CrawlJobs Logo

Security identity and access management domain architect

asml.com Logo

ASML

Location Icon

Location:
Netherlands , Veldhoven

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

As an Identity and Access Management (IAM) Architect at ASML, you will play a critical role in safeguarding our cutting-edge technology. You will design secure identity solutions that protect sensitive data and enable innovation across the organization. Your work ensures that ASML remains a trusted leader in the semiconductor industry by maintaining a strong security posture.

Job Responsibility:

  • Design and maintain IAM domain architecture aligned with enterprise security principles
  • Define IAM standards for identity lifecycle, authentication, authorization, and privileged access
  • Ensure compliance with security policies, regulations, and industry best practices
  • Translate enterprise IAM principles into actionable system-level architectures
  • Provide guidance and reusable patterns for implementation teams
  • Evaluate IAM technologies and vendors for strategic fit
  • Stay current with emerging IAM trends, standards, and threats

Requirements:

  • A bachelor’s degree in computer science, information security, cybersecurity, or a related field (master’s preferred)
  • At least 8 years of experience in IAM architecture or related security roles
  • Proven knowledge of IAM frameworks and protocols such as OAuth 2.0, OpenID Connect, and SAML
  • Hands-on experience with IAM technologies, including: Identity Governance & Administration (IGA)
  • Privileged Access Management (PAM)
  • Single Sign-On (SSO) and Multi-Factor Authentication (MFA)
  • Directory Services (Active Directory, LDAP)
  • Familiarity with cloud IAM (Azure AD, AWS IAM) and hybrid identity models
  • Experience with agile practices (SAFe/Agile environments)
  • Experience with regulatory frameworks like ISO 27001 and NIST CSF
  • A Certificate of Good Conduct “Verklaring Omtrent het Gedrag (VOG)” is required for this position

Additional Information:

Job Posted:
January 06, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
ASML - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Security identity and access management domain architect

Principal Security Architect

As a Security Architect, your role involves designing, reviewing, and enhancing ...
Location
Location
United States , San Francisco
Salary
Salary:
164000.00 - 290000.00 USD / Year
ethoslife.com Logo
Ethos
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in Information Security with at least 2 years as a Security Architect
  • Bachelor’s Degree in Computer Science or related field, or an additional 3 years of pertinent work involvement preferred
  • Strong knowledge of prevalent security architectures, frameworks, standards and emerging threats along with strategies and technologies for defense
  • Deep understanding of network protocols, operating systems, databases, applied cryptography, least privilege, zero trust principles, identity & access management, and other core information security concepts
  • Expertise in cloud computing and its associated best security practices encompassing applications, infrastructure, storage, platforms, and data security
  • Ability to conduct threat modeling and risk assessments
  • Ability to come into our San Francisco, CA office once a week
Job Responsibility
Job Responsibility
  • Conduct Threat Modeling & Architectural Assessments to cover all Information Security domains to ensure Security by Design
  • Assess technologies and solutions to develop and enrich security capabilities
  • Identify security gaps and communicate associated business risks to relevant stakeholders
  • Craft solutions that harmonize business needs with security and compliance requirements
  • Verify the effectiveness of security controls in mitigating identified risks
  • Assist engineering projects across the Software Development Life Cycle (SDLC) and collaborate to prioritize product security elements effectively
  • Apply expertise in information security and application development to instigate organizational shifts aimed at managing and resolving security weaknesses and vulnerabilities
  • Contribute to the creation of security policies, standards, and guidelines
  • Devise and implement frameworks for data classification, retention, and disposal to ensure alignment with data privacy regulations
  • Spearhead initiatives for data security awareness and training
  • Fulltime
Read More
Arrow Right

Senior Application Security Architect

The Information Security Operations (ISO) Sr Manager is a senior management leve...
Location
Location
Mexico , Ciudad De Mexico
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years of relevant experience
  • Knowledge of Scripting and Programming Languages preferred
  • Demonstrated ability to interpret and apply information security policies, standards and procedures
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • English Advance Domain, fluently speaking and writing
  • Communication skills to explain security controls required for the solutions in a clear and concise manner to non-technology stakeholders
  • Project coordination, give track end to end to all the approval and presentation process
  • Correct comprehension technical and business requirements of the solutions to be explained in IS Global Committees
Job Responsibility
Job Responsibility
  • Support the implementation of Information Security (IS) Training Plan, by verifying training participants completed the training and understand IS requirements
  • Coordinate with cross-functional Operations and Technology (O&T) counterparts and teams to improve O&T risk oversight
  • Attend and participate in internal/external IS forums and risk committees when necessary and provide IS updates to the business
  • Ensure stakeholders are held accountable for IS controls, and understand responsibilities in risk mitigation and remediation
  • Improve processes, remove IS deficiencies and enhance current tools that reduce an overall risk profile
  • Ensure security practices and standards compliance to reduce the likelihood of audit, regulatory and legal liabilities and reduce security risks by enhancing controls and minimizing weaknesses in Citi’s applications portfolio
  • Ensure non-compliant items are addressed through coordination with Business Manager and business staff
  • Support the Global Information Security (GIS) policies, standards, and initiatives development and implementation
  • Provide guidance on IS aspects of projects in support of business initiatives
  • Establish communication channels with cross-sector ISOs to efficiently tackle security issues that span multiple businesses
  • Fulltime
Read More
Arrow Right

Physical identity domain architect

As part of the strategy to advance our digital and innovative capabilities in ou...
Location
Location
Netherlands , Veldhoven
Salary
Salary:
Not provided
asml.com Logo
ASML
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master degree in Innovation / Technology / Security Management or equivalent
  • 10+ years’ experience with a focus on strategic planning and architecture in physical security and/or identity and access management
  • 5+ years’ experience in leading a team
  • 5+ years’ experience in program / project management
  • Sound understanding of security technologies, techniques and best practices, with a focus on (physical / digital) identity and security
  • Excellent leadership, influencing and interpersonal skills
  • Self-starter mentality, highly-motivated, with a strong work ethic and entrepreneurial mindset
  • Able to lead, develop, motivate and mentor a team of security professionals
  • Able to strategize, develop and implement new concepts and technologies
  • Able to convince others, change management savvy and deal with resistance
Job Responsibility
Job Responsibility
  • Drive strategic planning processes for Physical Identity capabilities, resulting in a multi-year plan and roadmap, including the monitoring thereof
  • Lead and drive innovative and leading edge physical and digital identity initiatives to increase ASML’s resilience to existing and new internal and/or external physical and identity security threats (e.g. identity theft)
  • Translate physical & digital identity concepts and innovations into workable products and services, improving the security, effectiveness and efficiency of physical and digital identity security
  • Create and nurture an internal and external innovation funneling mechanism that ensures ideas are collected, processed, tested and implemented, and align with ASML’s security architecture and capability framework
  • Connect the physical and digital identity spaces and develop synergies and holistic solutions that seamlessly integrate
  • Develop and maintain relationships with relevant internal and external stakeholders
  • Build, lead, develop, motivate and mentor a team of innovation / security professionals
  • Fulltime
Read More
Arrow Right

IAM Solutions Architect

Join a leading organization dedicated to empowering individuals and businesses t...
Location
Location
United States , Southlake, Austin
Salary
Salary:
72.30 - 80.33 USD / Hour
aquent.com Logo
Aquent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Computer Information Systems, Management Information Systems, or a related technical field
  • A minimum of 10 years of experience in information security, with at least 5 years specifically focused on Identity and Access Management (IAM)
  • At least 3 years of experience in an enterprise-level architecture role, with a direct focus on IAM technologies and strategy
  • Demonstrated deep knowledge of critical IAM domains, including authentication and authorization, Single Sign-On (SSO), Identity Governance and Administration (IGA), Directory Services, Federation Services, and Privileged Access Management (PAM)
  • Proven ability to define robust IAM architectures and develop strategic roadmaps
  • Strong background in aligning IAM strategy with enterprise security policies and overarching business objectives
Job Responsibility
Job Responsibility
  • Architect and establish comprehensive strategies for managing the identity lifecycle, including user authentication and authorization across both on-premise and cloud environments
  • Define, document, and maintain reference architectures, technology standards, processes, and policies for core identity solutions
  • Seamlessly integrate new identity solutions into existing infrastructure, ensuring compatibility and optimal performance
  • Provide expert leadership and direction for technical infrastructure support, including on-call support and resolution of escalated trouble tickets, and lead the resolution of key implementation and system integration challenges
  • Leverage deep understanding of federation concepts and technologies, including SAML, OAuth, and OIDC, to design advanced identity solutions
  • Design and engineer sophisticated identity and access management solutions within leading cloud platforms, including Azure and AWS, and potentially other cloud providers
  • Lead Proof of Concepts (POCs) and develop tactical and strategic solution roadmaps for identity initiatives
  • Collaborate effectively with product vendors and internal governance teams, presenting and demonstrating application solutions to diverse stakeholders
  • Guide the deployment of directory services infrastructure, ensuring adherence to best practices, robust security architecture, and resilience against vulnerabilities
What we offer
What we offer
  • subsidized health, vision, and dental plans, paid sick leave, and retirement plans with a match
Read More
Arrow Right

IAM Senior Engineer - Active Directory/Entra ID

HPE Global IT is seeking a highly skilled Senior Active Directory (AD), Entra ID...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
  • 10+ years of IT or cybersecurity experience
  • 7+ years focused on AD, Entra ID, and Azure identity engineering in enterprise-scale environments
  • Deep hands-on experience managing multi-forest AD environments (schema, replication, delegation, GPOs, DNS, DHCP)
  • Strong expertise with Entra ID and hybrid identity integration (Entra Connect / Cloud Sync, federation, SSO)
  • Hands-on experience with Azure governance, RBAC, PIM, and access policy enforcement
  • Experience implementing conditional access, passwordless, and phishing-resistant MFA in Entra and Azure
  • Proficiency in PowerShell scripting, Graph API, and Azure automation for identity management and reporting
  • Solid understanding of authentication protocols (Kerberos, NTLM, LDAP, SAML, OIDC, OAuth2)
  • Familiarity with Zero Trust, tiered admin models, and directory hardening practices
Job Responsibility
Job Responsibility
  • Engineer, deploy, and optimize Active Directory, Entra ID, and Azure identity services across enterprise-scale hybrid environments
  • Design and manage multi-forest AD architectures, including schema extensions, replication, delegation, and hardening
  • Implement and maintain cross-domain and cross-tenant synchronization between AD and Entra ID using Entra Connect or Cloud Sync
  • Engineer secure authentication and federation flows leveraging Kerberos, NTLM, SAML, OIDC, and OAuth2
  • Implement and enhance conditional access, MFA, passwordless, and FIDO2 authentication methods in Entra and Azure environments
  • Support Zero Trust Directory Security through tiered administration, least privilege, and delegated access controls
  • Partner with cloud and infrastructure teams to ensure secure integration of Azure resources with enterprise identity services
  • Maintain and secure domain controllers, DNS, DHCP, and Group Policy Objects (GPOs) across global environments
  • Manage Azure AD tenants, subscriptions, and resource access controls (RBAC, PIM, Entra roles)
  • Integrate on-prem AD with Azure workloads, Microsoft 365, Intune, and other SaaS applications
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

Principal IAM Engineer

The IAM Principal Engineer is responsible for driving the development, maintenan...
Location
Location
United States , Mount Laurel
Salary
Salary:
142361.11 - 213541.67 USD / Year
comcastcorporation.com Logo
Comcast
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Over 10 years of experience implementing SailPoint IdentityIQ
  • More than 5 years of experience designing, architecting, implementing, operating, and maintaining Radiant Logic Virtual Directory Service (VDS), including Federated Identity Management (FIM) and Identity Correlation and Synchronization (ICS)
  • Skilled in integrating data sources and applications into VDS, configuring data access views and permissions, and performing identity correlation and synchronization
  • Strong knowledge of LDAP, Active Directory services, Multi-Factor Authentication (MFA), risk-based authentication, and privileged access management
  • Deep understanding of Identity and Access Management (IAM) across authentication, authorization, endpoint security, network security, and policy engines
  • Technical expertise with Microsoft MFA, SailPoint, CyberArk, ForgeRock, Okta, Ping Identity, Active Directory, Azure Active Directory, AWS, Google Cloud Platform, Microsoft Azure, and cross-domain IDM integrations
  • Solid grasp of cloud identity concepts and hands-on experience with Azure AD and other cloud environments
  • 3–5+ years of experience developing workflows, forms, connector configurations, provisioning policies, and rules within SailPoint IdentityIQ
  • Quick learner with the ability to adopt new technologies and collaborate effectively to capture and implement business system requirements
  • Proficient in source control and development tools such as GitHub and Eclipse
Job Responsibility
Job Responsibility
  • Apply your expertise in SailPoint IdentityIQ and Radiant One FID / Global Sync to enhance and expand the capabilities of the enterprise IAM platform
  • Collaborate with Agile teams to design, build, test, and support scalable IAM solutions that meet foundational enterprise needs, including identity federation, directory virtualization, and multi-source synchronization
  • Contribute innovative and efficient configuration and coding solutions in SailPoint IdentityIQ and Radiant One FID environments that differentiate the IAM platform
  • Engineer cost-effective technical solutions leveraging Radiant One FID and Global Sync to address business challenges and streamline identity and access processes
  • Develop both tactical and strategic IAM solutions aligned with evolving business requirements, including federated identity management and synchronized directory services
  • Partner with key stakeholders to gather and validate requirements, ensuring delivered solutions meet expectations across SailPoint IdentityIQ and Radiant One FID systems
  • Participate in project teams to design new system capabilities, including proof-of-concept (POC) implementations for both Radiant One FID and SailPoint IdentityIQ, and presentations that highlight their functionality
  • Deploy and manage Radiant One FID in Kubernetes environments using Helm charts, ensuring scalable, reproducible, and reliable containerized deployments
  • Support the end-to-end testing lifecycle for system changes, including integrations with Radiant One FID / Global Sync, from design through execution
  • Create proactive capacity forecasts to prevent outages and ensure system reliability for SailPoint IdentityIQ and Radiant One FID services
What we offer
What we offer
  • Paid Time off
  • Physical Wellbeing benefits
  • Financial Wellbeing benefits
  • Emotional Wellbeing benefits
  • Life Events + Family Support benefits
  • Fulltime
Read More
Arrow Right

Security Specialist (Presales) - Cloud

As a Domain Consultant for cloud native security, you will play a key role in de...
Location
Location
Germany , Munich
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years technical sales or equivalent experience highly preferred
  • Hands-on experience using IaC software tools (CloudFormation, Terraform, Azure Resource Manager, GCP Cloud Deployment Manager etc) and CI/CD tools (IDEs, GitLab, GitHuB, Jenkins, CircleCI, etc.)
  • Experience with Alicloud, AWS, Azure, and Google Cloud Platform and Oracle Cloud configuration and administration of security features and services (including identity and access management, networking, firewalls, encryption)
  • Deep experience in one or more cloud security areas such as Shift Left, CSPM, CWP, KSPM, CIEM, DSPM, AI-SPM
  • Background in security domain or cloud security highly preferred
  • Understanding of container and container orchestration technologies such as Docker, Kubernetes, and OpenShift
  • Proficient in English & German
Job Responsibility
Job Responsibility
  • Collaborate with account teams to recommend and develop customer solutions within your assigned specialization area
  • Present to customers as our expert at all levels in the customer hierarchy, from practitioner to senior leadership
  • As the main technical point of contact for Cloud Security, you will assist and collaborate to respond effectively to RFIs/RFPs
  • Lead and support customer demonstrations that showcase our unique value proposition
  • Scope and lead Proof of Value (PoV) projects for prospective customers and partners based on best practices to ensure technical win in your assigned opportunities
  • Drive high technical validation and PoV win rates within your assigned specialization area
  • Responsible for discussing and highlighting product alignment with customer requirements and differentiation
  • Architect solutions that will help our customers strengthen and simplify their security posture
  • Accelerate technical validation of proposed solutions within your specialization
  • Document High-Level Design and Key Use Cases to ensure proper implementation and value realization of Palo Alto Networks Solutions
What we offer
What we offer
  • FLEXBenefits wellbeing spending account with over 1,000 eligible items selected by employees
  • mental and financial health resources
  • personalized learning opportunities
Read More
Arrow Right

Staff Technical Program Manager

The role is part of the broader Mozilla Infrastructure Organization that is resp...
Location
Location
United States; Canada
Salary
Salary:
138000.00 - 217000.00 USD / Year
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 10+ years of experience in program or project management
  • Minimum of 3 years focused on access management, identity management, security, IT systems, and Cloud environments
  • Proven track record of successfully delivering large-scale, complex technology programs in enterprise environments
  • Strong understanding of IAM concepts: identity lifecycle management, authentication/authorization protocols
  • Experience with IAM platforms such as Okta, Ping Identity, ForgeRock, SailPoint, or similar tools
  • Familiarity with cloud platforms (AWS, Azure, GCP) and their native IAM services
  • Working knowledge of compliance frameworks
  • Proficient in Agile methodologies
  • Skilled senior leadership management, communication, and negotiation skills
  • Ability to lead multiple workstreams and teams, prioritize tasks, and meet deadlines in a fast-paced, yet collaborative environment
Job Responsibility
Job Responsibility
  • Develop and drive the overall IAM program roadmap, aligning with our organizational goals and security standard processes
  • Serve as the primary contact for IAM initiatives, ensuring clear communication of objectives, schedules, and progress to senior leadership and partners
  • Continuously review industry trends, emerging technologies, and standard methodologies to enhance the IAM program
  • Understand the technical requirements and needs (current and future) of Mozilla’s IAM system to identify dependencies and risks related to program delivery and represent those to senior leadership and other teams
  • Partner with product & engineering managers, infrastructure teams, and security engineers to translate business requirements into technical solutions
  • Coordinate cross-functional resources (people, time, and scope) to ensure timely delivery of IAM features and enhancements
  • Facilitate collaboration among engineering, operations, and security teams to remove roadblocks and optimize workflows, organizing everything in Jira and Confluence
  • Facilitate and where needed contribute to defining standard service arch designs, data flow call patterns, API interfaces working closely with domain specific engineering leads
  • Work closely with engineering teams to document existing implementations and associated improvements
  • Ability to disambiguate complex workflows and system integrations, working with engineering leads that help flesh out epic / sprint level deliverables
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days where everyone takes a pause together
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy