Haystack
← Back to Jobs
Other

IAM Senior Lead / Architect

ApolisSeattle, WA🇺🇸United StatesPosted 17 Jul 2026

Quick Overview

Work Type
On Site
Level
Mid Senior

Job Description

Job Title: IAM Senior Lead / Architect

Location: Seattle, WA (Onsite)
Experience: 15+ Years

Job Summary

We are seeking an experienced IAM Senior Lead / Architect to drive enterprise Identity and Access Management (IAM) strategy, architecture, and modernization initiatives. The ideal candidate will have deep expertise in IAM, Identity Governance & Administration (IGA), Privileged Access Management (PAM), cloud identity, and hybrid identity solutions. This role will be responsible for designing secure, scalable identity architectures, leading enterprise transformation programs, and providing technical leadership across cross-functional teams.

Key Responsibilities

  • Define and own the enterprise IAM architecture, standards, and best practices.
  • Lead large-scale Identity and Access Management modernization and transformation initiatives.
  • Design and implement secure IAM solutions across on-premises, hybrid, and multi-cloud environments.
  • Architect and integrate Identity Governance (IGA), Privileged Access Management (PAM), Single Sign-On (SSO), Multi-Factor Authentication (MFA), and federation solutions.
  • Develop migration strategies for Active Directory, Microsoft Entra ID (Azure AD), and cloud identity platforms.
  • Design identity integrations using SAML, OAuth 2.0, OpenID Connect (OIDC), SCIM, Kerberos, and LDAP.
  • Establish least-privilege access models, Zero Trust identity principles, and privileged access controls.
  • Collaborate with security, infrastructure, cloud, and application teams to deliver secure identity solutions.
  • Review technical designs and ensure alignment with enterprise architecture and security standards.
  • Provide technical leadership and mentorship to engineering teams.
  • Identify architectural risks, recommend mitigation strategies, and communicate technical decisions to stakeholders.
  • Ensure compliance with enterprise security policies, regulatory requirements, and industry best practices.

Required Qualifications

  • Bachelor''s or Master''s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
  • 15+ years of experience in Identity and Access Management (IAM), Cybersecurity, or Identity Engineering.
  • Proven experience leading enterprise IAM architecture and transformation programs.
  • Strong expertise in two or more of the following:
    • Microsoft Entra ID (Azure AD)
    • Active Directory
    • SailPoint IdentityNow (IDN)
    • BeyondTrust
    • Okta
  • Strong knowledge of:
    • Identity Governance & Administration (IGA)
    • Privileged Access Management (PAM)
    • Single Sign-On (SSO)
    • Multi-Factor Authentication (MFA)
    • Role-Based Access Control (RBAC)
    • Attribute-Based Access Control (ABAC)
    • Zero Trust Architecture
  • Expertise with identity and authentication protocols including SAML, OAuth 2.0, OpenID Connect (OIDC), SCIM, Kerberos, and LDAP.
  • Experience designing IAM solutions across Azure, AWS, and Google Cloud Platform environments.
  • Excellent communication, leadership, stakeholder management, and problem-solving skills.

Preferred Qualifications

  • Certifications such as CISSP, TOGAF, SABSA, Microsoft SC-300, or SailPoint Certified Engineer.
  • Experience with Terraform, Ansible, and Infrastructure as Code (IaC).
  • Knowledge of CI/CD pipelines and DevSecOps practices.
  • Experience with Identity Threat Detection and Response (ITDR) and SIEM/SOAR integrations.
  • Experience supporting large enterprise, retail, or global environments.


Skills

AWS
MFA
OAuth
SAML
SSO
Active Directory
Ansible
Azure
Compliance
Google Cloud
LDAP
Stakeholder Management
Terraform
Zero Trust

Similar jobs