CrawlJobs Logo
Barclays Logo Barclays · IT - Software Development

Iam Lead Architect

United Kingdom, Knutsford · Job Posted May 05, 2026
Apply Position
Job Link Share

Job Description

Join us as a IAM Lead Architect - IAM is a fast moving and strategic defence for CISO within Barclays. You will join an expanding engineering team that is continually bringing new solutions and applications to our estate. Initially you will review the existing estate and gain understanding of Barclays Identity and Access capabilities. You will then drive new projects and initiatives- reviewing architecture, engagement, AI, designing and understanding Non Functional Requirements.

Job Responsibility

  • Design and development of solutions as products that can evolve, meeting business requirements that align with modern software engineering practices and automated delivery tooling. This includes identification and implementation of the technologies and platforms
  • Targeted design activities that apply an appropriate workload placement strategy and maximise the benefit of cloud capabilities such as elasticity, serverless, containerisation etc
  • Best practice designs incorporating security principles (such as defence in depth and reduction of blast radius) that meet the Bank’s resiliency expectations
  • Solutions that appropriately balance risks and controls to deliver the agreed business and technology value
  • Adoption of standardised solutions where they fit. If no standard solutions fit, feed into their ongoing evolution where appropriate
  • Fault finding and performance issues support to operational support teams, leveraging available tooling
  • Solution design impact assessment in terms of risk, capacity and cost impact, inc. estimation of project change and ongoing run costs
  • Development of the requisite architecture inputs required to comply with the banks governance processes, including design artefacts required for architecture, privacy, security and records management governance processes

Requirements

  • Understanding of Identity management and security principles
  • Knowledge of PAM / AM / LAM
  • Experience of designing and implementing a new IGA platform
  • Understanding of Zero Trust and Security Architecture

Nice to have

  • Deploying and managing Agentic AI advantageous
  • Experience of managing IAM data in a complex environment
  • AD / Entra Directory services knowledge
  • AWS / GCP platform knowledge preferable
  • Ability to work in a complex banking environment

What we offer

  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
Barclays - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Iam Lead Architect

8 matching positions

Iam Architect

Aramark is modernizing its enterprise identity environment to support scalable, ...
Location
Location
United States , Philadelphia
Salary
Salary:
Not provided
aramark.com Logo
Aramark
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong hands-on experience with Identity and Access Management (IAM), including identity governance, access controls, authentication, authorization, privileged access management, and enterprise IAM architecture
  • Strong experience designing identity governance, authorization, federation, and lifecycle management patterns in complex enterprise environments
  • Experience with SailPoint ISC or IIQ, including governance architecture and enterprise IAM transformation initiatives
  • Strong understanding of RBAC, ABAC, policy-driven access models, and modern identity governance concepts
  • Strong experience with federation and enterprise access architecture, including practical design experience with Ping Identity platforms such as PingFederate and PingAccess
  • Ability to translate complex identity challenges into scalable, pragmatic architectural approaches
  • Experience working in SOX-controlled or other highly regulated environments
Job Responsibility
Job Responsibility
  • Develop enterprise authorization patterns across RBAC, ABAC, and policy-driven access models to improve consistency, scalability, and long-term adaptability
  • Shape identity governance architecture and support modernization efforts across lifecycle management and enterprise access capabilities
  • Establish governance patterns for non-human identities, including service accounts, APIs, and automation workflows
  • Lead the architectural direction for enterprise federation and access patterns across PingFederate, PingAccess, Entra ID, and related identity platforms
  • Define scalable SSO, federation, trust, and access design patterns for application onboarding and modernization efforts
  • Partner with IAM leadership, engineering, operations, and security teams to guide long-term identity architecture and modernization decisions
  • Translate identity strategy into practical design patterns, governance models, and implementation guidance
  • Produce architecture standards, design artifacts, and decision frameworks that improve consistency across the identity ecosystem
What we offer
What we offer
  • Medical
  • Dental
  • Vision
  • Work/life resources
  • Retirement savings plans like 401(k)
  • Paid days off such as parental leave and disability coverage
  • Generous PTO
  • Vacation and 9 paid holidays
  • Volunteer days
  • Community partnerships
  • Fulltime
Read More
Arrow Right

GCP AI Platform Architect / Lead AI Platform Engineer

Our client is an innovative technology company specializing in the development o...
Location
Location
Poland , Kraków
Salary
Salary:
Not provided
teamquest.pl Logo
TeamQuest Sp. z o. o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • GCP Expertise (verifiable - ask for production examples): GCP is their primary cloud not secondary experience alongside AWS/Azure. Production deployments across most of: Vertex AI, Cloud Run or GKE, Pub/Sub, BigQuery, Secret Manager, VPC Service Controls, IAM + Workload Identity. Has designed for GCP from scratch, not migrated from another cloud, end-to-end ownership
  • AI / Backend Engineering: Python is the primary language - production-grade service/API development, not scripting or data science only. Strong track record building distributed systems and integrating LLMs.
  • Agentic Architecture (must be production, not PoC): Hands-on production experience with at least one: LangGraph, Google ADK, CrewAI, or custom multi-agent orchestration layer. RAG pipelines shipped to production. Google ADK: candidate must be able to explain what it is, when to use it, and how it compares to LangGraph and custom orchestration. AI agent workflows, ReAct prompting, and Function Calling in production environments
  • Multi-Tenant Architecture: Has designed a multi-tenant SaaS platform end-to-end - not just contributed. Can articulate tenant isolation strategies: IAM boundary design, data isolation per tenant, VPC controls.
  • API Design & Integrations: Proven ability to create secure, high-performance APIs capable of asynchronously managing traffic and communication between multiple decoupled services.
  • Enterprise Security: Practical knowledge of data isolation in multi-tenant SaaS architectures, IAM, and securing cloud-based environments.
  • Vector Databases: Hands-on experience with semantic search and at least one of: Pinecone, Weaviate, pgvector, or Vertex Matching Engine.
Job Responsibility
Job Responsibility
  • System Architecture: Design and develop a scalable, cloud-native architecture on Google Cloud Platform (GCP) that meets enterprise security and multi-tenant data isolation requirements for a SaaS environment
  • AI Agent Orchestration: Architect and implement autonomous, multi-step AI workflows with a clear separation of agent responsibilities (retrieval, analysis, reasoning, response generation)
  • Hands-on Core Development: Actively contribute to core system development-coding orchestration logic, designing services, optimizing performance, and building secure API integrations for routing queries across internal and external agents
  • Frontend Enablement: Design the backend layer, streaming protocols, and APIs to seamlessly support and integrate with advanced conversational UIs
  • Data Management & Extensibility: Build a robust backend capable of processing qualitative and social data, ensuring the platform is easily extensible to incorporate new data sources
What we offer
What we offer
  • Attractive salary
  • Full remote work
  • Social benefits:sporto card,healthcare insurance
  • Fulltime
Read More
Arrow Right

GCP AI Platform Architect / Lead AI Platform Engineer

Our client is an innovative technology company specializing in the development o...
Location
Location
Poland , Katowice
Salary
Salary:
Not provided
teamquest.pl Logo
TeamQuest Sp. z o. o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • GCP Expertise (verifiable - ask for production examples): production deployments across most of: Vertex AI, Cloud Run or GKE, Pub/Sub, BigQuery, Secret Manager, VPC Service Controls, IAM + Workload Identity
  • Has designed for GCP from scratch, not migrated from another cloud, end-to-end ownership
  • AI / Backend Engineering: Python is the primary language - production-grade service/API development, not scripting or data science only
  • Strong track record building distributed systems and integrating LLMs
  • Agentic Architecture (must be production, not PoC): Hands-on production experience with at least one: LangGraph, Google ADK, CrewAI, or custom multi-agent orchestration layer
  • RAG pipelines shipped to production
  • Google ADK: candidate must be able to explain what it is, when to use it, and how it compares to LangGraph and custom orchestration
  • AI agent workflows, ReAct prompting, and Function Calling in production environments
  • Multi-Tenant Architecture: Has designed a multi-tenant SaaS platform end-to-end - not just contributed
  • Can articulate tenant isolation strategies: IAM boundary design, data isolation per tenant, VPC controls
Job Responsibility
Job Responsibility
  • System Architecture: Design and develop a scalable, cloud-native architecture on Google Cloud Platform (GCP) that meets enterprise security and multi-tenant data isolation requirements for a SaaS environment
  • AI Agent Orchestration: Architect and implement autonomous, multi-step AI workflows with a clear separation of agent responsibilities (retrieval, analysis, reasoning, response generation)
  • Hands-on Core Development: Actively contribute to core system development-coding orchestration logic, designing services, optimizing performance, and building secure API integrations for routing queries across internal and external agents
  • Frontend Enablement: Design the backend layer, streaming protocols, and APIs to seamlessly support and integrate with advanced conversational UIs
  • Data Management & Extensibility: Build a robust backend capable of processing qualitative and social data, ensuring the platform is easily extensible to incorporate new data sources
What we offer
What we offer
  • Attractive salary
  • Full remote work
  • Social benefits: sport card, healthcare insurance
  • Fulltime
Read More
Arrow Right

Lead Security Architect

JET's Information Security organisation protects a technology-led, cloud-native ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
justeattakeaway.com Logo
Just Eat Takeaway.com
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strategic risk management expertise, with the ability to assess enterprise-wide threats and translate them into architectural roadmaps
  • Exceptional communication skills to engage C-Suite stakeholders, presenting complex security topics with clarity and business context
  • Deep technical knowledge across Cloud Security, Network Security, and Identity and Access Management (IAM) architectures
  • Proven ability to influence across organizational boundaries, building trusted partnerships with engineering, IT, product, and business leaders
  • Industry thought leadership mindset, staying ahead of emerging threats and contributing to the broader security community
  • Certified Information Systems Security Professional (CISSP) certification
  • Additional certifications such as Certified Information Security Manager (CISM) highly valued
  • Demonstrated experience designing and implementing enterprise-scale security frameworks that balance protection with business enablement
  • Strong ethical foundation and integrity, understanding the responsibility of handling sensitive information and setting team standards
  • Collaborative approach to security governance, with a track record of embedding security seamlessly into development and operations workflows
Job Responsibility
Job Responsibility
  • Define and evolve the enterprise security architecture, establishing the 12 to 18 month strategic vision and technical standards that guide the entire organization's security posture
  • Steer the creation of 'Golden Path' security patterns, approved, reusable frameworks that align with engineering excellence and reduce friction across teams
  • Influence decision-making by translating threat landscapes into actionable business risk assessments and investment priorities
  • Direct security governance programs, including oversight of vulnerability management, penetration testing strategies, and compliance assurance initiatives
  • Transform how security integrates with business operations by acting as the liaison between security, engineering, and IT departments
  • Champion budget planning and resource allocation for security improvement projects, ensuring strategic alignment with enterprise risk management
  • Drive the development of security policies and standards that balance robust protection with business agility and innovation
  • Establish thought leadership across the organization, setting the tone for security culture and embedding security-by-design principles company-wide
  • Collaborate with regulatory and legal teams to ensure all architectural decisions meet compliance requirements across jurisdictions
  • Mentor and guide security teams, fostering an environment of continuous learning and shared accountability for organizational resilience
  • Fulltime
Read More
Arrow Right

Senior Information Security Architect - Cloud IAM

We are seeking a highly skilled Senior IAM Security Architect to join our inform...
Location
Location
United States
Salary
Salary:
148600.00 - 198200.00 USD / Year
firstam.com Logo
First American Financial
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in IAM security, including at least 5 years of experience in IAM risk assessment, threat modeling, and security control design
  • Preferred Certified Information Systems Security Professional (CISSP) or Certified Identity and Access Manager (CIAM) or other relevant IAM/security certification
  • Proven expertise in implementing and securing IAM solutions in cloud environments such as AWS, Azure, and Entra ID
  • In-depth knowledge of IAM security best practices, identity governance, and access management policies
  • Hands-on experience in conducting security risk assessments and threat modeling for IAM systems
  • Demonstrated experience in establishing least privilege access and implementing Just-in-Time (JIT) access controls across cloud and on-premises environments
  • Expertise in implementing and managing a Zero Trust security posture for IAM, with hands-on experience in identity validation, continuous authentication, and risk-based access controls
  • Strong expertise with IAM platforms such as Microsoft Entra ID (Azure AD), AWS IAM, Azure Active Directory
  • Experience with cloud security, integrating IAM systems with AWS, Azure, and hybrid environments
  • Strong understanding of IAM security controls, including role-based access control (RBAC), attribute-based access control (ABAC), policy enforcement, and Just-in-Time (JIT) provisioning
Job Responsibility
Job Responsibility
  • Participate in the design of secure IAM architectures across multiple platforms (AWS, Azure, Entra ID), ensuring all components align with best practices and organizational security requirements
  • Design security controls for IAM, including user authentication, authorization, role management, identity federation, and privilege management across cloud and hybrid environments
  • Lead the design and evolution of CIAM architecture that supports secure, scalable, and customer-centric identity services across web, mobile, and API-based platforms
  • Establish and maintain a Zero Trust security model for IAM, ensuring that all access requests are continuously verified, regardless of location or network
  • Integrate Zero Trust principles with cloud-native security tools and IAM platforms (e.g., AWS, Azure, Entra ID) to ensure seamless, secure, and dynamic access control
  • Automate risk-based access controls and adaptive authentication based on behavioral signals, ensuring a dynamic response to security events
  • Establish and enforce least privilege access principles for all roles across cloud and on-prem environments, ensuring users only have the minimal access necessary to perform their job functions
  • Design and implement Just-in-Time (JIT) access control mechanisms to dynamically grant access based on user needs, significantly reducing standing permission sets
  • Design SSO solutions that provide seamless and secure access to enterprise applications, ensuring a frictionless user experience while maintaining high security standards
  • Lead the adoption of modern authentication protocols (e.g., OAuth 2.0, OpenID Connect, SAML) for secure, scalable, and standardized access management across applications and systems
What we offer
What we offer
  • medical
  • dental
  • vision
  • 401k
  • PTO/paid sick leave
  • employee stock purchase plan
  • Fulltime
Read More
Arrow Right

Lead Security Architect

We are looking for a Lead Security Architect to define and evolve the company’s ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
instadeep.com Logo
InstaDeep
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in enterprise and cloud security architecture
  • 5+ years in identity, access, and network trust design
  • 3+ years facilitating threat modeling and secure design reviews
  • Strong experience defining architecture standards and translating principles into practical patterns
  • Experience working across enterprise IT, cloud platforms, infrastructure, and product environments
  • Experience engaging with senior stakeholders across technical and non-technical functions
  • Security architecture at enterprise and cloud scale
  • Zero Trust and IAM architecture
  • Secure integration and trust-boundary design
  • Threat modeling and architecture review governance
Job Responsibility
Job Responsibility
  • Security architecture leadership
  • Define architecture principles and implementation patterns for Zero Trust, identity, authorization, trust boundaries, segmentation, secure integration, and secure access
  • Set the strategic direction for enterprise, cloud, and data security architecture
  • Define target-state architecture for Enterprise IT, Cloud, and Infrastructure, including IAM and identity trust models, reverse proxy and secure access architecture, network and data segmentation, cloud-native control patterns
  • Lead the development of architecture standards for secure integration between IT and product environments
  • Partner closely with Global IT Security Engineering on IAM, endpoint, VPN, reverse proxy, and access-tool integration
  • Define security architecture for AI/ML workflows, cloud-native data platforms, and ML pipelines
  • Establish and maintain AI/ML trust-boundary models
  • Support architecture and product teams on secure AI adoption
  • Shape standards for data governance and access design, ML pipeline trust boundaries, model and data protection patterns, secure use of AI assistants and AI-enabled workflows
  • Fulltime
Read More
Arrow Right

Senior Technical Lead - AWS Architect

The Senior Technical Lead / AWS Architect role at NTT DATA involves designing an...
Location
Location
Romania , Bucharest
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong hands-on experience with AWS core services (VPC, EC2, RDS, S3, IAM, CloudWatch)
  • Deep expertise in AWS networking, including VPC design, routing, Transit Gateway, VPN, Direct Connect, and hybrid connectivity
  • Proven experience leading AWS migration projects using tools and methodologies such as AWS Migration Hub, DMS, and landing zones
  • Solid background in application modernization, including containers (EKS/ECS), serverless (Lambda), and CI/CD pipelines
  • Strong understanding of security, IAM, and governance in AWS environments
  • 8+ years in infrastructure, cloud, or solution architecture roles, with at least 4–5 years of hands-on AWS experience
Job Responsibility
Job Responsibility
  • Lead the architecture and technical delivery of AWS cloud projects, including discovery, migration, and modernization initiatives
  • Design secure, scalable, and cost-optimized AWS architectures, with a strong focus on networking, connectivity, and hybrid environments
  • Guide teams through cloud migrations (rehost, replatform, refactor) and modernization efforts such as containerization and cloud-native design
  • Act as a technical lead, mentoring engineers and reviewing designs and implementations
  • Collaborate with stakeholders during presales, workshops, and solutioning activities
  • Ensure best practices around security, governance, reliability, and performance are followed
  • Fulltime
Read More
Arrow Right

IAM Solutions Architect

Join a leading organization dedicated to empowering individuals and businesses t...
Location
Location
United States , Southlake, Austin
Salary
Salary:
72.30 - 80.33 USD / Hour
aquent.com Logo
Aquent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Computer Information Systems, Management Information Systems, or a related technical field
  • A minimum of 10 years of experience in information security, with at least 5 years specifically focused on Identity and Access Management (IAM)
  • At least 3 years of experience in an enterprise-level architecture role, with a direct focus on IAM technologies and strategy
  • Demonstrated deep knowledge of critical IAM domains, including authentication and authorization, Single Sign-On (SSO), Identity Governance and Administration (IGA), Directory Services, Federation Services, and Privileged Access Management (PAM)
  • Proven ability to define robust IAM architectures and develop strategic roadmaps
  • Strong background in aligning IAM strategy with enterprise security policies and overarching business objectives
Job Responsibility
Job Responsibility
  • Architect and establish comprehensive strategies for managing the identity lifecycle, including user authentication and authorization across both on-premise and cloud environments
  • Define, document, and maintain reference architectures, technology standards, processes, and policies for core identity solutions
  • Seamlessly integrate new identity solutions into existing infrastructure, ensuring compatibility and optimal performance
  • Provide expert leadership and direction for technical infrastructure support, including on-call support and resolution of escalated trouble tickets, and lead the resolution of key implementation and system integration challenges
  • Leverage deep understanding of federation concepts and technologies, including SAML, OAuth, and OIDC, to design advanced identity solutions
  • Design and engineer sophisticated identity and access management solutions within leading cloud platforms, including Azure and AWS, and potentially other cloud providers
  • Lead Proof of Concepts (POCs) and develop tactical and strategic solution roadmaps for identity initiatives
  • Collaborate effectively with product vendors and internal governance teams, presenting and demonstrating application solutions to diverse stakeholders
  • Guide the deployment of directory services infrastructure, ensuring adherence to best practices, robust security architecture, and resilience against vulnerabilities
What we offer
What we offer
  • subsidized health, vision, and dental plans, paid sick leave, and retirement plans with a match
Read More
Arrow Right