Identity Application Architect

5 hours, 38 minutes ago
Full-time
Lead
Software Development
AHEAD

AHEAD

AHEAD accelerates the impact of technology on clients by engineering customized data, developer, and infrastructure platforms that improve IT operations. By weaving together cloud infrastructure, intelligent operations, and modern applications, we help...

IT Services
1K-5K
$43M raised

Description

  • Lead the architecture and design of CIAM and IAM solutions for customer, partner, and workforce identity use cases.
  • Define reference architectures, technical standards, guardrails, and integration patterns for identity services and applications.
  • Architect identity-enabled applications, APIs, portals, and workflows for onboarding, access requests, MFA, identity proofing, consent, and recovery.
  • Drive architecture decisions for identity data models, directory strategy, attribute governance, role and group design, and policy design.
  • Evaluate and improve identity platforms and integrations to reduce risk, technical debt, and operational friction.
  • Produce architecture diagrams, standards, roadmaps, decision records, and implementation guidance.
  • Lead design reviews, governance activities, and stakeholder communication to align delivery with security and strategic objectives.
  • Mentor engineers and administrators while collaborating with vendors and internal teams.
  • Stay current on IAM and CIAM trends, threats, standards, and capabilities to inform architectural recommendations.

Requirements

  • Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, Software Engineering, or a related field, or equivalent practical experience.
  • 8+ years of progressive experience in identity and access management, application security, or enterprise architecture.
  • 5+ years of experience architecting or leading implementations for CIAM and/or IAM platforms.
  • Practical experience designing integrations across identity providers, cloud platforms, customer-facing applications, HR systems, CRM platforms, and ITSM systems.
  • Experience with Okta, Auth0, Microsoft Entra ID, AWS, Azure, Salesforce, ServiceNow, or comparable identity and business platforms.
  • Strong expertise in IAM and CIAM architecture, including authentication, authorization, federation, identity lifecycle management, provisioning and deprovisioning, delegated administration, and access governance.
  • Deep understanding of OAuth 2.0, OpenID Connect, SAML, SCIM, and related token, session, and federation concepts.
  • Experience designing customer identity journeys including registration, login, MFA, passwordless options, account recovery, consent, and profile management.
  • Experience designing enterprise IAM patterns for RBAC, ABAC, entitlement management, least privilege, and segregation of duties.
  • Required certification in at least one relevant identity or cybersecurity discipline, such as CISSP, CCSP, IDPro, Okta Certified Administrator/Developer, Microsoft SC-300, or AWS Security Specialty.
  • Familiarity with CI/CD, infrastructure as code, automated testing, observability, and secure development practices.
  • Willingness and ability to use AI-assisted engineering tools such as Claude, GitHub Copilot, or Cursor in a secure and effective manner.
  • Strong written and verbal communication skills for presenting architecture decisions and tradeoffs to technical and executive stakeholders.
  • Strong problem-solving skills and ability to diagnose complex identity, integration, and access issues across distributed systems.
  • Experience addressing emerging identity control challenges related to agentic AI, non-human identities, machine identities, and modern IAM governance patterns.

Benefits

  • Competitive compensation structured as on-target earnings (OTE), including base salary and any applicable target bonus.
  • Medical, dental, and vision insurance.
  • 401(k) retirement plan.
  • Paid company holidays.
  • Paid time off.
  • Paid parental and caregiver leave.
  • Access to continued learning support, including sponsored certifications and credentials.
  • Opportunity to work with a multi-million-dollar lab and cross-department training and development programs.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

[Job-30248] Arquiteto de Software (Java) Brazil

CI&T 5K-10K Internet Software & Services

CI&T is hiring a Software Architect to support a financial services client’s digital transformation by designing and evolving agentic AI flows that reshape the software development lifecycle in a modern, product-oriented environment.

Angular Azure BDD CI/CD Databricks Git Java Microservices SonarQube Spring Boot
5 hours, 53 minutes ago

[Job-30216] Software Architect ( Java + Angular )

CI&T 5K-10K Internet Software & Services

CI&T is seeking a Full Stack Software Architect to support financial-sector product development, guide technical execution, and drive continuous improvement within a collaborative team environment.

Agile Angular Azure DevSecOps Docker Generative AI Java JUnit Kubernetes Microservices OpenShift Spring Boot TypeScript
5 hours, 53 minutes ago

Digital Architect

OZ Digital, 251-1K Internet Software & Services

OZ is seeking a Digital Architect for web, mobile, and user experience to lead the architecture and delivery of large-scale digital products across engineering, product, and design.

Agile Angular AWS Azure CI/CD Flutter GraphQL Microservices React React Native REST API Scrum Vue.js
6 hours, 8 minutes ago

AI Web Designer & Architect | Vibe Coding (Lovable & Higgsfield)

Puulse Marketing 11-50 Professional Services

Remote full-time independent contractor role at an AI-first web design team, responsible for building, animating, and launching client websites end to end using Lovable and Higgsfield.

1 day, 5 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers