Lead Systems Architect - IAM

About The Position

Requirements

• 5+ years of Architecture experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• Deep experience designing and leading Identity and Access Management architectures, with strong focus on access provisioning and lifecycle management.
• Strong knowledge of IAM principles including least privilege, segregation of duties, entitlement governance, and identity lifecycle controls.
• Hands‑on experience with enterprise IAM, identity governance, and access provisioning platforms.
• Proven ability to design large‑scale, automated access solutions across on‑prem, cloud, and hybrid environments.
• Strong stakeholder engagement skills with the ability to influence across security, technology, risk, and business teams.
• Excellent problem‑solving, systems thinking, and written and verbal communication skills.

Nice To Haves

• Experience with SailPoint, Active Directory and/or HashiCorp Vault
• Experience supporting regulatory, audit, and risk management activities related to access controls.
• Background in modernizing legacy access provisioning models through automation and standardized architectures.
• Ability to balance security, compliance, operational efficiency, and user experience in architectural decision‑making.

Responsibilities

• Own the end‑to‑end architecture for access provisioning, including joiner, mover, leaver processes, entitlement lifecycle management, and access de‑provisioning.
• Define and maintain target‑state and transition architectures that drive automation, least‑privilege enforcement, and reduction of manual access processes.
• Establish and enforce architectural standards, patterns, and guardrails for access provisioning, entitlement modeling, and application onboarding.
• Design role‑based and attribute-based access models aligned to business functions, risk tolerance, and regulatory requirements.
• Partner with security engineering, access operations, application teams, and platform owners to ensure consistent implementation of provisioning architectures.
• Guide integration of identity governance, provisioning, and authorization capabilities with authoritative systems of record and downstream target systems.
• Ensure access provisioning architectures support segregation of duties, auditability, and regulatory compliance requirements.
• Lead architecture reviews for new applications, platforms, cloud migrations, and major initiatives impacting access provisioning.
• Drive remediation strategies for access‑related audit findings, control gaps, and technical debt.
• Influence IAM roadmaps and investment decisions related to provisioning, automation, and access governance.
• Serve as a technical authority and thought leader within the IAM domain for access provisioning.
• Mentor senior engineers and architects, promoting consistent architectural practices across teams.
• Collaborate with governance and policy teams to translate policy and risk requirements into implementable technical controls.
• Work closely with operations teams to ensure architectures are operationally sustainable and scalable.

Benefits

• Health benefits
• 401(k) Plan
• Paid time off
• Disability benefits
• Life insurance, critical illness insurance, and accident insurance
• Parental leave
• Critical caregiving leave
• Discounts and savings
• Commuter benefits
• Tuition reimbursement
• Scholarships for dependent children
• Adoption reimbursement