8562 - Architect IV - Identity and Access Management - Security Architect

Location: Reston, VA

Specialized Knowledge and Skills – Identity and Access Management - Security Architect



The Identity & Access Management (IAM) Security Architect/Engineer is a hands-on role focused on the security architecture in the IAM space supporting hybrid data centers for both on-prem and cloud services. The IAM architect will be responsible for security capabilities for internal employees and external customers that include credential management, identity provisioning, access provisioning, privileged account management, enterprise authentication, identity federation, and identity storage and enterprise certificates. The IAM architect will drive the architecture for all IAM security project execution. Provide rationalization for IAM toolset. Serve as the IAM security design authority


Required Experience

•Minimum of 6+ years or relevant experience

•Served as the security architecture expert across eight security architecture functional areas (credential management, access provisioning, authentication and authorization, application security, infrastructure security, data security, security monitoring, and operation security.) across the organization.

•Expert solution knowledge and implementation experience in identity federation, single sign on, SAML, OAuth, adaptive authentication, identity proofing, Active Directory, and Active Directory Federation Service, API gateways, SOA Services

•Familiar with IAM related protocols such as SAML, SPML, XACML, SCIM, OpenID and OAuth.

•Federation concepts and technologies particularly with solutions from ADFS and Ping Identity.

•Experience in designing and hands-on on directories, such as, Active Directory and any other LDAP compliant directory

•Must have design experience and good understanding of protocols such as, OIDC, OAuth 2, SAML.

•In-depth experience with Microsoft Azure, particularly Azure AD and architecture designs connecting Azure to enterprise infrastructure.

•Strong understanding of cloud computing architecture, technical design and implementations, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS) delivery models.

•Excellent customer service and communication (oral / written) skills required.

•Strong critical thinking and analytical skills and ability to think “out of the box” required.

•Must be able to work independently or with a team, under minimum supervision.

• Bachelor's Degree or equivalent required

• 6+ years of related experience