CrawlJobs Logo

Lead Systems Architect - IAM

https://www.wellsfargo.com/ Logo

Wells Fargo

Location Icon

Location:
United States , Irving

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

119000.00 - 206000.00 USD / Year
Save Job
Save Icon
Job offer has expired

Job Description:

Wells Fargo is seeking a Lead Systems Architect for Access Provisioning that is responsible for defining, governing, and evolving enterprise access provisioning capabilities within the Identity and Access Management (IAM) domain. This role provides architectural and technical leadership to ensure access is provisioned, modified, and removed in a secure, automated, scalable, and compliant manner across on‑premises, cloud, and hybrid environments for both human and non‑human identities.

Job Responsibility:

  • Own the end‑to‑end architecture for access provisioning, including joiner, mover, leaver processes, entitlement lifecycle management, and access de‑provisioning
  • Define and maintain target‑state and transition architectures that drive automation, least‑privilege enforcement, and reduction of manual access processes
  • Establish and enforce architectural standards, patterns, and guardrails for access provisioning, entitlement modeling, and application onboarding
  • Design role‑based and attribute‑based access models aligned to business functions, risk tolerance, and regulatory requirements
  • Partner with security engineering, access operations, application teams, and platform owners to ensure consistent implementation of provisioning architectures
  • Guide integration of identity governance, provisioning, and authorization capabilities with authoritative systems of record and downstream target systems
  • Ensure access provisioning architectures support segregation of duties, auditability, and regulatory compliance requirements
  • Lead architecture reviews for new applications, platforms, cloud migrations, and major initiatives impacting access provisioning
  • Drive remediation strategies for access‑related audit findings, control gaps, and technical debt
  • Influence IAM roadmaps and investment decisions related to provisioning, automation, and access governance
  • Serve as a technical authority and thought leader within the IAM domain for access provisioning
  • Mentor senior engineers and architects, promoting consistent architectural practices across teams
  • Collaborate with governance and policy teams to translate policy and risk requirements into implementable technical controls
  • Work closely with operations teams to ensure architectures are operationally sustainable and scalable

Requirements:

  • 5+ years of Architecture experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • Deep experience designing and leading Identity and Access Management architectures, with strong focus on access provisioning and lifecycle management
  • Strong knowledge of IAM principles including least privilege, segregation of duties, entitlement governance, and identity lifecycle controls
  • Hands‑on experience with enterprise IAM, identity governance, and access provisioning platforms
  • Proven ability to design large‑scale, automated access solutions across on‑prem, cloud, and hybrid environments
  • Strong stakeholder engagement skills with the ability to influence across security, technology, risk, and business teams
  • Excellent problem‑solving, systems thinking, and written and verbal communication skills

Nice to have:

  • Experience with SailPoint, Active Directory and/or HashiCorp Vault
  • Experience supporting regulatory, audit, and risk management activities related to access controls
  • Background in modernizing legacy access provisioning models through automation and standardized architectures
  • Ability to balance security, compliance, operational efficiency, and user experience in architectural decision‑making
What we offer:
  • Health benefits
  • 401(k) Plan
  • Paid time off
  • Disability benefits
  • Life insurance, critical illness insurance, and accident insurance
  • Parental leave
  • Critical caregiving leave
  • Discounts and savings
  • Commuter benefits
  • Tuition reimbursement
  • Scholarships for dependent children
  • Adoption reimbursement

Additional Information:

Job Posted:
April 16, 2026

Expiration:
April 23, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Wells Fargo - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Lead Systems Architect - IAM

IAM Solutions Architect

Join a leading organization dedicated to empowering individuals and businesses t...
Location
Location
United States , Southlake, Austin
Salary
Salary:
72.30 - 80.33 USD / Hour
aquent.com Logo
Aquent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Computer Information Systems, Management Information Systems, or a related technical field
  • A minimum of 10 years of experience in information security, with at least 5 years specifically focused on Identity and Access Management (IAM)
  • At least 3 years of experience in an enterprise-level architecture role, with a direct focus on IAM technologies and strategy
  • Demonstrated deep knowledge of critical IAM domains, including authentication and authorization, Single Sign-On (SSO), Identity Governance and Administration (IGA), Directory Services, Federation Services, and Privileged Access Management (PAM)
  • Proven ability to define robust IAM architectures and develop strategic roadmaps
  • Strong background in aligning IAM strategy with enterprise security policies and overarching business objectives
Job Responsibility
Job Responsibility
  • Architect and establish comprehensive strategies for managing the identity lifecycle, including user authentication and authorization across both on-premise and cloud environments
  • Define, document, and maintain reference architectures, technology standards, processes, and policies for core identity solutions
  • Seamlessly integrate new identity solutions into existing infrastructure, ensuring compatibility and optimal performance
  • Provide expert leadership and direction for technical infrastructure support, including on-call support and resolution of escalated trouble tickets, and lead the resolution of key implementation and system integration challenges
  • Leverage deep understanding of federation concepts and technologies, including SAML, OAuth, and OIDC, to design advanced identity solutions
  • Design and engineer sophisticated identity and access management solutions within leading cloud platforms, including Azure and AWS, and potentially other cloud providers
  • Lead Proof of Concepts (POCs) and develop tactical and strategic solution roadmaps for identity initiatives
  • Collaborate effectively with product vendors and internal governance teams, presenting and demonstrating application solutions to diverse stakeholders
  • Guide the deployment of directory services infrastructure, ensuring adherence to best practices, robust security architecture, and resilience against vulnerabilities
What we offer
What we offer
  • subsidized health, vision, and dental plans, paid sick leave, and retirement plans with a match
Read More
Arrow Right
New

Senior Information Security Architect - Cloud IAM

We are seeking a highly skilled Senior IAM Security Architect to join our inform...
Location
Location
United States
Salary
Salary:
148600.00 - 198200.00 USD / Year
firstam.com Logo
First American Financial
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in IAM security, including at least 5 years of experience in IAM risk assessment, threat modeling, and security control design
  • Preferred Certified Information Systems Security Professional (CISSP) or Certified Identity and Access Manager (CIAM) or other relevant IAM/security certification
  • Proven expertise in implementing and securing IAM solutions in cloud environments such as AWS, Azure, and Entra ID
  • In-depth knowledge of IAM security best practices, identity governance, and access management policies
  • Hands-on experience in conducting security risk assessments and threat modeling for IAM systems
  • Demonstrated experience in establishing least privilege access and implementing Just-in-Time (JIT) access controls across cloud and on-premises environments
  • Expertise in implementing and managing a Zero Trust security posture for IAM, with hands-on experience in identity validation, continuous authentication, and risk-based access controls
  • Strong expertise with IAM platforms such as Microsoft Entra ID (Azure AD), AWS IAM, Azure Active Directory
  • Experience with cloud security, integrating IAM systems with AWS, Azure, and hybrid environments
  • Strong understanding of IAM security controls, including role-based access control (RBAC), attribute-based access control (ABAC), policy enforcement, and Just-in-Time (JIT) provisioning
Job Responsibility
Job Responsibility
  • Participate in the design of secure IAM architectures across multiple platforms (AWS, Azure, Entra ID), ensuring all components align with best practices and organizational security requirements
  • Design security controls for IAM, including user authentication, authorization, role management, identity federation, and privilege management across cloud and hybrid environments
  • Lead the design and evolution of CIAM architecture that supports secure, scalable, and customer-centric identity services across web, mobile, and API-based platforms
  • Establish and maintain a Zero Trust security model for IAM, ensuring that all access requests are continuously verified, regardless of location or network
  • Integrate Zero Trust principles with cloud-native security tools and IAM platforms (e.g., AWS, Azure, Entra ID) to ensure seamless, secure, and dynamic access control
  • Automate risk-based access controls and adaptive authentication based on behavioral signals, ensuring a dynamic response to security events
  • Establish and enforce least privilege access principles for all roles across cloud and on-prem environments, ensuring users only have the minimal access necessary to perform their job functions
  • Design and implement Just-in-Time (JIT) access control mechanisms to dynamically grant access based on user needs, significantly reducing standing permission sets
  • Design SSO solutions that provide seamless and secure access to enterprise applications, ensuring a frictionless user experience while maintaining high security standards
  • Lead the adoption of modern authentication protocols (e.g., OAuth 2.0, OpenID Connect, SAML) for secure, scalable, and standardized access management across applications and systems
What we offer
What we offer
  • medical
  • dental
  • vision
  • 401k
  • PTO/paid sick leave
  • employee stock purchase plan
  • Fulltime
Read More
Arrow Right

Identity and Access Management Engineer

Do you have experience designing and implementing Identity and Access Management...
Location
Location
Australia , Melbourne
Salary
Salary:
Not provided
easygo.io Logo
Easygo Gaming
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 3-5 years hands-on experience administering and architecting enterprise Identity and Access Management systems, particularly Okta or similar IAM platforms
  • Advanced technical expertise with modern identity protocols and standards including OIDC (OpenID Connect), SAML, and SCIM implementations
  • Proven experience managing Google Workspace as an Identity Provider, including application integrations and access management
  • Demonstrated ability to design identity architectures that balance security requirements with user experience and operational efficiency
  • Track record of successfully evaluating, selecting, and implementing identity technologies in production environments
  • Experience configuring SSO integrations for SaaS and enterprise applications using federated identity protocols
  • Strong understanding of authentication mechanisms including Multi-Factor Authentication (MFA), passwordless authentication, and passkey technologies
  • Practical knowledge of authorization models, role-based access control (RBAC), and attribute-based access control (ABAC) concepts
Job Responsibility
Job Responsibility
  • Design and architect enterprise identity and access management solutions that scale across nearly 2,000 global employees while maintaining security and operational efficiency
  • Serve as the organization's IAM subject matter expert, providing authoritative guidance on identity technologies, standards, and best practices to stakeholders across IT, Security, and Development teams
  • Develop comprehensive identity architecture roadmaps to uplift and modernize access control systems across the organization, aligning with business growth and security requirements
  • Evaluate, procure, and implement identity tools and platforms to continuously enhance IAM capabilities and address evolving organizational needs
  • Manage and optimize Google Workspace as the primary Identity Provider, ensuring seamless integration with enterprise applications and services
  • Configure and maintain enterprise identity systems including Okta and related IAM platforms, implementing OIDC, SAML, and SCIM integrations for application access
  • Provide expert consultation to product and engineering teams on customer-facing authentication systems, advising on MFA implementation, passkey adoption, and secure authentication flows
  • Design and enforce access control policies and authorization frameworks in alignment with least privilege and zero trust principles
  • Lead identity-related projects from conception to deployment, managing stakeholder expectations and delivering measurable improvements to identity operations
  • Automate identity lifecycle management processes including provisioning, de-provisioning, and access recertification workflows
What we offer
What we offer
  • In-house baristas serving free coffee, tea, fresh juices, and smoothies
  • Daily catered breakfast and regular company-wide events
  • Snack walls and drink fridges on every floor
  • Fun /modern office spaces with pool tables, table tennis, gaming consoles, and an F1 simulator
  • Access to our Employee Assistance Program for you and your loved ones
  • 9,000+ courses on our Learning & Development platform
  • One paid volunteer day per year
  • Weekly Wednesday massages by professional masseuses
  • Team budgets for lunches and activities to celebrate achievements
  • Social sports teams and participation in Corporate Games
  • Fulltime
Read More
Arrow Right

Staff Software Engineer, IAM

Mozilla IAM team seeks a Staff Software Engineer to rebuild our Identity and Acc...
Location
Location
United States; Canada
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years experience in software engineering
  • at least 5 years of extensive IAM / IdP expertise
  • Successfully implemented IAM/IdP Solution using Okta, Google IdP
  • Proven technical leadership experience
  • Expertise in AuthN, AuthZ, and access governance
  • Deep knowledge of identity lifecycle management and access governance
  • Proficient in Python, JavaScript, Github actions, GitOps workflows
  • Strong expertise integrating with Cloud Service Providers and cloud-native technologies, preferably GCP
  • Excellent communication skills aligning technology with user needs and organizational goals
  • Self-starter who thrives in ambiguity
Job Responsibility
Job Responsibility
  • Architect and lead IAM / IdP system redesign, emphasizing user experience and scalability
  • Guide technical decision-making and adoption of user-centric solutions
  • Guide team members and promote engineering standard methodologies, with a focus on usability and maintainability
  • Facilitate cross-functional collaboration for efficient and cohesive platform delivery
  • Drive automation and self-service capabilities in IAM / IdP, ensuring robust security, compliance, and improved user satisfaction
  • Meet with engineering teams across Mozilla to understand their needs and concerns around access management
  • Document standard methodologies and design guidelines
  • Be trusted to resolve unclear but urgent tasks
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

.Net Solutions Architect

We are hiring on behalf of a world-class, product-focused company undergoing a m...
Location
Location
Salary
Salary:
Not provided
solasit.ie Logo
Solas IT Recruitment
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong .NET Architecture Background: Proven experience as a Senior / Lead Developer, Solutions Architect, or Technical Architect within the C#/.NET ecosystem
  • IAM Expertise (Required): Demonstrated experience designing or integrating Identity and Access Management solutions
  • Modernization Experience: A strong track record of leading or contributing to platform modernization initiatives
  • Agile & Delivery Excellence: Deep understanding of Agile delivery models
  • Excellent English Communication (Required): Excellent written and verbal English skills
  • Key Competencies: C# / .NET Mastery
  • IAM & Security Design – OAuth2, OIDC, JWT, secure identity flows
  • Distributed & Stateless Systems – Experience designing scalable, cloud-native architectures
  • Data & Integration Strategy – Knowledge of relational databases, APIs, and service communication patterns
  • Technical Leadership – Ability to guide teams, challenge assumptions, and raise architectural standards
Job Responsibility
Job Responsibility
  • Platform Architecture & Modernization: Lead the evolution of the core platform, driving architectural modernization
  • .NET Technical Authority: Act as a technical authority across the .NET ecosystem
  • IAM & Security Architecture: Own and guide the Identity and Access Management (IAM) architecture across the platform
  • Agile Delivery & Technical Leadership: Work closely with engineering teams within Agile environments (Scrum / Kanban)
  • Cross-Functional Collaboration: Partner with Product, Engineering, Security, and Infrastructure teams
  • Executive Communication & Visibility: Serve as the technical bridge to senior stakeholders
Read More
Arrow Right
New

Security Platform Engineer

Location
Location
United States , Dearborn
Salary
Salary:
120349.00 - 190500.00 USD / Year
ford.com Logo
Ford Motor Company
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or foreign equivalent in Information Technology, Cyber Security, Computer Science, Security Platform Engineering or a related field and 4 years of experience in the job offered or a related occupation
  • 4 years of experience with each of the following skills is required: 1. Designing secure and scalable Identity and Access Management (IAM) solutions including architecting custom systems, designing secure APIs, and defining data models to protect user identities and access policies. 2. Developing and automating security tools and platforms by coding custom Identity and Access Management (IAM) solutions, building secure APIs, and implementing core logic for password management applications. 3. Securing infrastructure by configuring operating system–level security controls on platforms including Linux or Windows, and supporting the secure deployment of IAM platforms. 4. Managing and securing CI/CD pipelines by integrating automated security testing into the development lifecycle to ensure secure code delivery from development through deployment including DevSecOps
  • 2 years of experience with each of the following skills is required: 1. Using version control systems to manage codebase changes for security applications and enforcing best practices including code reviews and branch protection to maintain code integrity. 2. Building, deploying, and managing secure IAM solutions on cloud platforms, including configuring cloud identity services including Azure AD and managing cloud infrastructure security. 3. Designing secure database schemas and managing encrypted user identity and access data across various databases to ensure secure storage and access control.
Job Responsibility
Job Responsibility
  • In close collaboration with other security platforms leads, contribute to the development and implementation of Identity and Access Management strategies and roadmap
  • Collaborate closely with IAM portfolio product owners, SMEs, and security product teams to define modernization path, architecture and design of the IAM platform, utilizing EntraID identity infrastructure and entitlement management capabilities effectively
  • Engage in delivery of tactical and strategic IAM solutions, including analysis, design, and implementation with focus of improving security posture
  • Oversee the development of high-quality, maintainable code in accordance with best practices
  • Ensure the IAM platform is designed with security in mind
  • Implement robust authentication and authorization mechanisms and work closely with the security & access control stakeholders to mitigate potential risk
  • Integrate Enterprise IAM platform with various systems and services, both within the organization and with external partners, to provide seamless and secure access control
  • Partner with application teams levering Enterprise Identity and Access Management platform to ensure services are consumable by app and cloud migration teams to allow for modernization of existing integration and access controls within traditional applications
  • Design the IAM platform to be scalable to meet the organization’s growing needs
  • Implement performance optimizations to ensure efficient operation
What we offer
What we offer
  • Immediate medical, dental, and prescription drug coverage
  • Flexible family care, parental leave, new parent ramp-up programs, subsidized back-up child care and more
  • Vehicle discount program for employees and family members, and management leases
  • Tuition assistance
  • Established and active employee resource groups
  • Paid time off for individual and team community service
  • A generous schedule of paid holidays, including the week between Christmas and New Year's Day
  • Paid time off and the option to purchase additional vacation time
  • Fulltime
Read More
Arrow Right

Lead Architect

Wells Fargo is seeking a Lead Architect. We are seeking a highly skilled Identit...
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
May 21, 2026
Flip Icon
Requirements
Requirements
  • 5+ years of Architecture experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 8+ years of experience in IAM, security architecture, or cybersecurity engineering. Total of 15 years of experience
  • Hands-on experience with some of the major IAM platforms such as Azure AD / Entra ID, Okta, Ping, SailPoint, or CyberArk
  • Background in cloud IAM (AWS, Azure, or GCP)
  • Good understanding of modern identity protocols, authentication patterns, and authorization frameworks
  • Experience defining enterprise IAM standards, reference architectures, or design patterns
  • Familiarity with Zero Trust architecture, PAM, secrets management, and identity governance
  • Strong communication skills and ability to influence across technical and non‑technical teams
  • Experience in large-scale enterprise environments
Job Responsibility
Job Responsibility
  • Lead the implementation of complex projects and initiatives that have companywide scope
  • Assist in the creation of architectural artifacts for key technology initiatives
  • Participate in the definition of future technology architecture and strategy
  • Identify medium to high architectural impact projects
  • Conduct complex technology and system assessments for architecture solutions
  • Communicate the companywide Architecture strategy and direction to both management and systems related teams
  • Make decisions in the development and maintenance of architectures
  • Understand compliance and risk management requirements for supported areas
  • Ensure applications adhere to established Wells Fargo standards, policies, methodologies and industry best practices
  • Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
  • Fulltime
!
Read More
Arrow Right

Cybersecurity Architect

Sopra Steria is hiring a Cybersecurity Architect to design, implement, and manag...
Location
Location
Belgium , Brussels
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master degree or equivalent
  • at least 3 years of experience in the cybersecurity architect function or similar
  • excellent written and oral communication skills
  • strong problem resolution, judgment, and decision making skills
  • experience with industry standard architecture methodologies, such as SABSA and TOGAF
  • experience with Cybersecurity frameworks (NIST,…) and maturity models (CMMC,…)
  • experience in interactions with ISO 27001/ISO 27002 specialists and auditors
  • cybersecurity certifications/qualifications such as CISM, CISSP, CREST Technical security architect are considered a plus
  • specialization in IAM, SSDLC and Application Security, System and application hardening and patching, EDR, Anti-Malware, Security monitoring, Certificate management, IDS, Vulnerability Scanning, Network Security
  • proficient in French or Dutch with excellent English skills
Job Responsibility
Job Responsibility
  • Secures enterprise information by determining security requirements
  • planning, implementing, and testing security systems
  • ensuring alignment of architecture with customer needs and risk objectives
  • advising the CISO and Enterprise Security Architect on security evolution plans
  • mentoring team members
  • defining strategic security roadmaps for customers
  • reviewing architecture and design security features
  • conducting security risk assessments
  • providing guidance and proposing risk mitigation plans
  • leading technological security implementations by defining solutions and guiding delivery teams
What we offer
What we offer
  • extensive career development opportunities
  • access to Sopra Steria Academy for professional growth
  • dynamic network of 56,000 professionals
  • opportunities for local and international collaboration
  • Fulltime
Read More
Arrow Right