Senior Identity Security Architect
Job Location:
Seattle, WA - USA
Monthly Salary:
Not Disclosed
Posted on:
2 hours ago
Vacancies:
1 Vacancy
Job Summary
Senior Identity Security Architect Seattle WA
Key responsibilities
Define and own target-state identity architecture and reference designs (BeyondTrust Microsoft Entra ID Active Directory SailPoint).
Lead architecture and deployment strategy for identity modernization: privileged access transformation identity governance hybrid AD modernization cloud identity adoption and Zero Trust identity.
Establish architecture standards and design patterns; serve as design authority in architecture and design reviews.
Develop migration and cutover plans rollback strategies and risk mitigation for large user/system moves with minimal disruption.
Design integrations and provisioning for cloud and enterprise/SaaS apps using SAML OAuth2/OIDC SCIM Kerberos LDAP federation and APIs.
Drive phishing-resistant authentication and least-privilege / PAM architecture across the enterprise.
Collaborate with engineering security architecture platform/cloud and program management to convert architecture into delivery roadmaps and workstreams.
Provide technical leadership to build engineers; review designs and implementations for alignment to architecture and security requirements.
Identify and document architectural risks dependencies and trade-offs; present recommendations to engineering and leadership.
Ensure designs meet security compliance and data handling requirements.
Use AI tooling to accelerate architecture analysis documentation and solution evaluation.
Minimum qualifications
Bachelors or masters in Computer Science Cybersecurity IT or equivalent experience.
15 years of security or identity engineering experience including substantial identity/security architecture experience in enterprise environments.
Demonstrated leadership of large-scale identity modernization programs from architecture through production deployment.
Deep architecture expertise in two or more: BeyondTrust Microsoft Entra ID Active Directory Okta SailPoint.
Strong knowledge of authentication/authorization protocols and standards: SAML OAuth2/OIDC SCIM Kerberos LDAP.
Experience designing hybrid and multi-cloud identity integrations and migrations at scale.
Proven experience setting architecture standards and acting as a design authority for multiple delivery teams.
Excellent communication skills and ability to align technical and business stakeholders.
Able to operate independently in fast-paced multi-workstream programs.
Preferred certifications
CISSP SABSA TOGAF Microsoft SC-300 (Identity & Access Administrator) SailPoint Certified Engineer or equivalent.
Direct:
Office: X 206
E-mail:
Key responsibilities
Define and own target-state identity architecture and reference designs (BeyondTrust Microsoft Entra ID Active Directory SailPoint).
Lead architecture and deployment strategy for identity modernization: privileged access transformation identity governance hybrid AD modernization cloud identity adoption and Zero Trust identity.
Establish architecture standards and design patterns; serve as design authority in architecture and design reviews.
Develop migration and cutover plans rollback strategies and risk mitigation for large user/system moves with minimal disruption.
Design integrations and provisioning for cloud and enterprise/SaaS apps using SAML OAuth2/OIDC SCIM Kerberos LDAP federation and APIs.
Drive phishing-resistant authentication and least-privilege / PAM architecture across the enterprise.
Collaborate with engineering security architecture platform/cloud and program management to convert architecture into delivery roadmaps and workstreams.
Provide technical leadership to build engineers; review designs and implementations for alignment to architecture and security requirements.
Identify and document architectural risks dependencies and trade-offs; present recommendations to engineering and leadership.
Ensure designs meet security compliance and data handling requirements.
Use AI tooling to accelerate architecture analysis documentation and solution evaluation.
Minimum qualifications
Bachelors or masters in Computer Science Cybersecurity IT or equivalent experience.
15 years of security or identity engineering experience including substantial identity/security architecture experience in enterprise environments.
Demonstrated leadership of large-scale identity modernization programs from architecture through production deployment.
Deep architecture expertise in two or more: BeyondTrust Microsoft Entra ID Active Directory Okta SailPoint.
Strong knowledge of authentication/authorization protocols and standards: SAML OAuth2/OIDC SCIM Kerberos LDAP.
Experience designing hybrid and multi-cloud identity integrations and migrations at scale.
Proven experience setting architecture standards and acting as a design authority for multiple delivery teams.
Excellent communication skills and ability to align technical and business stakeholders.
Able to operate independently in fast-paced multi-workstream programs.
Preferred certifications
CISSP SABSA TOGAF Microsoft SC-300 (Identity & Access Administrator) SailPoint Certified Engineer or equivalent.
Direct:
Office: X 206
E-mail: