CrawlJobs Logo
I
Intellias · IT - Administration

Agentic Identity & Access Security Architect

Poland; United Kingdom · Job Posted June 30, 2026
Apply Position
Job Link Share

Job Description

Our client is a leading global investment management company headquartered in London. It manages over $228 billion in assets and serves institutional investors, pension funds, wealth managers, and other sophisticated clients worldwide. The firm specializes in quantitative investing, alternative investments, systematic trading strategies, and technology-driven asset management. Data science, machine learning, and AI are core components of its investment and research processes. As part of our collaboration we will focus on two foundational capabilities required to enable safe and scalable AI adoption across the enterprise: Agentic Security and AI-Ready Data Foundations. What project we have for you: We define how autonomous agents authenticate, obtain scoped access, and operate safely across a large, regulated financial estate where the runtime security model genuinely does not exist yet. The value, and the danger, of agentic AI is set by what an agent can reach: an agent that inherits a full user context and long-lived secrets has an effectively unlimited blast radius. Your job is to close that gap. This is a hands-on senior role for a security architect who still ships code, working at the intersection of enterprise IAM, platform engineering, and the agentic-AI security frontier. You will design and build the IaC-driven, self-service identity patterns, credential flows, and onboarding standards that make the secure way the easy way, across high-velocity teams that have long governed themselves.

Job Responsibility

  • Design and ship IaC-driven, self-service identity patterns that roll out firm-wide without requiring a full Active Directory cleanup first
  • Define the currently undefined agentic runtime security model: containerised code execution, permission delegation to agents, and MCP-based tool access
  • Lead the transition from long-lived secrets toward ephemeral, time-based, risk-scored credentials, scoped to task duration and issued via JWT / OIDC
  • Layer LLM / software guardrails (policy-as-text plus human review) on top of whatever hard guardrails are feasible across the estate
  • Establish an opinionated onboarding standard (e.g. mandatory MCP interfaces) and win adoption through better defaults and developer experience, not mandate alone
  • Design SIEM integration, behavioural baselining, and anomaly detection for agentic workflows, and centralise siloed audit logs to satisfy both security and regulatory requirements
  • Take bounded beachheads (for example, authenticate users and then delegate scoped access to internal systems) from vague to delivered

Requirements

  • 8+ years in security architecture and/or platform engineering, with a track record of shipping production code
  • Principal / Staff-level depth, ideally in a high-velocity or quant / financial-services engineering culture
  • Deep, mechanical command of modern identity and authorisation: OIDC / OAuth2 / JWT — token issuance flows, claims design, and delegation / impersonation patterns
  • Hands-on HashiCorp Vault experience, including dynamic / short-lived secrets and the realities of migrating off long-lived tokens without breaking a large application estate at once
  • Keycloak policy modelling, ideally with the Terraform-driven configuration the firm already uses
  • Strong Terraform / IaC fluency — enough to design repeatable, self-service patterns that others adopt, rather than bespoke per-team setups
  • Working knowledge of the Active Directory + Entra legacy reality: nested groups, LDAP-backed role mapping, and the distribution-list-as-permission-group failure mode — able to design around the mess pragmatically

Nice to have

  • Real exposure to agentic / LLM systems and why they change the threat model — an agent actively probes and exploits standing permissions rather than stumbling onto them
  • Familiarity with MCP as an integration / onboarding standard, and at least one agent harness (Claude Agent SDK preferred)
  • Experience with just-in-time, task-scoped delegation versus standing access, and risk-gated credential issuance (e.g. a short-lived token issued against a CrowdStrike-style risk score)
  • Behavioural baselining / anomaly detection for workloads — defining 'normal' for a recurring workflow and catching deviation at volume
  • SIEM integration and action attribution: distinguishing an agent's action from the human whose credentials it borrowed
  • Financial-services audit literacy
  • Consulting or client-facing / pre-sales experience
Intellias - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Agentic Identity & Access Security Architect

8 matching positions

Active Directory/Azure AD Senior Identity & Access Management Architect

The NTT DATA Services Security organization is looking for talented security-ori...
Location
Location
United States , Plano
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 8 years relevant experience in Architecture and designing, solutions & Migrating Active Directory, Entra ID ,Windows & End points
  • Strong Demonstrated experience with Active Directory migration tool or equivalent and consolidation of Global Forest and Domains. Hands on experience in successful consolidation of AD Forests and Domains
  • Must have strong hands-on experience working on Entra ID (Azure Active Directory)
  • Extensive Experience working as Entra IDmin for enterprise Active Directory setup and maintenance
  • Strong experience in AD Trusts, two-way Trusts and one-way Trusts and deep knowledge of Active Directory Schemas and meta data
  • Strong Knowledge on Entra ID Identity Management & Integration with on premise
  • Strong knowledge of Entra ID technologies, including authentication models, federation, Multifactor Authentication (MFA), conditional access policies and other relevant capabilities.
  • Knowledge of best practices in AD/Azure Privileged access management and modern AD/Azure Secured Administration practices
  • Strong hands-on experience in coding in PowerShell scripting
  • Strong Knowledge on IAM disciplines like PIM and Privilege Administrative Accounts PAM solutions such as CyberArk
Job Responsibility
Job Responsibility
  • Active Directory designing, Architecture Solutions, Integration with platforms & Applications
  • Develop an architecture of directory solutions for Windows, Unix, and related platforms
  • Experience in consolidations of multiple forest and domains and demonstrated understanding on User accounts, machine accounts, GPOs
  • Understand the requirement and create a migration plan for any services i.e. DNS, DHCP, and Certificate Services (PKI) etc.
  • Analyzing the requirement and design a solution to fulfil the requirement with zero impact to other platforms
  • Develop a power shell scripting with AD modules or VB .Net based on the requirements
  • Manage Azure active directory design, Architect Solutions, Integration with platforms & Applications and AD connector to Entra
  • Auditing the security logs and integrating with SIEM
  • Conducting POC with multiple vendors for AD solutions and prepare detailed test cases. Create a clear recommendation document with pros and cons for senior management
  • Vulnerability Assessment and Management related to Active Directory, DNS & Windows platforms
  • Fulltime
Read More
Arrow Right

Cloud Solution Architect - AI Security & Agentic AI

We are looking for a highly motivated and passionate Cloud Solution Architect (C...
Location
Location
United Arab Emirates , Abu Dhabi
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, Information Technology, Engineering, Business, Cybersecurity, or related field
  • 5+ years’ experience in cloud/infrastructure technologies, cybersecurity, information technology (IT) consulting/support, systems administration, network operations, software development/support, technology solutions, practice development, architecture, and/or consulting OR equivalent experience
  • Deep understanding of Microsoft security technologies with hands on experience in delivering two or more of the following Microsoft security solutions: Microsoft Defender (Defender for Cloud, Defender XDR, Defender for Cloud Apps), Microsoft Sentinel, Microsoft Entra (identity, Conditional Access, lifecycle governance), Microsoft Purview (data security, compliance, governance)
  • Demonstrated experience securing AI‑powered workloads, including: Identity, access control, and least‑privilege enforcement, Data protection and information governance, Threat detection, posture management, and incident response for AI systems
  • Hands‑on understanding of agentic architectures, including: AI agents, copilots, or autonomous systems, Agent identity, lifecycle, and access management concepts, Observability, logging, and behavioural monitoring for autonomous systems
Job Responsibility
Job Responsibility
  • Act as a trusted technical advisor for customers adopting AI and agent‑based workloads
  • Architect secure, scalable designs for Agent 365, Copilot, and AI‑powered workloads
  • Guide customers on AI security governance, identity, access control, and observability
  • Drive adoption and operational usage of Microsoft Security solutions (Defender, Sentinel, Entra, Purview)
  • Remove technical blockers and de‑risk AI deployments
  • Lead architecture workshops and design sessions with security and executive stakeholders
  • Partner with sales, engineering, and partners to deliver customer success outcomes
  • Capture feedback from the field to improve security and AI offerings
  • Fulltime
Read More
Arrow Right

Active Directory/Azure AD-Senior Identity & Access Management (IAM) Architect

Location
Location
United States , Plano
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 8 years relevant experience in Architecture and designing, solutions & Migrating Active Directory, Entra ID ,Windows & End points
  • Strong Demonstrated experience with Active Directory migration tool or equivalent and consolidation of Global Forest and Domains
  • Hands on experience in successful consolidation of AD Forests and Domains
  • Must have strong hands-on experience working on Entra ID (Azure Active Directory)
  • Extensive Experience working as Entra IDmin for enterprise Active Directory setup and maintenance
  • Strong experience in AD Trusts, two-way Trusts and one-way Trusts and deep knowledge of Active Directory Schemas and meta data
  • Strong Knowledge on Entra ID Identity Management & Integration with on premise
  • Strong knowledge of Entra ID technologies, including authentication models, federation, Multifactor Authentication (MFA), conditional access policies and other relevant capabilities
  • Knowledge of best practices in AD/Azure Privileged access management and modern AD/Azure Secured Administration practices
  • Strong hands-on experience in coding in PowerShell scripting
Job Responsibility
Job Responsibility
  • Active Directory designing, Architecture Solutions, Integration with platforms & Applications
  • Develop an architecture of directory solutions for Windows, Unix, and related platforms
  • Experience in consolidations of multiple forest and domains and demonstrated understanding on User accounts, machine accounts, GPOs
  • Understand the requirement and create a migration plan for any services i.e. DNS, DHCP, and Certificate Services (PKI) etc.
  • Analyzing the requirement and design a solution to fulfil the requirement with zero impact to other platforms
  • Develop a power shell scripting with AD modules or VB .Net based on the requirements
  • Manage Azure active directory design, Architect Solutions, Integration with platforms & Applications and AD connector to Entra
  • Auditing the security logs and integrating with SIEM
  • Conducting POC with multiple vendors for AD solutions and prepare detailed test cases. Create a clear recommendation document with pros and cons for senior management
  • Vulnerability Assessment and Management related to Active Directory, DNS & Windows platforms
Read More
Arrow Right

Senior Identity & Access Management (IAM) Architect

Location
Location
United States , Plano
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 8 years relevant experience in Architecture and designing, solutions & Migrating Active Directory, Entra ID ,Windows & End points
  • Strong Demonstrated experience with Active Directory migration tool or equivalent and consolidation of Global Forest and Domains. Hands on experience in successful consolidation of AD Forests and Domains
  • Must have strong hands-on experience working on Entra ID (Azure Active Directory)
  • Extensive Experience working as Entra IDmin for enterprise Active Directory setup and maintenance
  • Strong experience in AD Trusts, two-way Trusts and one-way Trusts and deep knowledge of Active Directory Schemas and meta data
  • Strong Knowledge on Entra ID Identity Management & Integration with on premise
  • Strong knowledge of Entra ID technologies, including authentication models, federation, Multifactor Authentication (MFA), conditional access policies and other relevant capabilities.
  • Knowledge of best practices in AD/Azure Privileged access management and modern AD/Azure Secured Administration practices
  • Strong hands-on experience in coding in PowerShell scripting
  • Strong Knowledge on IAM disciplines like PIM and Privilege Administrative Accounts PAM solutions such as CyberArk
Job Responsibility
Job Responsibility
  • Active Directory designing, Architecture Solutions, Integration with platforms & Applications
  • Develop an architecture of directory solutions for Windows, Unix, and related platforms
  • Experience in consolidations of multiple forest and domains and demonstrated understanding on User accounts, machine accounts, GPOs
  • Understand the requirement and create a migration plan for any services i.e. DNS, DHCP, and Certificate Services (PKI) etc.
  • Analyzing the requirement and design a solution to fulfil the requirement with zero impact to other platforms
  • Develop a power shell scripting with AD modules or VB .Net based on the requirements
  • Manage Azure active directory design, Architect Solutions, Integration with platforms & Applications and AD connector to Entra
  • Auditing the security logs and integrating with SIEM
  • Conducting POC with multiple vendors for AD solutions and prepare detailed test cases. Create a clear recommendation document with pros and cons for senior management
  • Vulnerability Assessment and Management related to Active Directory, DNS & Windows platforms
  • Fulltime
Read More
Arrow Right

Ai Security Architect

We are currently seeking a AI Security Architect to join our team in Bangalore o...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in cybersecurity architecture with proven experience securing large-scale LLM deployments and multi-agent workflows
  • Hands-on capability with agent frameworks (e.g., LangChain, LangGraph, AutoGen) and MLOps platforms
  • Deep familiarity with model risk management principles and AI security standards
Job Responsibility
Job Responsibility
  • Defining security architecture and implementing robust security controls for AI/ML systems and their underlying platforms
  • Serving as the team’s technical mentor and architecture authority, driving secure-by-design patterns across the AI/ML lifecycle (data, training, evaluation, deployment, and production monitoring)
  • Proactively mitigating AI-specific threats such as model integrity risks, data poisoning, adversarial attacks, prompt injection, model extraction, and inference-time abuse
  • Leading technically, setting standards, and guiding engineers day-to-day through architecture, reviews, and delivery
  • Ensuring AI systems are secure, compliant, and resilient by implementing data protection, threat detection, guardrails, and ongoing risk monitoring across the AI lifecycle
  • Agent Security: Define strict Role-Based Access Control (RBAC) and least-privilege models for AI agents
  • Design runtime environments with restricted permissions
  • Implement defenses against adversarial attacks, prompt injections, jailbreaking, and sensitive data leakage (DLP) across agent workflows
  • Observability & Monitoring: Architect logging and monitoring standards for decision traceability
  • Monitor models and prompt templates for behavioral drift, anomalies, and attacks
  • Fulltime
Read More
Arrow Right

AI Solution Architect (Insurance) - Agentic AI & Azure

As an AI Solution Architect with NTT DATA, you’ll design agentic AI systems that...
Location
Location
United States , Remote
Salary
Salary:
204105.00 - 285700.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years in solution architecture or enterprise technology roles (e.g., architect, principal engineer, platform lead)
  • 3+ years delivering solutions for the insurance domain (P&C, Life, Health, or Reinsurance) in a carrier, MGA/MGU, broker, or consulting context
  • 2+ years architecting or building LLM/GenAI applications in production or regulated enterprise settings
  • 2+ end-to-end Azure-hosted AI solutions delivered (from design to deployment) with measurable adoption
  • Bachelor’s degree in Computer Science, Engineering, Data/AI, or related field
  • Ability to travel 30%
Job Responsibility
Job Responsibility
  • Design end-to-end agentic solutions on Azure, from interaction to orchestration to observability
  • Define multi-agent patterns that collaborate across underwriting, claims, and servicing
  • Apply Azure OpenAI, prompt orchestration, tool/skills calling, memory, and planning patterns
  • Establish autonomy guardrails, human-in-the-loop checkpoints, and decision traceability
  • Build LLM-driven reasoning + retrieval for document-intensive flows (FNOL, submissions, endorsements, SIU, etc.)
  • Deliver conversational and task agents that integrate with core insurance platforms and data
  • Use Azure AI Studio, Azure OpenAI, Azure Cognitive Search, Functions, Logic Apps, Service Bus
  • Design secure integrations with policy admin, claims, billing, CRM, and document management systems
  • Implement RAG patterns using Azure data and search services with content safety and observability
  • Architect to insurance regulatory requirements (privacy, retention, auditability)
  • Fulltime
Read More
Arrow Right

Senior Security Solution Architect (Pre-sales)

The Senior Security Solutions Architect at NTT DATA is a pivotal role focused on...
Location
Location
United States of America , Remote
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Advanced hands-on experience designing, implementing, integrating, and troubleshooting solutions from: Cisco (Firepower, ASA, ISE, Umbrella, SecureX, VPN solutions), Palo Alto Networks (NGFW, Panorama, GlobalProtect, Prisma Access/Cloud), Fortinet (FortiGate, FortiManager, FortiAnalyzer, FortiAuthenticator, SD-WAN), Check Point (Quantum Security Gateway, Management Server, CloudGuard, Infinity)
  • Experience with secure network design, segmentation, threat prevention, IPS/IDS, URL filtering, and advanced malware protection
  • Experience integrating logging, monitoring, and SIEM/SOAR systems
  • Experience with secure remote access, VPN architecture, and Zero Trust design
  • Experience integrating solutions into hybrid/multi-cloud environments (AWS, Azure, GCP)
  • Experience in client-facing security consulting, including requirements gathering and risk analysis
  • Experience working in Agile or DevSecOps environments preferred
  • Demonstrated ability to develop and deliver security-focused technical solutions for enterprise clients
  • Bachelor's degree in computer science, engineering, cybersecurity, or related field (or equivalent experience)
  • Strongly preferred certifications: Cisco: (CCNP Security, CCIE Security, CyberOps) and/or Palo Alto Networks: (PCNSA, PCNSE) and/or Fortinet: (NSE4-NSE7 (especially NSE5-NSE7)) and /or Check Point: (CCSA, CCSE, CCSM)
Job Responsibility
Job Responsibility
  • Contributes to the development of complex security-centric solution architectures across business, infrastructure, application, and cloud environments
  • Identifies and evaluates alternative security architectures and analyzes trade-offs in risk reduction, cost, performance, and scalability
  • Produces specifications for cloud or on-premises components with an emphasis on security controls, identity and access management, encryption standards, network segmentation, and compliance requirements
  • Designs components using modelling techniques that incorporate security-by-design principles, Zero Trust concepts, and industry frameworks (e.g., NIST CSF, ISO 27001)
  • Creates multiple design views for stakeholder concerns, including non-functional security requirements, and develops security proof-of-concepts (POCs)
  • Supports change programs with technical planning aligned to enterprise security architecture standards and regulatory requirements
  • Ensures solutions meet data protection and cybersecurity obligations (GDPR, HIPAA, PCI-DSS, SOC 2)
  • Leads understanding of client security requirements, gathers and analyzes threat/risk data, and provides expert remediation guidance
  • Advises clients on security modernization, cloud security, secure application design, and emerging cybersecurity practices
  • Recommends new security services and contributes to security go-to-market offerings
  • Fulltime
Read More
Arrow Right

AI Solution Architect (Insurance) - Agentic AI & Azure

The AI Solution Architect role at NTT DATA focuses on designing innovative AI sy...
Location
Location
United States , Remote
Salary
Salary:
204105.00 - 285700.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years in solution architecture or enterprise technology roles (e.g., architect, principal engineer, platform lead)
  • 3+ years delivering solutions for the insurance domain (P&C, Life, Health, or Reinsurance) in a carrier, MGA/MGU, broker, or consulting context
  • 2+ years architecting or building LLM/GenAI applications in production or regulated enterprise settings
  • 2+ end‑to‑end Azure‑hosted AI solutions delivered (from design to deployment) with measurable adoption
  • Bachelor’s degree in Computer Science, Engineering, Data/AI, or related field
  • Ability to travel 30%
Job Responsibility
Job Responsibility
  • Design end‑to‑end agentic solutions on Azure, from interaction to orchestration to observability
  • Define multi‑agent patterns that collaborate across underwriting, claims, and servicing
  • Apply Azure OpenAI, prompt orchestration, tool/skills calling, memory, and planning patterns
  • Establish autonomy guardrails, human‑in‑the‑loop checkpoints, and decision traceability
  • Build LLM‑driven reasoning + retrieval for document‑intensive flows (FNOL, submissions, endorsements, SIU, etc.)
  • Deliver conversational and task agents that integrate with core insurance platforms and data
  • Use Azure AI Studio, Azure OpenAI, Azure Cognitive Search, Functions, Logic Apps, Service Bus
  • Design secure integrations with policy admin, claims, billing, CRM, and document management systems
  • Implement RAG patterns using Azure data and search services with content safety and observability
  • Architect to insurance regulatory requirements (privacy, retention, auditability)
  • Fulltime
Read More
Arrow Right