Haystack
← Back to Jobs
Administrative

Senior Identity Security Architect

Celer Soft LLCUnited States🇺🇸United StatesPosted 5 Jul 2026

Quick Overview

Work Type
Hybrid
Level
Mid Senior

Job Description

Senior Identity Security Architect Seattle, WA



Key responsibilities

Define and own target-state identity architecture and reference designs (BeyondTrust, Microsoft Entra ID, Active Directory, SailPoint).

Lead architecture and deployment strategy for identity modernization: privileged access transformation, identity governance, hybrid AD modernization, cloud identity adoption, and Zero Trust identity.

Establish architecture standards and design patterns; serve as design authority in architecture and design reviews.

Develop migration and cutover plans, rollback strategies, and risk mitigation for large user/system moves with minimal disruption.

Design integrations and provisioning for cloud and enterprise/SaaS apps using SAML, OAuth2/OIDC, SCIM, Kerberos, LDAP, federation, and APIs.

Drive phishing-resistant authentication and least-privilege / PAM architecture across the enterprise.

Collaborate with engineering, security architecture, platform/cloud, and program management to convert architecture into delivery roadmaps and workstreams.

Provide technical leadership to build engineers; review designs and implementations for alignment to architecture and security requirements.

Identify and document architectural risks, dependencies, and trade-offs; present recommendations to engineering and leadership.

Ensure designs meet security, compliance, and data handling requirements.

Use AI tooling to accelerate architecture analysis, documentation, and solution evaluation.

Minimum qualifications

Bachelor s or master s in Computer Science, Cybersecurity, IT, or equivalent experience.

15+ years of security or identity engineering experience, including substantial identity/security architecture experience in enterprise environments.

Demonstrated leadership of large-scale identity modernization programs from architecture through production deployment.

Deep architecture expertise in two or more: BeyondTrust, Microsoft Entra ID, Active Directory, Okta, SailPoint.

Strong knowledge of authentication/authorization protocols and standards: SAML, OAuth2/OIDC, SCIM, Kerberos, LDAP.

Experience designing hybrid and multi-cloud identity integrations and migrations at scale.

Proven experience setting architecture standards and acting as a design authority for multiple delivery teams.

Excellent communication skills and ability to align technical and business stakeholders.

Able to operate independently in fast-paced, multi-workstream programs.

Preferred certifications

CISSP, SABSA, TOGAF, Microsoft SC-300 (Identity & Access Administrator), SailPoint Certified Engineer, or equivalent.







Direct:

Office: X 206

E-mail:

Similar jobs