CrawlJobs Logo

Senior Information Security Architect - Cloud IAM

United States Employment contract 148600.00 - 198200.00 USD / Year · Job Posted May 16, 2026
Apply Position
Job Link Share

Job Description

We are seeking a highly skilled Senior IAM Security Architect to join our information security architecture team. This role requires deep expertise in the design, implementation, and management of IAM security controls, with a focus on identity protection across cloud environments. The ideal candidate will have a strong background in AWS, Azure, and Entra ID (formerly Azure AD), and possess at least 5 years of experience in IAM related security risk assessment and threat modeling. The Senior IAM Security Architect will be responsible for ensuring the secure and efficient designs for governance of user & non-human identities, access controls, and security policies within the organization. This role will also focus on establishing a Zero Trust identity posture, implementing behavioral risk assessments, and driving automation for identity security. Expertise in Single Sign-On (SSO), Multi-Factor Authentication (MFA), and modern authentication protocols is essential.

Job Responsibility

  • Participate in the design of secure IAM architectures across multiple platforms (AWS, Azure, Entra ID), ensuring all components align with best practices and organizational security requirements
  • Design security controls for IAM, including user authentication, authorization, role management, identity federation, and privilege management across cloud and hybrid environments
  • Lead the design and evolution of CIAM architecture that supports secure, scalable, and customer-centric identity services across web, mobile, and API-based platforms
  • Establish and maintain a Zero Trust security model for IAM, ensuring that all access requests are continuously verified, regardless of location or network
  • Integrate Zero Trust principles with cloud-native security tools and IAM platforms (e.g., AWS, Azure, Entra ID) to ensure seamless, secure, and dynamic access control
  • Automate risk-based access controls and adaptive authentication based on behavioral signals, ensuring a dynamic response to security events
  • Establish and enforce least privilege access principles for all roles across cloud and on-prem environments, ensuring users only have the minimal access necessary to perform their job functions
  • Design and implement Just-in-Time (JIT) access control mechanisms to dynamically grant access based on user needs, significantly reducing standing permission sets
  • Design SSO solutions that provide seamless and secure access to enterprise applications, ensuring a frictionless user experience while maintaining high security standards
  • Lead the adoption of modern authentication protocols (e.g., OAuth 2.0, OpenID Connect, SAML) for secure, scalable, and standardized access management across applications and systems
  • Design MFA solutions to enhance authentication security, applying risk-based policies to ensure strong protection for sensitive data and critical resources
  • Develop and integrate IAM security controls with cloud platforms such as AWS, Azure, and Entra ID, ensuring secure access management across both public and hybrid cloud environments
  • Leverage native security features of cloud platforms (e.g., AWS IAM, Azure AD, Entra ID) to design scalable, secure, and automated IAM solutions
  • Lead the migration process from Hybrid Active Directory to Entra-ID based authentication to ensure minimal disruption and proper synchronization and federation across systems
  • Develop and maintain security governance frameworks for IAM, focusing on identity lifecycle management, role-based access control (RBAC), user provisioning, deprovisioning, and enforcement of least privilege
  • Ensure proper identity governance and access reviews are conducted regularly, documenting changes and exceptions as part of compliance audits
  • Collaborate with cross-functional teams, including application security, network security, infrastructure, and DevOps, to integrate IAM security best practices across systems and services
  • Stay up to date on the latest IAM trends, security threats, and technology advancements to continuously improve IAM practices and solutions
  • Implement security automation tools and workflows to improve efficiency and reduce manual efforts in identity management and access control

Requirements

  • 7+ years of experience in IAM security, including at least 5 years of experience in IAM risk assessment, threat modeling, and security control design
  • Preferred Certified Information Systems Security Professional (CISSP) or Certified Identity and Access Manager (CIAM) or other relevant IAM/security certification
  • Proven expertise in implementing and securing IAM solutions in cloud environments such as AWS, Azure, and Entra ID
  • In-depth knowledge of IAM security best practices, identity governance, and access management policies
  • Hands-on experience in conducting security risk assessments and threat modeling for IAM systems
  • Demonstrated experience in establishing least privilege access and implementing Just-in-Time (JIT) access controls across cloud and on-premises environments
  • Expertise in implementing and managing a Zero Trust security posture for IAM, with hands-on experience in identity validation, continuous authentication, and risk-based access controls
  • Strong expertise with IAM platforms such as Microsoft Entra ID (Azure AD), AWS IAM, Azure Active Directory
  • Experience with cloud security, integrating IAM systems with AWS, Azure, and hybrid environments
  • Strong understanding of IAM security controls, including role-based access control (RBAC), attribute-based access control (ABAC), policy enforcement, and Just-in-Time (JIT) provisioning
  • Experience in implementing and managing SSO and MFA, with expertise in modern authentication protocols such as OAuth 2.0, OpenID Connect, and SAML
  • Experience in architecting and operating CIAM solutions at enterprise scale (customer-facing portals, mobile apps, APIs)

Nice to have

Knowledge in GCP

What we offer

  • medical
  • dental
  • vision
  • 401k
  • PTO/paid sick leave
  • employee stock purchase plan

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior Information Security Architect - Cloud IAM

8 matching positions

Senior Cloud Security Architect

We are seeking an experienced Senior Cloud Security Architect to design, impleme...
Location
Location
United States , Austin
Salary
Salary:
Not provided
dutechsystems.com Logo
Dutech Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in information security and systems architecture
  • Proven experience designing secure cloud-native architectures in Amazon Web Services
  • Strong knowledge of NIST SP 800-53 and Texas Cybersecurity Framework
  • Expertise in Identity and Access Management (IAM) and Zero Trust Architecture
  • Experience performing threat modeling and security architecture reviews
  • Experience securing APIs, microservices, and containerized environments
  • Experience configuring Cloud Security Posture Management (CSPM) solutions
  • Experience implementing DevSecOps practices
Job Responsibility
Job Responsibility
  • Design and implement secure cloud-native architectures with a strong focus on Amazon Web Services environments
  • Apply enterprise security frameworks including NIST SP 800-53 and Texas Cybersecurity Framework to ensure compliance and risk management
  • Architect and implement Identity and Access Management (IAM) and Zero Trust security models
  • Conduct threat modeling and security architecture reviews for complex distributed systems
  • Secure microservices, APIs, and containerized environments
  • Configure and manage Cloud Security Posture Management (CSPM) tools to monitor cloud security risks
  • Integrate security controls into DevSecOps pipelines to support secure software development
  • Develop and implement strategies for protecting PII, PHI, and other sensitive data
  • Support risk assessments and present security findings to executive leadership
  • Develop and maintain enterprise security architecture standards, policies, and documentation
Read More
Arrow Right

Senior Cloud Security Architect

We are seeking an experienced Senior Cloud Security Architect to design and impl...
Location
Location
United States , Austin
Salary
Salary:
Not provided
dutechsystems.com Logo
Dutech Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in Information Security and Systems Architecture
  • Proven experience designing secure cloud architectures (AWS preferred)
  • Strong knowledge of NIST 800-53 and Texas Cybersecurity Framework (TCF)
  • Expertise in IAM and Zero Trust Architecture
  • Experience with threat modeling and risk analysis
  • Hands-on experience securing APIs, microservices, and containerized environments
  • Experience with CSPM tools and cloud security monitoring
  • Experience implementing DevSecOps practices
Job Responsibility
Job Responsibility
  • Design and implement secure cloud-native architectures (AWS preferred)
  • Develop and enforce enterprise security architecture standards and policies
  • Implement and manage Identity & Access Management (IAM) and Zero Trust Architecture
  • Perform threat modeling for complex, distributed systems
  • Secure microservices, APIs, and containerized environments (Docker/Kubernetes)
  • Configure and manage Cloud Security Posture Management (CSPM) tools
  • Integrate security into DevSecOps pipelines and CI/CD workflows
  • Conduct risk assessments and present findings to leadership
  • Ensure compliance with NIST 800-53, TCF, and other security frameworks
  • Implement strategies for data protection (PII, PHI, sensitive data)
Read More
Arrow Right

Senior Security Architect

We are currently partnering with multiple clients, ranging from leading technolo...
Location
Location
United Kingdom
Salary
Salary:
Not provided
myn.co.uk Logo
Myn
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience in security architecture design for cloud (AWS, Azure, or GCP) and hybrid environments
  • Strong proficiency in identity and access management (IAM), network security, and encryption patterns
  • Proven ability to conduct threat modelling and risk assessments to inform security control design
  • Deep knowledge of security frameworks and standards such as ISO 27001, NIST, and Zero Trust principles
  • Excellent stakeholder management and communication skills, with experience in a consulting or advisory capacity
  • Experience in security governance, policy development, and architectural documentation
  • Demonstrated ability to lead security transformation initiatives and influence technology strategy
  • Relevant professional certifications such as CISSP, CISM, TOGAF, or SABSA
Job Responsibility
Job Responsibility
  • Define security strategies and govern architecture standards, ensuring that security is seamlessly embedded into the lifecycle of cloud, hybrid, and on-premises systems
  • Lead threat modelling and risk assessment activities to identify vulnerabilities
  • Collaborate with cross-functional teams to provide strategic guidance on cloud security, identity and access management (IAM), and network segmentation
  • Translate complex security requirements into actionable technical designs
  • Influence technology decisions and mitigate organisational risk
  • Fulltime
Read More
Arrow Right

Cloud Security Assurance Architect

The Cloud Security Assurance Architect will lead security assessments and archit...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or Cybersecurity
  • 6+ years in information security with cloud security focus
  • 3+ years conducting cloud security assessments and architecture reviews
  • Proven multi-cloud experience (AWS, Azure, GCP) in production environments
  • Technical Skills: AWS: Security Hub, GuardDuty, IAM Access Analyzer, KMS, CloudTrail
  • Azure: Defender for Cloud, Sentinel, Azure Policy, Key Vault
  • GCP: Security Command Center, Cloud Armor, IAM, Cloud KMS
  • Tools: Prisma Cloud, Wiz, Pacu, ScoutSuite, Prowler, Terraform
  • Cloud penetration testing and threat modeling
  • Mandatory Certifications: CISSP or CCSP
Job Responsibility
Job Responsibility
  • Lead cloud security assessments and architecture reviews across AWS, Azure, and GCP
  • Validate security implementations, provide expert guidance on cloud security posture, and support enterprise cloud transformation initiatives
  • Lead security architecture reviews for cloud-native and hybrid solutions
  • Execute cloud security assessments across AWS, Azure, and GCP environments
  • Validate designs against NIST CSF, CIS Benchmarks, and CSA CCM
  • Conduct cloud penetration testing following (CREST/CHECK methodologies)
  • Assess container/Kubernetes security, serverless and microservices implementations
  • Validate IaC security controls and CI/CD pipeline security
  • Lead compliance assessments: ISO 27017/27018, SOC 2, GDPR, NIS2, DORA
  • Assess cloud governance frameworks and CSPM implementations
What we offer
What we offer
  • We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing
  • Our Learning and Development team ensure that there are continuous growth and development opportunities for our people
  • We also offer the opportunity to have flexible work options
Read More
Arrow Right

Senior AWS Cloud Technical/Solutions Architect

The Senior AWS Cloud Technical/Solutions Architect will design and implement sca...
Location
Location
South Africa , Cape Town
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, Information Technology, or related field
  • AWS Certified Solutions Architect (Associate or Professional) is strongly preferred
  • 8 to 12 years of AWS experience in cloud architecture and engineering
  • Proficiency in AWS services such as AWS Control Tower, Step Functions, Service Catalog, EC2, S3, RDS, Lambda, VPC, IAM, CloudWatch, CodeCommit, CodeDeploy, CodeBuild and ECS/EKS
  • Knowledge of AWS Well-Architected Framework and best practices
  • Experience with infrastructure as code (IaC) tools like AWS CloudFormation, AWS CDK and or Terraform
  • Understanding of networking, security, and compliance in cloud environments
  • Familiarity with DevOps processes and Continuous Integration and Continuous Delivery/Deployment (CI/CD) pipelines
  • Problem-solving, communication, and documentation skills
  • Experience with hybrid cloud and AWS cloud environments
Job Responsibility
Job Responsibility
  • Design and implement scalable, highly available, and fault-tolerant systems on AWS
  • Lead cloud architecture and infrastructure design sessions with stakeholders to understand business requirements and translate them into scalable, secure, and cost-effective cloud solutions
  • Develop and maintain infrastructure as code using tools like AWS CloudFormation and Terraform
  • Ensure security best practices are followed in all cloud deployments
  • Collaborate with DevOps, development, and security teams to streamline CI/CD pipelines
  • Optimize cloud costs and monitor system performance
  • Provide technical leadership and mentoring within the team of architects and engineers
  • Stay current with AWS services and industry trends to recommend innovative solutions
  • Viewed as a trusted technical advisor to the client and ensure technical solutions will accomplish the client's objectives
  • Engage in pre-sales activities with Sales Teams and clients both internal and external
  • Fulltime
Read More
Arrow Right

Senior SAP Cyber Security Architect

We are seeking an Senior SAP Cyber Security Architect to join our Global Cyber S...
Location
Location
Canada , Mississauga
Salary
Salary:
103636.00 - 142499.00 USD / Year
mercedes-benz.com Logo
Mercedes-Benz AG
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • University or college degree in Computer Science, Information Technology, or a related field, or 5+ years of hands-on SAP experience
  • Primary expertise in SAP technologies, including SAP Basis and SAP architecture
  • SAP Cloud experience is highly desirable
  • Secondary focus on security, with experience in SAP security concepts and IT security principles
  • Strong technical knowledge of SAP S/4HANA, SAP Governance, Risk, and Compliance (GRC), and identity and access management integrations, e.g. Azure AD / Entra ID
  • Relevant certifications such as CISSP, CISM, and/or SAP Security or SAP GRC are an advantage
  • Passion for viewing processes and procedures as opportunities for improvement, optimization, and further development
  • Self-motivated, with the ability to identify the best course of action and implement solutions that reduce manual effort and improve efficiency
  • Honest and professional, with a proactive mindset that supports a team culture of knowledge sharing, excellence, and collaboration
  • Fluent in English
Job Responsibility
Job Responsibility
  • Design secure SAP system architectures and continuously enhance existing landscapes, including SAP Basis, SAP Cloud, SAP Cloud solutions (BTP and SAP SaaS), and SAP IAM
  • Act as a trusted partner for global SAP transformations to SAP RISE and for the expansion of security controls
  • Define, document, and validate SAP security standards and procedures, including operating procedures, exception management, hardening measures, and additional security services such as secure defaults and the protection of RFC, API, and interface communications
  • Define and reshape the SAP Secure Operations Map and contribute to SAP security architecture, controls, and global services across a worldwide SAP landscape
  • Lead SAP integration within a landscape of global IAM services
  • Act as a trusted advisor to SAP Basis, development, and business teams by translating security requirements into practical SAP solutions
  • Align SAP security architecture with enterprise security strategy, risk management, and regulatory frameworks
  • Serve as a central communication and consulting partner for the SAP organization, CISO organization, global cyber security, SAP, and external parties
  • Integrate SAP cyber security seamlessly into global cyber security services
  • Provide advisory support for audits, assurance reviews, and control testing
What we offer
What we offer
  • Commitment to inclusion & diversity
  • Engaging corporate culture
  • Ever-evolving brand strategy granting opportunities to build business acumen
  • Training development and career growth opportunities
  • Benefits to support work-life balance/integration
  • A strong portfolio of corporate social responsibility initiatives
  • State-of-the-art working facilities
  • Vehicle purchase and experience programs
  • Comprehensive health, dental, and pension programs
  • Recognition rewards and discount programs
  • Fulltime
Read More
Arrow Right

Senior Cyber Security Engineer – Security Services

The Role: At General Motors, our Cyber Security organization protects the compa...
Location
Location
United States , Austin, Texas; Warren, Michigan
Salary
Salary:
Not provided
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cyber Security, Computer Science, Information Technology, Engineering, or a related field
  • 6+ years of experience in Cyber Security, Information Security, or Identity and Access Management
  • Strong experience with enterprise IAM integrations in a complex environment
  • Hands-on experience with SAML, OAuth 2.0, OpenID Connect, and related authentication technologies
  • Strong development or automation background, including scripting or programming with Python, PowerShell, JavaScript, Java, or similar
  • Experience with cloud identity platforms such as Microsoft Entra ID, AWS, GCP, or similar
  • Strong understanding of access control, encryption, and secure application architecture
  • Demonstrated ability to lead technical initiatives across cross-functional teams
Job Responsibility
Job Responsibility
  • Lead secure application onboarding design and implementation across the enterprise
  • Define and support authentication and authorization patterns including SAML, OAuth 2.0, and OpenID Connect
  • Establish scalable standards for identity integration, access management, and application onboarding
  • Design and build automation to streamline onboarding, validation, configuration, and support processes
  • Develop reusable tools, scripts, APIs, and workflows to reduce manual effort and improve consistency
  • Expand self-service capabilities for application teams while maintaining security guardrails
  • Partner with application owners, developers, architects, and business stakeholders to gather requirements and guide secure onboarding
  • Advise teams on secure integration patterns and control requirements
  • Drive onboarding strategy aligned to cybersecurity, IAM, and enterprise architecture goals
  • Support deployment and user adoption of enterprise security tools and systems across application teams and stakeholders
What we offer
What we offer
  • This job may be eligible for relocation benefits
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

We are seeking a Senior Security Engineer to design, implement, and manage enter...
Location
Location
United States , Jacksonville
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in cybersecurity, security engineering, or related IT roles
  • Strong knowledge of security tools and technologies: SIEM platforms
  • Firewalls, IDS/IPS
  • Endpoint protection / anti-malware
  • Experience with: Cloud security (AWS, Azure, or GCP)
  • Network security and system hardening
  • Identity and access management (IAM) concepts
  • Understanding of cybersecurity frameworks (NIST, ISO, etc.)
  • Experience with vulnerability management and risk mitigation strategies
  • Knowledge of compliance standards (PCI, privacy regulations)
Job Responsibility
Job Responsibility
  • Design, deploy, and support secure systems aligned with business objectives and regulatory requirements
  • Develop and maintain security policies, standards, and best practices to improve overall security posture
  • Architect and support security infrastructure including: SIEM (Security Information and Event Management)
  • DLP (Data Loss Prevention)
  • IPS (Intrusion Prevention Systems)
  • Monitor and manage security systems, including provisioning, alerting, and incident response
  • Perform system validation, troubleshooting, and root cause analysis for security incidents
  • Conduct vulnerability assessments and partner with teams to implement remediation plans
  • Support system patching, maintenance, and security hardening initiatives
  • Collaborate with engineering, infrastructure, and business teams to integrate security into all projects
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • 401(k) plan
  • Free online training
  • Fulltime
Read More
Arrow Right