IAM Architect

• Define and govern IAM & AD architecture aligned with banking standards.
• Establish enterprise standards for service accounts, groups, roles, and permissions.
• Provide architectural guidance and approvals for remediation activities.
• Act as escalation point for complex IAM/AD design and risk decisions.
• Engage with client security, audit, and leadership teams.
• Present architectural decisions, risks, and progress to senior stakeholders.

Relevant Experience Years

• 10-15+ years in IAM and Active Directory architecture
• 5+ years in regulated banking / financial services environments
• Proven leadership in enterprise-wide IAM remediation programs
• Strong exposure to regulated/banking environments

Tools

• Microsoft Active Directory (AD DS, AD CS, AD FS)
• Azure AD / Entra ID (Hybrid Identity)
• IAM platforms (SailPoint, Saviynt, CyberArk - preferred)
• PowerShell (advanced)
• Architecture and documentation tools (Visio, Confluence)
• Database authentication concepts (AD integration patterns across DB2, Oracle, SQL, Postgres, etc.)

Skills

• Enterprise IAM & AD architecture design
• Strong communication and executive-level presentation skills
• Excellent problem-solving and decision-making capabilities
• Strong collaborative and stakeholder management skills
• Client-facing architecture advisory and consulting capability
• RBAC, least-privilege, and regulatory compliance expertise
• Deep understanding of AD-based database authentication patterns