Sign in
Employer registration
Login
Employer registration
Login
Forgot password
Forgot password
Sign in
Sign in
Employer registration
Find Meaningful Work

IT Architect - Identity and Access Management (IAM) job in Baltimore

Laureate Education jobs
Maryland (MD), Baltimore
Company Type:  Certified B Corporation
Industry:  Other/Not Classified
Employment:  Full-time
Impact Area:  Education & Training
Company Name:  Laureate Education

Location
Country:  United States
State / Province:  Maryland (MD)
City:  Baltimore
Map: 

Description

GENERAL SUMMARY:
Laureate Education is seeking an experienced Identity and Access Management Architect, reporting to the head of the global enterprise-wide IAM program. The global Information Security Identity and Access Management (IAM) organization defines policy and delivers capabilities to empower Laureate Education to better control access to its data, systems and infrastructure via a seamless user experience.
This role is responsible for overseeing and influencing the implementation and adoption of the overall IAM solution architecture. You will be the technical SME on the new IDaaS IAM solution throughout the corporation, covering the full user lifecycle, to drive with leadership the creation of an application adoption approach. Understand the current state environment to provide direction and execution leadership throughout the migration & transition of legacy applications onto the new IAM platform as well as the integration of new applications. Must be able to meet demands of working across multiple workstreams through relationships with vendors, infrastructure and application teams. Ability to communicate effectively with senior technology and business leadership. Knowledge of information security, risk and compliance and the value of producing documentation will also be key to this role.
ESSENTIAL DUTIES and REPONSIBILTIES:

  • Technical SME and expert within the IAM domain.

  • Lead Architect to define and drive enterprise IAM solutions.

  • Assume ownership of IDaaS system rollout and integration, work closely with teams to complete development and implementation tasks

  • Ability to dive deep, step-in and be technical hands-on when as needed.

  • Work within the CISO team of a large organization to promote the best Identity and Access Management practices.

  • Research problems and recommend solutions to improve security and processes by providing security IAM options.

  • Serve as a business enabler via development support, clear planning and design documentation for properly-secured, policy-compliant, high-performance IAM integrations.

  • Develop or identify new concepts, tools, or systems to improve the future of the IAM Security landscape.

  • Produce regular status reports

  • Work with external vendors, system integrators and near/off shore teams.

  • Support for System and IAM related policy development and regulatory compliance

  • Support requirements/responses required from the 24x7 operations team

  • Support CISO Quality and Compliance efforts

  • Respond to Threat Intelligence reports

  • Provide IAM domain knowledge to improve the security architecture

  • Translate architecture specifications to low-level component design

  • Understand business requirements and design IAM solutions

  • Interact and communicate with application teams on systems integration tasks, dependencies, and troubleshooting issues

  • Ability to mentor junior staff and be a technical leader

  • Ability to work within an agile project methodology

  • Some travel,


REQUIRED SKILLS and EXPERIENCE:

  • 8+ years working within the Identity & Access Management domain

  • 8+ years working at the software architecture level

  • 10+ years of enterprise software development experience

  • Oversee development of technical architecture for enterprise IAM solutions.

  • Strong discipline regarding enforcement of access management core principles

  • Experience implementing an IAM vendor solution(s)

  • Deep knowledge of the full user identity and access management lifecycle

  • Comfortable dealing with external vendors, system integrators and hosting partners.

  • Ability to work in Virtual, Geographically Dispersed Teams.

  • Ability to drive completion of required tasks independently.

  • Strong knowledge and experience of provisioning/deprovisioning workflows

  • Very proficient running various IAM tools.

  • Privileged Account Management (PAM)

  • Experience implementing Identity Federation Management / SSO solutions

  • Strong knowledge and experience with Active Directory

  • Expertise with identity management domain concepts, implementation, and integration with various data sources and workflows.

  • Strong awareness of IAM Protocols, SAML, OIDC, OAuth, WS-Fed, etc..

  • Firm understanding of API connector/adaptor interface approaches such as REST, JSON, SOAP, etc…

  • Experience with access models such as RBAC and ABAC

  • User Access Review (UAR) and User Access Governance

  • Agile project experience


ADDITIONAL DESIRED SKILLS and COMPETENCIES:

  • IDaaS experience preferred

  • Azure AD, ADFS, ADDS, and cross domain integration experience desired

  • Global company experience

  • Mobile IAM experience highly desired

  • Multi-Factor Authentication (MFA) knowledge and experience

  • PKI knowledge

  • Governance, Risk and Compliance (GRC), software solution experience

  • Experience with Brainwave iGRC desired

  • Segregation of Duties (SoD)

  • Office 365 Identity & Access experience

  • Working with both Internal and External Identities

  • SCIM, SPML knowledge desired

  • Knowledge of Virtual Directory, Meta Directory and other IAM technologies that interact with them such as directory servers, databases and networking tools

  • Experience with Privileged Account Management (PAM) vendor package(s)

  • Knowledge of OWASP top 10 security issues for web/ mobile and remediation patterns desired.

  • A professional certification in an information security domain such as CISSP, CISM, or CISA preferred.

  • A professional certification in the Identity and Access domain such as CIAM, CIMP preferred.



BUSINESS COMPETENCIES:



  • Leadership skills, along with a strong desire to coach & mentor others

  • Strong technical aptitude and knowledge, with a passion for keeping up with emerging technologies

  • Skilled in organizing and motivating team members to produce high-quality results

  • Versatile and highly adaptive to a fast-paced environment

  • Willing and able to lead and take risks

  • Strong customer orientation, with the ability to understand and comprehend users’ needs

  • Pays close attention to quality and details

  • Thrives in a high-energy work team


ref: (SB_11028)
Back to search results