CrawlJobs Logo

Enterprise Identity Architect

United Kingdom, Multiple Locations · Job Posted May 30, 2026
Apply Position
Job Link Share

Job Description

We are seeking an Enterprise Identity Architect with deep, hands-on expertise in Identity & Access Management (IAM) across complex, multitenant, and multiforest estates in the UK defence sector. The role will lead the unravelling of a complex identity landscape, establish a single authoritative master identity model spanning OFFICIAL to SECRET domains, and drive a secure, standards aligned roadmap built on Zero Trust and defence policy frameworks (including ASP 240 and relevant JSPs).

Job Responsibility

  • Enterprise Identity Architecture: Define and own end to end IAM reference architectures for OFFICIAL and SECRET domains, including enclave segregation, trust models, and boundary controls
  • Design authoritative identity sources and golden record schemas (HR, ERP, clearance systems), lifecycle policies (joiner/mover/leaver), and attribute governance
  • Specify RBAC/ABAC models, entitlement catalogues, role mining, separation of duties (SoD) and privileged access patterns (PAW tiers, admin forest, bastion models)
  • Technical Strategy & Delivery: Lead consolidation/modernisation across Microsoft Entra ID (Azure AD), on Prem AD, MIM/Entra ID Governance, and third-party IGA (SailPoint/Saviynt)
  • Architect MFA/password less (FIDO2/YubiKey, smartcard/PIV equivalents), Conditional Access, risk based access, device trust, PIM and PAM (CyberArk/Beyond Trust)
  • Own identity integration for critical apps (cloud, on Prem, legacy, air gapped) and cross domain access patterns via controlled brokers/guards
  • Security, Compliance & Defence Governance: Map designs and evidence to ASP 240 and applicable JSP guidelines (e.g., JSP 440 Security, JSP 604 Information/IA policies or successors), NCSC guidance, ISO/IEC 27001, and Zero Trust principles
  • Produce and maintain HLD/LLD, Control Matrices, Risk/Threat Models (STRIDE/ATT&CK), Security Cases, Transition Plans, and Operational Runbooks
  • Support audits, Design Reviews, IAO/SIRO approvals, security testing, and accreditation evidence
  • Change & Stakeholder Leadership: Run workshops to untangle legacy identity estates, discover shadow entitlements, and align business/mission owners to a single operating model
  • Coach engineering and operations teams
  • establish guardrails, patterns, and reference implementations
  • guide devsecops integration for identity

Requirements

  • Proven record of accomplishment leading largescale IAM transformations in the Defence Sector with mixed classification environments (OFFICIAL, OFFICIALSENSITIVE, SECRET)
  • Deep expertise with Microsoft Entra ID (Azure AD), Entra Connect/Cloud Sync, MIM/Entra ID Governance, Conditional Access, PIM, tenant to tenant and hybrid patterns
  • Active Directory (multi‑forest consolidation, trusts, tiered admin, admin forests), DNS/PKI (enterprise and offline PKI, CRL/OCSP, HSMs FIPS 140‑2/3)
  • PIM , PAW and PAM
  • MFA/password less (FIDO2, smartcards, CAC/PIVstyle credentials), credential hygiene, Kerberos/NTLM deprecation strategies
  • Zero Trust identity controls, RBAC/ABAC, and policy as code approaches
  • Aligning all Zero Trust / Master identity to Enterprise Service Model
  • Demonstrable success unravelling complex identity estates (e.g., multiple AD forests, conflicting schemas, brittle sync, overlapping personas) and delivering a master identity model with clean source of truth and lifecycle automation
  • Experience defining cross domain identity patterns for air gapped or highside environments, including guardmediated flows, brokers, one way trust, and offline credential issuance
  • Strong documentation: HLD/LLD, architecture decision records, control mappings (JSP/ASP/NCSC), test plans, migration & decommission plans
  • Candidates must show experience aligning to ASP 240 (client/authority security policy 240) or equivalent Authority Security Policy requirements, plus: JSP 440 (security) and JSP 604 (information/IA) or successor policy frameworks
  • NCSC guidance (e.g., MFA, device identity, protective monitoring, cloud security), HMG SPF, ISO/IEC 27001, NIST SP 800‑63 (Digital Identity), NIST SP 800‑207 (Zero Trust)
  • Evidence generation for assurance/accreditation, including control narratives, test evidence, residual risk statements, and operational handover
  • Baseline: Active DV clearance required at starts
  • Ability to work in secure facilities (up to SECRET), follow need to know, and comply with JSP/ASP handling procedures
  • Willingness to undergo additional customer specific vetting and adhere to personnel security obligations

Nice to have

  • Cross domain solutions (CDS) exposure, data diodes/guards integration with identity
  • Logging & Threat Detection integration
  • Experience migrating from ADFS and legacy IdPs to modern standards (OIDC/SAML)
  • Familiarity with supply chain and partner access hardening (B2B, external identities)
  • Prior work with highside enclaves, break glass and operational segregation (PAW, tiering, jump hosts)

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Enterprise Identity Architect

8 matching positions

Sr Enterprise Architect III, MDM

We are seeking an experienced Senior Enterprise Architect – Master Data Manageme...
Location
Location
United States , Austin
Salary
Salary:
Not provided
mmcgrp.com Logo
MMC Group LP
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of advanced Informatica development and ETL experience
  • 8+ years designing and implementing enterprise Master Data Management (MDM) solutions
  • Extensive experience with Informatica PowerCenter custom development
  • Strong knowledge of Enterprise Information Management (EIM) principles and best practices
  • Experience designing enterprise data architectures supporting large-scale analytics and data integration
  • Experience with Erwin, ER/Studio, or comparable enterprise data modeling tools
  • Strong technical writing, documentation, and solution design skills
  • Outstanding communication, analytical, and stakeholder management abilities
  • Proven ability to collaborate effectively with both technical and non-technical teams while managing multiple priorities
Job Responsibility
Job Responsibility
  • Lead the architecture, design, and implementation of enterprise Master Data Management (MDM) solutions
  • Design scalable master data architectures supporting provider, member, and reference data domains
  • Develop and implement enterprise MDM capabilities using the Informatica Intelligent Data Management Cloud (IDMC) platform
  • Design and develop ETL processes using Informatica PowerCenter, Oracle, Snowflake, and related technologies
  • Build, enhance, test, and maintain enterprise MDM applications and data integration processes
  • Partner with business stakeholders and subject matter experts to define enterprise master data requirements and identity resolution strategies
  • Design logical and physical data models using Erwin, ER/Studio, or equivalent modeling tools
  • Manage metadata loads and support enterprise metadata management initiatives
  • Ensure MDM solutions align with enterprise data governance, security, and data quality standards
  • Plan and support Agile project delivery, including solution design, implementation, testing, deployment, and continuous improvement
What we offer
What we offer
  • Medical, dental, and vision coverage
  • Life and disability insurance
  • Additional voluntary benefits
  • Fulltime
Read More
Arrow Right

Enterprise Architect

We are seeking an experienced Enterprise Architect to lead technology strategy, ...
Location
Location
United States , Little Rock
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in enterprise architecture, solutions architecture, or senior technical leadership roles
  • Strong background in application modernization, cloud technologies (Azure or AWS), and hybrid environments
  • Experience designing enterprise-level integrations, API frameworks, and data governance practices
  • Solid understanding of networking, infrastructure, identity management, and security controls
  • Ability to evaluate complex legacy systems and create clear, actionable modernization roadmaps
  • Excellent communication skills with the ability to influence leadership and collaborate across technical and non-technical teams
Job Responsibility
Job Responsibility
  • Develop and maintain the organization’s enterprise architecture roadmap across applications, data, infrastructure, and security
  • Evaluate current systems, identify gaps, and recommend modernization strategies aligned with long‑term business goals
  • Define architectural standards, best practices, and governance frameworks
  • Lead technology assessments, vendor evaluations, and solution design for enterprise initiatives
  • Oversee the modernization of legacy applications and support migration efforts to cloud and hybrid environments
  • Design integration patterns for cross‑system communication, APIs, data flows, and interoperability
  • Ensure architectures are scalable, high-performing, and aligned with cybersecurity requirements
  • Partner with IT leadership, business stakeholders, and project teams to translate business needs into technical solutions
  • Provide architectural guidance during project planning, design reviews, and technical decision-making
  • Mentor technical staff and promote architectural consistency across teams
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right

Lead Enterprise Architect

We are seeking a highly experienced Lead Enterprise Architect to serve as the se...
Location
Location
United States , Arlington
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10 years of experience in software development
  • 5 years of experience in IT architecture
  • 5 years of experience supporting federal environments
  • 3 years of experience architecting large-scale enterprise network and cloud modernization efforts
  • 3 years of experience with hybrid and multi-cloud environments
  • 3 years of team leadership / management experience
  • Bachelor’s degree in engineering, computer science, information systems, or related field
  • 10 additional years of network engineering and design experience required in lieu of a degree
  • Active Secret clearance
Job Responsibility
Job Responsibility
  • Serve as the subject matter expert for enterprise architecture, application development frameworks, and network/cloud architecture
  • Lead development and maintenance of enterprise technology strategy and target architecture
  • Define architecture standards, patterns, and governance processes
  • Translate business and mission requirements into secure, scalable technical architectures
  • Lead conceptual and logical system design efforts and oversee development of System Design Documents (SDDs) and related artifacts
  • Evaluate emerging technologies and conduct architectural trade studies
  • Develop business cases and perform ROI analysis for proposed technology solutions
  • Architect enterprise solutions across cloud (commercial, hybrid, private), network, identity, and application domains
  • Provide architectural oversight during engineering and implementation phases
  • Ensure solutions meet security, compliance, and performance requirements
  • Fulltime
Read More
Arrow Right

Senior Enterprise Architect - SAP, Logistics & Finance

Are you ready to take your career to the next level? Join Boots as a Senior Ente...
Location
Location
United Kingdom , Nottingham
Salary
Salary:
Not provided
boots.com Logo
Boots
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in SAP-centric technology strategy and architecture within a complex organisation
  • Ability to operate at enterprise level, supporting strategy, roadmaps and investment decisions through clear options and recommendations
  • Strong understanding of technology and business strategy, with the ability to translate between business outcomes and technology direction
  • Experience influencing senior technical and non-technical stakeholders and facilitating alignment on outcomes, scope and trade-offs
  • Ability to articulate complex architectural concepts clearly for different audiences
Job Responsibility
Job Responsibility
  • Collaborate with business leaders to define IT strategies and roadmaps, ensuring our technology investments align with our business outcomes
  • Own and evolve the enterprise-level architecture for ERP technologies, optimising our recent move to S4 HANA, moving remaining logistics processes from legacy mainframe technologies
  • Define target architectures and transition states aligned with Boots’ strategic priorities
  • Provide architectural leadership across major Finance and Logistics programmes, ensuring value-driven outcomes
  • Act as a senior design authority, reviewing and approving solution designs
  • Contribute to architecture governance forums and the continuous maturity of the EA practice
  • Mentor and support other architects, fostering a culture of growth and consistency
  • Ensure alignment with enterprise standards (platform strategy, integration patterns, data, identity and security) and regulatory/compliance requirements
What we offer
What we offer
  • Boots Retirement Savings Plan (up to 12% company contribution)
  • Generous employee discounts for you and a family member
  • Enhanced maternity/paternity/adoption leave pay
  • Access to free, 24/7 counselling and support through TELUS Health, our Employee Assistance Programme
  • Flexible benefits scheme including options for additional holiday and discounted gym memberships
  • Fulltime
Read More
Arrow Right

Enterprise Architect - Infrastructure

Ergo are Ireland’s leading Microsoft Partner. We are specialists in helping Ente...
Location
Location
Ireland , Dublin
Salary
Salary:
Not provided
ergogroup.ie Logo
Ergo
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience leading data centre migrations and infrastructure transformation
  • Experience supporting large-scale managed service contracts or service design frameworks
  • Strong Azure architecture exposure, particularly in hybrid environments
  • Experience with TOGAF or equivalent enterprise methodology desirable
  • Strong documentation capability (architecture artefacts, roadmaps, standards)
  • Experience supporting security and regulatory frameworks
  • Experience with Enterprise Windows Server environments
  • Experience with VMware virtualisation platforms
  • Experience with Storage & backup infrastructure
  • Experience with Azure IaaS / PaaS
Job Responsibility
Job Responsibility
  • Provide architectural leadership across a mature on-prem infrastructure environment
  • Lead structured assessment of current state architecture, including hosting, networking, identity and security
  • Define phased roadmap toward hybrid/cloud adoption aligned to business and regulatory requirements
  • Develop and maintain enterprise-level infrastructure architecture artefacts
  • Lead architecture reviews across server, storage, networking, identity and security domains
  • Define technical standards and architectural principles
  • Lead planning and oversight of data centre migration initiatives and infrastructure consolidation
  • Define migration strategies for applications and data
  • Design hybrid architecture integrating on-prem data centres and Azure (IaaS, PaaS integration)
Read More
Arrow Right

Senior Enterprise Architect

Role : Senior Enterprise Architect ( Java architect). We are seeking an experien...
Location
Location
United States , Dallas
Salary
Salary:
164510.00 - 185000.00 USD / Year
blueyonder.com Logo
Blue Yonder
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree (STEM preferred) and minimum 12 to 15 years of experience in enterprise Software development
  • with min of 5 years as Architect
  • Strong programming experience and background in Enterprise Java, spring boot, microservices
  • Demonstrable experience designing, building deploying and maintenance of enterprise cloud solutions (using, Azure)
  • Demonstrable experience with microservices based architecture on Cloud at scale
  • Azure: 5+ years of experience with cloud architecture and deployment
  • Snowflake: 3+ years of experience in data warehousing
  • PostgreSQL: 5+ years of experience working with Postgres or similar databases
  • CICD: 5+ years of experience with Docker, Kubernetes, Git Actions
  • Experience with implementation of Event driven architecture using Kafka, Spark or similar technologies
Job Responsibility
Job Responsibility
  • Architectural Leadership: Serve as the primary technical architect for multiple retail planning teams, ensuring that all solutions align with the company's strategic goals and technical standards
  • Technical Guidance: Provide expert guidance in code and design reviews and mentorship to engineering teams, fostering a culture of innovation and excellence
  • Cross-Functional Collaboration: Collaborate with product management, UX/UI designers, and other stakeholders to translate business requirements into scalable, efficient, and secure software solutions
  • Innovation and Strategy: Drive the adoption of cutting-edge technologies and methodologies that enhance the scalability, performance, and reliability of our retail planning solutions
  • Technical Roadmap Development: Contribute to the development and maintenance of the technical roadmap, ensuring alignment with business objectives and emerging industry
  • Thought Leadership: Represent the company at industry conferences and events, sharing insights and experiences to establish the company as a leader in supply chain software solutions
What we offer
What we offer
  • Comprehensive Medical, Dental and Vision
  • 401K with Matching
  • Flexible Time Off
  • Corporate Fitness Program
  • A variety of voluntary benefits such as
  • Legal Plans, Accident and Hospital Indemnity, Pet Insurance and much more
  • Fulltime
Read More
Arrow Right

Software Engineer, Enterprise Identity

OpenAI’s Enterprise Identity team builds the trust and control layer that enable...
Location
Location
United States , San Francisco
Salary
Salary:
185000.00 - 385000.00 USD / Year
openai.com Logo
OpenAI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience building and operating production backend systems
  • Exposure to authentication, identity, or access control in real-world environments
  • Comfort working with identity protocols such as OAuth 2.0, SAML, SCIM, SSO and OIDC
  • Solid backend engineer (Python preferred)
  • Experience designing reliable systems, writing clean APIs, and thinking carefully about security, privacy and correctness
  • Has operated and worked in high-traffic and large scale systems
  • Likes owning problems end-to-end, from design through production, and learning new domains as needed to deliver high-quality results
  • Motivated by the opportunity to help shape how enterprises securely access and govern the use of frontier AI technologies
Job Responsibility
Job Responsibility
  • Architect and build the next generation of enterprise authentication and authorization infrastructure, powering secure integrations across SAML, OIDC, and OAuth 2.0
  • Design and deliver core enterprise identity capabilities — including SSO, SCIM provisioning, RBAC, and delegated access — that enable organizations to manage access with confidence at scale
  • Evolve the identity data model and system architecture to support complex, real-world enterprise structures spanning teams, domains, subsidiaries, and global organizations
  • Partner closely with go-to-market, security, and product teams to shape identity features that meet the needs of customers ranging from fast-growing startups to multinational enterprises
  • Build high-leverage tools, APIs, and primitives that make it easy for engineering teams across OpenAI to integrate enterprise identity seamlessly into their products
What we offer
What we offer
  • Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts
  • Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)
  • 401(k) retirement plan with employer match
  • Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)
  • Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees
  • 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)
  • Mental health and wellness support
  • Employer-paid basic life and disability coverage
  • Annual learning and development stipend to fuel your professional growth
  • Daily meals in our offices, and meal delivery credits as eligible
  • Fulltime
Read More
Arrow Right
New

Enterprise Security Architect Sr

Under the general supervision of the Sr Manager Cybersecurity, the Enterprise Se...
Location
Location
United States , Auburn Hills
Salary
Salary:
Not provided
https://www.volkswagen-group.com Logo
Volkswagen AG
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years’ experience in a combination of Security Architecture, Security Operations, Data Security and Auditing with at least 5 years of experience in Information Technology architecture, planning and execution in complex environments
  • Bachelor’s degree in computer science, Information Technology, or related field or equivalent work experience
  • Certified Information Security System Professional (CISSP) certification or equivalent
  • Proven experience as a technical architect in multiple fields of IT (e.g. network, storage, server, client, web/application, cloud, etc.) with the ability to understand security best practices and implications across all fields
  • Strong experience across multiple cybersecurity domains including cloud security, application security, identity & access management, network security, and data protection
  • Hands-on experience implementing modern security architectures
  • Excellent knowledge of cybersecurity risk evaluations for applications and systems
  • Adept in translating security requirements into actionable controls and measures
  • Background in securing on-prem, cloud and hybrid systems in theory and practice, including secure architecture design concepts
  • Understanding of DevOps principles, 'shift left' philosophy
Job Responsibility
Job Responsibility
  • Assure that security principles and company security policies are adhered to in the design and delivery of systems and software including ongoing lifecycle
  • Support cybersecurity architecture activities across assigned projects and initiatives supporting Volkswagen Group of America
  • Support secure design, implementation, and deployment activities for assigned systems and projects
  • Design, develop, review and implements security designs for new or existing technology system(s)
  • Establish and maintain trust relationships with the business and project teams through active engagement
  • Collaborate with other teams and departments to fit security requirements with other constraints
  • Support business and project teams with cybersecurity architecture guidance
  • Provide cybersecurity review and recommendations for system and application designs and architectures
  • Provide input on security requirements to be included in statements of work
  • Create and maintain architecture design artifacts such as diagrams and documentation
  • Fulltime
Read More
Arrow Right