IAM Security Architect (REMOTE)

Description

Dragonfli Group seeks an experienced IAM (Identity and Access Management) Security Architect to join our dynamic security team. The ideal candidate will have a strong background in designing and implementing IAM platforms, with in-depth knowledge of various IAM technologies and security architecture skills to control access using RBAC, ABAC, and PBAC. The IAM Security Architect will take ownership of identity governance and administration (IGA) security architecture and roadmap, ensuring robust and scalable IAM solutions across the organization.

IAM Platform Design and Implementation:

• Design and solve IAM platforms and technologies such as Ping Identity, Microsoft Azure AD, ForgeRock, DUO, CyberArk, etc.
• Develop and implement security architecture strategies to control access using RBAC, ABAC, and PBAC.

Identity Governance and Administration (IGA):

• Lead the design and implementation of IGA security architecture and roadmap using solutions like SailPoint IQ.
• Ensure compliance with regulatory requirements and industry best practices.

Authentication Protocols Expertise:

• Implement and manage authentication protocols such as SAML, OpenID Connect, OAuth, MFA, and Risk-Based Authentication.
• Ensure secure and efficient authentication processes across all platforms.

AWS IAM Solutions:

• Architect and design IAM solutions in AWS, including the migration of existing workloads to AWS.
• Develop and manage AWS Identity Center, IAM roles, policies, and permissions to secure cloud infrastructure.

Security Architecture Development:

• Develop and maintain security architecture documentation, including security policies, procedures, and guidelines.
• Collaborate with cross-functional teams to integrate IAM solutions with other security and IT systems.

Technical Leadership:

• Provide technical leadership and guidance to junior team members and stakeholders.
• Stay updated with the latest IAM trends, technologies, and threats to continuously enhance the security posture.

Stakeholder Engagement:

• Work closely with business units, IT teams, and external vendors to ensure IAM solutions align with business objectives and security requirements.
• Conduct regular reviews and assessments of IAM systems to identify and mitigate risks.

Requirements

• Bachelor's degree in Computer Science, Information Security, or related field; advanced degree preferred.
• Proven experience in designing and implementing IAM platforms and technologies such as Ping Identity, Microsoft Azure AD, ForgeRock, DUO, CyberArk, etc.
• Strong security architecture skills, with expertise in RBAC, ABAC, and PBAC.
• Demonstrated expertise in identity governance and administration (IGA) solutions such as SailPoint IQ.
• Excellent knowledge of authentication protocols including SAML, OpenID Connect, OAuth, MFA, and Risk-Based Authentication.
• Expertise in architecting and designing IAM solutions in AWS and migrating existing workloads to AWS.
• Deep understanding of AWS Identity Center and IAM roles, policies, and permissions.
• Strong analytical and problem-solving skills, with the ability to manage multiple projects simultaneously.
• Excellent communication and interpersonal skills, with the ability to work effectively with technical and non-technical stakeholders.

Preferred Certifications (Nice-to-have):

• Certified Information Systems Security Professional (CISSP)
• AWS Certified Solutions Architect
• Certified Identity and Access Manager (CIAM)
• Certified Information Security Manager (CISM)