)
- Experience with process control design
- Ability to work as liaison between business and information security/information technology
- Ability to clearly explain IAM & xIAM concepts to audiences of various levels.
- Broad and deep understanding of xIAM- and IAM-related capabilities, patterns, protocols, technologies, and solutions.
- Intimately familiar with xIAM- and IAM-related protocols such as OAuth, OIDC, SAML, LDAP,
SPML, XACML, SCIM, Kerberos, PKI (certs, CA’s, sigs, etc).
- Strong experience with directories, SSO, federation, MFA, RBA, delegated administration, API gateways, SOA services.
Preferred Skills:
- Experience with App Gateways, App Proxies, Live Chat, Chat Bots, Contact Centers, IVRs and Web Portals for CIAM
- Good understanding of MFA, PAM and Risk Based Authentication
- Deep technical experience with two or more xIAM technologies including Okta, Janrain / Akamai, Forgerock, Microsoft Azure B2C, Amazon AWS Cognito.
- Strong familiarity with adjacent technologies such as PingFederate/PingOne, IGA (e.g.: OneIM, Sailpoint), virtual directory (e.g.: Radiant), API management (e.g.: Apigee, Mulesoft).
- Understanding of industry and leading practices including industry standards such as the National Institute for Standards and Technology (NIST) Special Publication (SP) 800-63; Digital Authentication, NIST Cybersecurity Framework (CSF) and NIST SP 800-53; Security and Privacy Controls.
- Business process engineering experience
- Strong project management skills
- A deep overall understanding of business & technology transformation around digital identity both within and across enterprises, identity providers, and other entities.
- Excellent interpersonal communication skills with strong spoken and written English.
- Business outcomes mindset.
- Understanding of global regulations and compliance frameworks including
- NY DFS
- CCPA
- GDPR
- Solid balance of strategic thinking with detail orientation.
- Collaborative team worker – both in person and virtually using MS Teams or similar.
- Flexibility to accommodate working across different time zones.
- CISSP, CISM, or equivalent certification a plus.
- BS in Computer Science or related field of study, or equivalent work experience
Preferred Education:
- Cybersecurity certifications such as CISSP, CISM, etc.
Top Skills
Api Gateways
Ciam
Iam
Kerberos
Ldap
Mfa
Microsoft Active Directory
Oauth
Oidc
One Identity Manager
Ping Federate
Pki
SAML
Scim
Soa Services
Spml
Xacml
Similar Jobs
Healthtech • Logistics • Pharmaceutical
The Senior Director of Cyber Risk Management will oversee cyber risk identification, management, and compliance while leading the GRC efforts and various risk management processes.
Top Skills:
Cis ControlsIso 27001Nist CsfServicenow
Healthtech • Logistics • Pharmaceutical
Lead HRIT product initiatives focused on ServiceNow HRSD, consult with leadership on digital strategies, manage staff, and oversee project execution.
Top Skills:
HrisServicenow HrsdWorkday
Computer Vision • Healthtech • Information Technology • Logistics • Machine Learning • Software • Manufacturing
Lead content strategy across marketing channels, manage creative teams, and ensure high-quality storytelling and design that strengthen brand and drive growth.
Top Skills:
Adobe Creative SuiteFigma
What you need to know about the Los Angeles Tech Scene
Los Angeles is a global leader in entertainment, so it’s no surprise that many of the biggest players in streaming, digital media and game development call the city home. But the city boasts plenty of non-entertainment innovation as well, with tech companies spanning verticals like AI, fintech, e-commerce and biotech. With major universities like Caltech, UCLA, USC and the nearby UC Irvine, the city has a steady supply of top-flight tech and engineering talent — not counting the graduates flocking to Los Angeles from across the world to enjoy its beaches, culture and year-round temperate climate.
Key Facts About Los Angeles Tech
- Number of Tech Workers: 375,800; 5.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Snap, Netflix, SpaceX, Disney, Google
- Key Industries: Artificial intelligence, adtech, media, software, game development
- Funding Landscape: $11.6 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Strong Ventures, Fifth Wall, Upfront Ventures, Mucker Capital, Kittyhawk Ventures
- Research Centers and Universities: California Institute of Technology, UCLA, University of Southern California, UC Irvine, Pepperdine, California Institute for Immunology and Immunotherapy, Center for Quantum Science and Engineering
