IAM Architect

Role Details

• Job Title: IAM Architect
• Work Model: Hybrid ( 2 to 3days)
• Location (if hybrid/office based): Leeds/Bradford
• Duration of Assignment: 6 Months

Role Description (Please include a brief outline of the impact this role will have, including overview of customer industry and projects, access to cutting-edge technology etc.) We are seeking an experienced IAM Architect with strong expertise across Identity Governance & Administration (IGA) and Privileged Access Management (PAM) to support a major BFSI customer in the UK. The role will be responsible for defining, shaping, and governing the target-state architecture for IGA and PAM capabilities, ensuring alignment with enterprise security strategy, regulatory obligations, and business priorities. The successful candidate will play a key role in security transformation initiatives, driving robust identity governance, privileged access controls, compliance, and risk reduction across a complex regulated environment and implementation. This role requires a strong combination of strategic architecture capability, technical domain depth, and stakeholder management across security, infrastructure, application, risk, audit, and business teams. Key Responsibilities (Up to 10, Avoid repetition)

• Define and maintain the target-state architecture for IGA and PAM across workforce, third-party, and privileged identities
• Lead the design of scalable and secure identity controls covering identity lifecycle management, access governance, privileged access, least privilege, and segregation of duties
• Develop architecture principles, standards, policies, patterns, and roadmaps for IGA and PAM transformation programmes
• Provide architectural leadership for onboarding applications, platforms, and infrastructure into IGA and PAM services
• Design and review solutions covering joiner, mover, leaver processes, access requests, approvals, certifications, role modelling, SoD controls, privileged account vaulting, elevation, session management, and break-glass access
• Support product and vendor evaluations, including RFP responses, technical assessments, and solution selection activities
• Ensure all solution designs align with UK BFSI regulatory, risk, audit, and compliance expectations
• Work closely with engineering, operations, security, and business stakeholders to ensure successful delivery and adoption of identity capabilities
• Review current-state IAM controls, identify architectural and control gaps, and recommend improvement opportunities
• Provide design assurance, governance, and sign-off for IGA and PAM initiatives

Key Skills / Knowledge / Experience (Up to 10, Avoid repetition)

• Proven experience working as an IAM Architect, Security Architect, or similar architecture role in large enterprise environments
• Strong hands-on architectural experience across both IGA and PAM domains
• Demonstrable experience in the Banking, Financial Services and Insurance (BFSI) sector, preferably within the UK

Strong understanding of identity governance principles including:

• Joiner, mover, leaver processes
• Access requests and approvals
• Access certifications and recertifications
• Role modelling and role-based access control
• Segregation of duties
• Policy-based access governance

Strong understanding of privileged access controls including:

• Privileged account discovery
• Password vaulting
• Privileged session management
• Just-in-time / just-enough access
• Elevation and delegation controls
• Break-glass access
• Service and shared account governance
• Experience designing integrations across on-prem, cloud, hybrid, and SaaS environments
• Good knowledge of identity and security protocols such as SAML, OAuth2, OpenID Connect, LDAP, SCIM, Kerberos, and API-based integrations

Experience working with one or more enterprise IGA and PAM solutions such as:

• SailPoint, Saviynt, One Identity, Entra ID Governance
• CyberArk, Delinea, BeyondTrust, One Identity PAM

Person Specification Client Facing and Lead for IDAM Workstream. The ideal candidate will be a seasoned IAM professional with deep architecture experience across both governance-led identity controls and privileged access security. They will be comfortable operating in a complex BFSI environment, engaging senior stakeholders, and translating security, risk, and regulatory requirements into practical and scalable architecture outcomes. Lead Implementation E2E and ensure benefits are realised.

JBRP1_UKTJ