Senior IAM Architect

Level: Senior Consultant / Architect – Experienced Level

Required Experience: 6–10 years of experience in IAM architecture and cybersecurity

Main Responsibilities:

Design and formalize reference IAM architecture (vendor-neutral) covering WIAM and CIAM. Analyze current and target integration patterns. Model identity flows, authentication/authorization schemes, and system boundaries. Evaluate protocols and standards. Contribute to evolution scenarios from an architectural perspective. Address non-desk user identity use cases (blue-collar).

Mandatory Skills:

• Proven experience designing reference IAM architectures for complex enterprise environments
• Deep knowledge of protocols: SAML 2.0, OIDC/OAuth 2.0, SCIM 2.0, LDAP/AD, WS-Federation, FIDO2
• Knowledge of directory services: Active Directory, Azure AD / Entra ID, LDAP, Universal Directory
• Experience in enterprise architecture modeling (TOGAF, ArchiMate, or equivalent)
• Expertise in integration patterns: API Gateway, ESB, event-driven identity, SIEM integration
• Knowledge of Zero Trust principles and their application to IAM architecture
• Experience in high-level technical documentation (capability maps, integration diagrams, data flow diagrams)
• Experience with authentication solutions for users without email or smartphone

Preferred Skills / Certifications:

• TOGAF, SABSA, or CISSP-ISSAP certification
• Experience with hybrid cloud environments (Azure, AWS, GCP) and IAM as-a-Service
• Knowledge of IAM architectures in industrial or OT/IT contexts