Description
IDAM Technical Architect - NIST, CIS20
Integrate and work within a defined security architecture process that enables the enterprise to develop and implement identity solutions and capabilities that are clearly aligned with business, technology and threat drivers
Establishing and implementing standards and guidelines that govern the design of technology solutions including architecting solutions which require the integration of multiple platforms, operating systems and applications across the enterprise.
Designing and reviewing standard software and hardware builds, system options, risks, costs versus benefits and impact of designs on the enterprise, technology and business architecture, processes and strategic goals of relevant divisions.
Providing technical guidance and quality assurance to enable traceability of requirements to original project scope and solution design.
Completing Architecture deliverables to required quality, Domain Roadmaps, design and integration principles.
Assisting with the development of and manages the relevant architecture governance process within the division.
Contributing to the community of practice capability and architecture frameworks, supporting practice employees in their use.
Significant IDAM Architecture and solution design experience
Significant experience as a solution architect, either in professional services, financial services, or the public sector/regulated environment, using architecture methodologies and tools (TOGAF, Architecture Design Tools, Abacus or Archi experience desirable) to deliver sound high level technical designs, architecture deliverables and providing advice and guidance in relation to maintenance of an architecture road map.
Significant experience in complex and significant n-tier implementations, delivering architecture artefacts to software project management, SDLC, SCRUM, Agile methodologies
Knowledge of common identity and security capabilities specifically including IDAM, CIAM and PAM
Experienced in Cyber security principles and security frameworks (NIST, CIS 20) with experience of designing Security Solutions successfully through to operation
Able to deliver cohesive design and documentation for delivery of Identity & Access Services to include technology options
Experienced in interpreting business strategy into technical architectures, and awareness of the relationships between systems and process
Experienced in system engineering and/or development experience and a deep and up-to-date understanding of best practice application/business domain solution architectures and associated domains
Detailed knowledge and understanding of architectural concepts, methodologies and mapping approaches, proficient knowledge of Archimate and UML, and relevant solution architecture skills (ie Data, Application, and Infrastructure)
Ability to work with imperfect information in the environment of uncertainty whilst still maintaining high standard, evidenced designs and documentation.
Experienced influencer and negotiator with credibility and gravitas, balancing the needs of the business whilst ensuring alignment to the FCA's enterprise and technical architecture
Excellent Communication and interpersonal skills, able to convey technical solutions to business stakeholders
Desirable:
An expert understanding of IDAM solutions, in particular: Okta, Azure AD, Active Directory, LDAP, G-Suite, AWS.
In-depth understanding of authentication and authorization technologies and standards like SAML, SPML, oAuth, OpenID Connect, SCIM, SWA, etc.
Good understanding of the following aspects of IDAM: Identity Providers, Identity Federation, Multi-Factor Authentication (providers and methods), Identity Governance and Administration (IGA), Social Identities and Social Identity Providers, Identity Management Lifecycles, Identity/Access Provisioning, Bring Your Own Identity (BYOI), Step-up Authentication/Adaptive Access Techniques and Access Control Assurance Reporting.
Understanding of some or all of the following Identity Providers: Active Directory, Red Hat IdM, AWS IAM, AWS SSO and Salesforce Identity.
Understanding of Azure AD Groups and O365 Groups
A minimum of 5 years technical experience in IDAM technologies and architectural frameworks.
Broad appreciation of technology encompassed within Identity & Access management.
Ability to work with a broad range of stakeholders including Technical and Operations staff in order to define and implement a strategy for delivering Identity & Access services.
Oversees and directs security discussions for both a technical and management audience.
Educated to degree level eg BSc Enterprise and Solution Architecture or related IT discipline
TOGAF certified
Knowledge of key platform technologies and software architecture eg Salesforce, ERP, Records, content and knowledge management, and security and cloud architecture