IAM Architect

Role Details
  • Job Title: IAM Architect
  • Work Model: Hybrid ( 2 to 3days)
  • Location (if hybrid/office based): Leeds/Bradford
  • Duration of Assignment: 6 Months
    • Role Description (Please include a brief outline of the impact this role will have, including overview of customer industry and projects, access to cutting-edge technology etc.) We are seeking an experienced IAM Architect with strong expertise across Identity Governance & Administration (IGA) and Privileged Access Management (PAM) to support a major BFSI customer in the UK. The role will be responsible for defining, shaping, and governing the target-state architecture for IGA and PAM capabilities, ensuring alignment with enterprise security strategy, regulatory obligations, and business priorities. The successful candidate will play a key role in security transformation initiatives, driving robust identity governance, privileged access controls, compliance, and risk reduction across a complex regulated environment and implementation. This role requires a strong combination of strategic architecture capability, technical domain depth, and stakeholder management across security, infrastructure, application, risk, audit, and business teams. Key Responsibilities (Up to 10, Avoid repetition)
    • Define and maintain the target-state architecture for IGA and PAM across workforce, third-party, and privileged identities
    • Lead the design of scalable and secure identity controls covering identity lifecycle management, access governance, privileged access, least privilege, and segregation of duties
    • Develop architecture principles, standards, policies, patterns, and roadmaps for IGA and PAM transformation programmes
    • Provide architectural leadership for onboarding applications, platforms, and infrastructure into IGA and PAM services
    • Design and review solutions covering joiner, mover, leaver processes, access requests, approvals, certifications, role modelling, SoD controls, privileged account vaulting, elevation, session management, and break-glass access
    • Support product and vendor evaluations, including RFP responses, technical assessments, and solution selection activities
    • Ensure all solution designs align with UK BFSI regulatory, risk, audit, and compliance expectations
    • Work closely with engineering, operations, security, and business stakeholders to ensure successful delivery and adoption of identity capabilities
    • Review current-state IAM controls, identify architectural and control gaps, and recommend improvement opportunities
    • Provide design assurance, governance, and sign-off for IGA and PAM initiatives
    Key Skills / Knowledge / Experience (Up to 10, Avoid repetition)
    • Proven experience working as an IAM Architect, Security Architect, or similar architecture role in large enterprise environments
    • Strong hands-on architectural experience across both IGA and PAM domains
    • Demonstrable experience in the Banking, Financial Services and Insurance (BFSI) sector, preferably within the UK
    Strong understanding of identity governance principles including:
    • Joiner, mover, leaver processes
    • Access requests and approvals
    • Access certifications and recertifications
    • Role modelling and role-based access control
    • Segregation of duties
    • Policy-based access governance
    Strong understanding of privileged access controls including:
    • Privileged account discovery
    • Password vaulting
    • Privileged session management
    • Just-in-time / just-enough access
    • Elevation and delegation controls
    • Break-glass access
    • Service and shared account governance
    • Experience designing integrations across on-prem, cloud, hybrid, and SaaS environments
    • Good knowledge of identity and security protocols such as SAML, OAuth2, OpenID Connect, LDAP, SCIM, Kerberos, and API-based integrations
    Experience working with one or more enterprise IGA and PAM solutions such as:
    • SailPoint, Saviynt, One Identity, Entra ID Governance
    • CyberArk, Delinea, BeyondTrust, One Identity PAM
    Person Specification Client Facing and Lead for IDAM Workstream. The ideal candidate will be a seasoned IAM professional with deep architecture experience across both governance-led identity controls and privileged access security. They will be comfortable operating in a complex BFSI environment, engaging senior stakeholders, and translating security, risk, and regulatory requirements into practical and scalable architecture outcomes. Lead Implementation E2E and ensure benefits are realised.

    JBRP1_UKTJ

Apply Now
Apply Now

Job Details

Company
Stackstudio Digital Ltd
Location
Brighton, East Sussex, UK
Hybrid / Remote Options
Employment Type
Full-time
Posted