ASSYST is seeking a Senior IAM Architect to support our client project in Washington DC. This is a 100% onsite position.
Responsibilities:
- Architect and design Access Management technology solutions, including installations, integrations, and supporting infrastructure.
- Create and maintain enterprise standard architectural documentation, reference diagrams, process models, and runbooks.
- Implement and manage access management solutions such as PlainID and Azure Active Directory (Entra ID), ensuring integration with enterprisesystems.
- Automate security tasks using Azure DevOps and infrastructure as code (IaC) tools like ARM templates and Terraform.
- Utilize Microsoft Azure services (Azure Security Center, Azure Sentinel, Azure Key Vault) to enhance security, compliance, and enforce policies via Azure Policy and Blueprints.
- Utilize Azure Databricks for big data processing, advanced analytics, and machine learning.
- Integrate access management solutions with enterprise systems and Azure DevOps for CI/CD pipelines.
- Design secure network architectures using Azure Virtual Network, NSGs, and Azure Firewall for secure connectivity between on-premises and cloud environments.
- Review and improve infrastructure setup and deployment models to ensure security and compliance.
- Utilize Azure platforms and implement DevOps practices (CI/CD, containerization, infrastructure as code, policy as code) to streamline deployment and operations.
- Integrate Azure DevOps for automation pipeline in deployment and testing, adhering to best practices.
- Design and develop access management authorization policies using natural language expressions.
- Plan and manage deployments of Access Management Policies and authorization platforms, including PlainID installations, upgrades, and patches.
- Collaborate with developers, QA, project managers, and stakeholders to ensure cohesive product development and operations.
Requirements:
- Extensive hands-on experience with Access Management Authorization technologies.
- Experience using standardized natural language framework to develop and manage authorization policies.
- Experience with IAM components and general Authorization Technology setup, configuration, and administration.
- Expertise in designing end-to-end solutions that align with business needs and enterprise standards.
- Ability to create reference architecture diagrams using tools like iGrafx or Microsoft Visio.
- Strong understanding of enterprise architecture frameworks such as TOGAF, Zachman, or similar frameworks.
- Experience in developing and maintaining enterprise architecture artifacts, including principles, standards, and guidelines.
- Extensive experience with Microsoft Azure services.
- Proficiency in Azure DevOps for CI/CD pipeline integration and automation.
- Experience with Microsoft Entra ID for identity and access management.
- Familiarity with Microsoft Purview for data governance and compliance.
- Knowledge of Azure Resource Manager (ARM) templates and Azure Policy.
- Expertise in designing and implementing scalable, secure, and resilient cloud architectures.
- Experience with designing secure cloud architectures on Microsoft Azure following best practices (CIS Controls, NIST, ISO 27001).
- Expertise in managing identities, authentication, and authorization using Azure Active Directory (Entra ID).
- Experience with data encryption, data loss prevention policies, and secure data storage solutions (Azure Blob Storage, ADLS, Azure SQL Database) in Azure.
- Experience with Microsoft Information Protection (MIP) for data classification and labeling.
- Experience with developing secure backup and recovery strategies using Azure Backup and Azure Site Recovery.
- Experience with designing secure network architectures using Azure Virtual Network, NSGs, and Azure Firewall.
- Experience using Azure Sentinel and Azure Security Center for threat detection and continuous security monitoring.
- Knowledge of privacy compliance regulations using tools such as Microsoft Purview Compliance Manager.
- Experience with implementing audit and security monitoring practices with Azure Monitor and Log Analytics.
- Experience integrating SharePoint with other IAM solutions to ensure seamless access control and compliance.
- Expertise in database security and administration (Oracle, Postgres, MSSQL, Cosmos DB).
- Knowledge of data warehousing and ETL processes.
- Strong experience in API design, development, and management using Azure API Management and OAuth/JWT for security.
- Experience with API documentation tools like Swagger/OpenAPI.
Additional Requirements:
- 8+ years of hands-on experience with IAM technology architecture, design, and development.
- Bachelor's degree or higher in Computer Science or a related field.
- Relevant certifications such as Microsoft Certified: Azure Fundamentals, Azure Solutions Architect Expert, Azure Security Engineer Associate, Security, Compliance, and Identity Fundamentals, Power BI Data Analyst Associate are highly desirable.
ASSYST is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, disability, military status, national origin or any other characteristic protected under federal, state, or applicable local law.
#J-18808-Ljbffr