Senior IT Architect Identity and Access Management

We are seeking an experienced IAM Architect to lead the strategy, design, governance, and evolution of our enterprise identity ecosystem. This role serves as the technical authority for identity architecture, ensuring secure, scalable, and compliant access across on-premises, cloud, and SaaS environments.

The IAM Architect partners closely with security leadership, engineering teams, application owners, and compliance stakeholders to deliver identity solutions that balance strong security controls, user experience, and business agility. This role is pivotal in building a secure digital front door that protects enterprise assets while enabling employees, partners, and customers. The architect bridges high-level business requirements with deep technical execution, ensuring the IAM framework supports cloud transformation, Zero Trust principles, and regulatory obligations. Essential Functions

• Lead the architecture, design, and implementation of enterprise IAM capabilities, including Identity Governance and Administration (IGA), Privileged Access Management (PAM), and Customer IAM (CIAM)
• Develop and implement IAM policies, standards, and reference architectures for hybrid and multi-cloud environments, including SSO, identity federation (SAML, OIDC, OAuth 2.0), API security, SCIM provisioning, and directory services
• Drive adoption of modern authentication controls, including passwordless, passkeys, and phishing-resistant authentication
• Design and implement controls for non-human and machine identities, including service principals, secrets management, and PKI-based authentication
• Develop automated identity lifecycle management workflows, including joiner-mover-leaver (JML) processes, to reduce manual effort and improve security posture
• Onboard new applications by defining identity, authentication, authorization, and access requirements including Secure SaaS integrations and design Conditional Access policies
• Architect IAM controls to support SOX, NIST, and other regulatory frameworks, including segregation of duties (SoD), RBAC models, access certifications, privileged access controls, and audit logging
• Ensure IAM architectures are audit-defensible and capable of producing required evidence for internal and external audits
• Continuously monitor and improve identity security posture, detection capabilities, and response readiness
• Lead identity architecture reviews and provide mentorship and technical guidance to junior IAM engineers and analysts
• Produce high-quality documentation, including architecture diagrams, design decision records, standards, and implementation guidance
• Communicate complex identity and security concepts effectively to engineering teams, business stakeholders, and senior leadership
• Identify and implement automation to improve Identity Operations and Services

Bachelor's degree in Computer science, Information Security, or Engineering PREFERRED, * 10+ years in Cybersecurity, with at least 5 years specifically focused on IAM architecture, design and implementation

• Experience with major IAM platforms and hands-on experience with enterprise IAM technologies such IGA, SSO, PAM, Phish-resistant MFA, CIAM
• Strong knowledge of identity protocols such as SAML, OAuth2, OIDC, LDAP, Kerberos
• Hands on experience in cloud identity and hybrid environments
• Experience implementing Zero Trust or similar modern security models
• Strong written and verbal communication and excellent problem-solving and analytical skills
• Self-motivated and capable of working independently in a fast-paced operational environment
• CISSP or other relevant security certifications PREFERRED
• Microsoft Identity or IAM Vendor Security certifications PREFERRED

CenterPoint Energy paid time off, paid holidays, tuition reimbursement, 401(k) United States, Texas, Houston Apr 23, 2026, We want you to know Being a part of the CenterPoint Energy team is more than a career alone. It's an opportunity to make a positive impact. You will be an integral part of enabling everyday life and the pursuit of possibilities for the customers we serve and the communities we share. The vital services we provide are at the core of making our world work, and by sharing your energy with us, we'll create a better tomorrow together. What we bring to you

• Competitive pay
• Paid training
• Benefits eligibility begins on your first day
• Transit subsidies
• Flexible work schedule, paid holidays and paid time off
• Access to discounts at fitness clubs and an on-site wellness center at our headquarters in Houston
• Professional growth and development programs including tuition reimbursement
• 401(k) Savings Plan featuring a company match dollar-for-dollar up to 6% and a company contribution of 3% regardless of your contribution

CenterPoint Energy and its predecessor companies have been in business for more than 150 years. Our Vision: Our vision is to become the most admired utility in the United States through the execution of our long-term growth strategy. We have an unwavering commitment to safely and reliably deliver electricity and natural gas to millions of people. Our Commitment: CenterPoint Energy is committed to creating an inclusive work environment where business results are achieved through the skills, abilities and talents of our diverse workforce. At CenterPoint Energy, individuals are respected for their contributions toward our company objectives. We strive for an inclusive work environment across all levels that is reflective of the available workforce in the communities we serve.