Back to jobs

IDENTITY APPLICATION ARCHITECT

Jobgether
Full-timesenior

Job description

Accountabilities • Lead the architecture and design of CIAM and IAM solutions supporting customer, partner, and workforce identity use cases across enterprise and digital platforms. • Define reference architectures, security standards, and integration patterns using protocols such as OAuth 2.0, OpenID Connect, SAML, SCIM, LDAP, and REST APIs. • Architect identity-enabled applications and workflows including onboarding, authentication, MFA, account recovery, consent, and lifecycle management processes. • Design and govern identity data models, directory strategies, role/group structures, and access control policies across enterprise systems. • Drive integration architecture across platforms such as Okta, Auth0, Microsoft Entra ID, AWS, Azure, Salesforce, and ServiceNow. • Evaluate and optimize identity systems and workflows to improve scalability, security, compliance, and operational efficiency. • Produce architecture documentation including diagrams, standards, roadmaps, and design decision records, and lead technical governance reviews. • Collaborate with cross-functional teams to align identity architecture with business, security, privacy, and user experience requirements. • Mentor engineering teams and provide guidance on identity architecture best practices and implementation patterns. • Stay current on IAM/CIAM trends, emerging threats, and evolving identity standards to inform strategic decisions. Requirements • 8+ years of experience in Identity and Access Management, application security, or enterprise architecture roles. • 5+ years of experience designing or implementing CIAM and/or IAM platforms at scale. • Strong expertise in identity protocols and standards including OAuth 2.0, OpenID Connect, SAML, and SCIM. • Hands-on experience with platforms such as Okta, Auth0, Microsoft Entra ID, AWS, Azure, Salesforce, or ServiceNow. • Proven ability to design secure identity journeys including login, registration, MFA, passwordless authentication, and account recovery. • Strong understanding of enterprise access models including RBAC, ABAC, least privilege, and entitlement management. • Experience integrating identity systems across HR, CRM, ITSM, and enterprise application ecosystems. • Solid background in security principles including API security, session management, threat modeling, and auditability. • Ability to define target-state architectures, roadmaps, and modernization strategies for identity systems. • Strong communication skills with experience presenting technical decisions to both engineering and executive audiences. • Familiarity with modern engineering practices such as CI/CD, IaC, observability, and secure development workflows. • Relevant certifications (e.g., CISSP, CCSP, SC-300, Okta, AWS Security Specialty) are strongly preferred. • Experience with AI-assisted development tools and awareness of emerging identity challenges (e.g., machine identities, agentic AI) is a plus. Benefits • Fully remote position within the United States. • Competitive compensation aligned with experience and market benchmarks. • High-impact architecture role shaping enterprise identity strategy and security posture. • Opportunity to work with leading CIAM/IAM platforms and modern cloud ecosystems. • Exposure to complex, large-scale identity transformations across enterprise systems. • Comprehensive benefits package including health coverage, retirement plans, and paid time off (where applicable through the partner organization). • Professional growth in a highly strategic cybersecurity and architecture domain. • Collaborative environment focused on innovation, security, and continuous improvement. How Jobgether works: We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team. We appreciate your interest and wish you the best!  Why Apply Through Jobgether?    Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.     #LI-CL1