Domain Architect, Identity (MD)

About The Position

Requirements

• 15+ years of experience in Identity & Access Management, security architecture, or enterprise architecture in large, regulated environments.
• Deep hands-on architectural expertise across IAM, PAM, CIAM, federation, directories, authorization, and cloud identity.
• Demonstrated experience defining and governing domain architectures at enterprise scale.
• Strong understanding of regulatory, audit, and risk considerations in financial services.

Nice To Haves

• Bachelor’s or Master’s degree in Computer Science, Engineering, or related field.
• CISSP, CISM, CCSP, TOGAF, or equivalent practical experience.

Responsibilities

• Own the enterprise Identity domain target architecture, including IAM, IGA, PAM, CIAM, machine and non-human identities, federation, and authorization services.
• Define and maintain Identity reference architectures, design patterns, and architectural principles, ensuring alignment with enterprise standards and Zero Trust objectives.
• Serve as the final design authority for material identity solutions and major identity-related programs.
• Translate business, regulatory, and cybersecurity strategy into a clear, sequenced Identity architecture roadmap.
• Partner with IAM product, engineering, and operations leaders to ensure architectural intent is realized consistently in delivery.
• Guide modernization initiatives including platform rationalization, cloud-native identity, passwordless authentication, and identity orchestration.
• Operate as the Identity Domain counterpart to Central Enterprise Architecture, ensuring alignment while defending domain-specific architectural needs.
• Escalate and arbitrate design decisions that have enterprise-wide risk, cost, or precedent implications.
• Contribute identity expertise to Architecture Review Boards (ARB) and Technology Review Boards (TRB).
• Ensure Identity architectures align with financial-services regulatory expectations and internal risk frameworks.
• Embed security-by-design, least privilege, strong authentication, and auditability across all identity patterns.
• Act as a trusted architectural partner in regulatory discussions where identity design is material to outcomes.
• Provide architectural leadership for non-human identity, service accounts, secrets management, and agentic / AI identity patterns.
• Continuously assess emerging identity standards, protocols, and industry practices, incorporating them where strategically appropriate.
• Mentor and develop senior and principal-level identity architects.
• Influence senior stakeholders across technology, cybersecurity, and the business without direct authority.
• Represent the Identity architecture function with credibility at managing director, executive, and board-adjacent levels.

Benefits

• Retirement savings plan (401K) with company match
• Insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages
• Paid-time off including vacation, sick leave, short term disability, and family care responsibilities
• Access to our Employee Assistance Program
• Incentive compensation including eligibility for annual performance-based awards
• Eligibility for certain tax advantaged savings plans
• Inclusive development opportunities
• Flexible work-life support
• Paid volunteer days
• Vibrant employee networks