Delivery Senior Consultant, Software Engineering Solutions, I...
Role details
Job location
Tech stack
Job description
Cloud-based identity and access management capabilities are critical to protecting enterprise systems, data, and users. As an IAM Architect, you will help design and deliver identity management solutions that support business goals, strengthen security, and improve user access experiences. This role focuses on architecture, implementation, and continuous enhancement of IAM capabilities across enterprise environments., As an IAM Architect on the Identity and Access Management team, you will be responsible for...
- Lead and manage the design strategy, delivery, and adoption of identity and access management capabilities.
- Architect and deliver IAM solutions that align to client business goals and targeted outcomes.
- Create and maintain IAM architecture designs, process flows, technical documentation, and support artifacts.
- Drive innovation in identity management solutions, including access, authentication, and federation capabilities.
- Support IAM operations, security architecture, and implementation activities across enterprise and cloud environments.
Requirements
-
Ability to work independently and collaborate as part of a team
-
Effective written and verbal communication skills
-
Meticulous attention to detail and quality of work product
-
Ability to build and sustain professional relationships
-
Ability to lead projects or workstreams
-
Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
-
Strong interpersonal skills and professional demeanor
-
Ability to meet deadlines
-
Ability to provide clear guidance to others, Required:
-
Bachelor's degree in Cybersecurity, Computer Science, Information Systems, Engineering, or a similar technical field
-
Ability to work onsite up to 5 days a week.
-
Active Secret Clearance required.
-
3+ years of experience within the following:
-
Implementing identity management solutions such as SailPoint, Ping, Okta or ForgeRock.
-
Entitlement management, credential management, and user security behavior monitoring
-
Experience with single sign-on (SSO), multi-factor authentication (MFA), and protocols including OpenID Connect (OIDC), Security Assertion Markup Language (SAML), OAuth, JSON Web Token (JWT), and federation
4+ years of experience supporting identity and access management, security operations, and security architecture
2+ years of understanding of authentication, authorization, cloud environments, and directory services
Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.
Delivery Center Location & Travel Requirements:
- Hybrid Work Model: Operate under a hybrid system requiring residence within a commutable distance to one of the US Delivery Center locations (Gilbert, Lake Mary, or Mechanicsburg) or Geo-Hub locations (Atlanta, Charlotte, Dallas, Houston, and Philadelphia)
- Co-location Expectation: Spend up to 30% of working time co-located at an assigned office for orchestrated opportunities, including projects, practice sessions, training, and Moments That Matter at a Deloitte Delivery Center location, Geo-Hub location, approved site, or project location
- Travel Requirement: Maximum of 10% overnight travel for client or project purposes
- Relocation Requirement: If relocation is necessary, complete the move within 12 weeks from the start date to reside within a commutable distance
Preferred:
- Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), Certified Information Systems Auditor (CISA), or Certified Information Security Manager (CISM)
- SailPoint vendor certification
- 2+ years of experience supporting IAM in cloud environments such as Amazon Web Services (AWS) and Microsoft Azure
- 1+ year of experience working with security information and event management (SIEM) tools such as Splunk or LogRhythm
- 1+ year of experience supporting federal government environments
- 1+ year of experience with automation technologies such as Ansible or Python
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.