Identity Security Architect

We're looking for an experienced Zero Trust Identity and Access Management (IAM) Security Architect to shape how Arm secures its global workforce and systems. You'll design and guide the strategy behind secure, scalable identity solutions that enable employees, contractors and third parties to work safely anywhere.

You'll work across enterprise IT, security architecture and engineering to define IAM standards, integrate new technologies and make identity simple and secure for every team.

Responsibilities:

• Lead the design and implementation of enterprise Zero Trust IAM architecture across AD, Entra ID, SSO, MFA, PAM, and PKI.
• Create and maintain Zero Trust IAM security roadmaps, patterns, and reference designs.
• Supporting and partner with IT, GRC, and Engineering teams to ensure compliance and security standard processes.
• Evaluate and integrate new identity tools, authentication platforms and access capabilities.
• Drive continuous improvement through risk assessments, threat modelling, and automation.

Do you have experience in PKI?, * Over 7+ years of practical experience in designing and running Identity and Access Management (IAM) solutions for both human and non-human identities within large-scale, complex environments.

• Deep knowledge of identity protocols (SAML, OAuth2, OIDC, SCIM, LDAP/AD, PKI).
• Expertise in at least two IAM product areas (e.g., PAM, SSO/MFA) such as Okta, CyberArk, Ping, or preferably Microsoft Entra ID.
• Good understanding of LDAP directories preferably Oracle
• Strong understanding of security frameworks and compliance (NIST, ISO 27001, SOX, GDPR).
• Experience working with cloud identity (Azure, AWS, or GCP).

"Nice To Have" Skills and Experience:

• CISSP, CISM, CIAM, or similar security certification!
• Familiarity with automation, API protection, or security orchestration.
• Experience with API security or microservices identity patterns!

At Arm, we want to build extraordinary teams. If you need an adjustment or an accommodation during the recruitment process, please email accommodations@arm.com. To note, by sending us the requested information, you consent to its use by Arm to arrange for appropriate accommodations. All accommodation or adjustment requests will be treated with confidentiality, and information concerning these requests will only be disclosed as necessary to provide the accommodation. Although this is not an exhaustive list, examples of support include breaks between interviews, having documents read aloud, or office accessibility. Please email us about anything we can do to accommodate you during the recruitment process. Hybrid Working at Arm Arm's approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face to enable us to work at pace, whilst recognizing the value of flexibility. Within that framework, we empower groups/teams to determine their own hybrid working patterns, depending on the work and the team's needs. Details of what this means for each role will be shared upon application. In some cases, the flexibility we can offer is limited by local legal, regulatory, tax, or other considerations, and where this is the case, we will collaborate with you to find the best solution. Please talk to us to find out more about what this could look like for you. Equal Opportunities at Arm Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues. We are a diverse organization of dedicated and innovative individuals, and don't discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.   You must create an Indeed account before continuing to the company website to apply