<p>CIAM Solution Architect</p> <p>Must Have Technical/Functional Skills</p> <ul> <li>Drive and create roadmap for enterprise CIAM solution along with other engineering stakeholders </li><li>Develop and document end-to-end CIAM solution and technical architectures for customer-facing </li><li>applications, ensuring security, scalability, and compliance. </li><li>Identify, develop and document omnichannel CIAM patterns across the channels (Mobile, Web, Customer Care etc.) </li><li>Work with cross-functional teams to integrate Okta as a CIAM platform into cloud and hybrid environments. </li><li>Implement Zero Trust principles and enforce authentication/authorization standards. Ensure adherence to regulatory frameworks (GDPR, CCPA, PCI-DSS, HIPAA, SOC2, ISO 27001). </li><li>Design frictionless user journeys for registration, login, and account management, incorporating MFA, adaptive authentication, and consent management. </li><li>Provide guidance on CIAM best practices, risk analysis, and security patterns for identity lifecycle management, federation, and privileged access. </li><li>Maintain architecture diagrams, technical standards, and operational playbooks. </li></ul> <p>Qualifications</p> <ul> <li>8+ years in Identity & Access Management, with at least 3+ years focused on CIAM architecture. </li><li>Proven track record in designing and deploying CIAM solutions for large-scale, customer-facing environments. </li><li>Intimately familiar with IAM related protocols such as SAML, SPML, XACML, SCIM, OpenID and OAuth </li><li>Strong experience with Directories, SSO, Federation, Delegated administration, API gateways, SOA services </li><li>Good understanding of MFA, PAM and Risk Based Authentication </li><li>Familiarity with API-driven architectures and microservices. </li><li>Hands-on experience with CIAM platforms (Okta, Onespan,Twilio etc.). </li><li>Experience with building integrated CIAM solutions with enterprise systems such as Salesforce, Third party systems etc. </li><li>Knowledge of cloud platforms (AWS, Azure, GCP) and DevSecOps practices. </li><li>Ensure IAM architectures align with NIST, OWASP, MITRE, and encryption standards. </li><li>Integrate IAM with data security controls and risk management frameworks and conduct risk assessments and implement mitigation strategies. </li></ul> <p>Preferred Qualifications</p> <ul> <li>Professional certifications: CISSP, CCSP, AWS/Azure Security, or equivalent. </li><li>Experience in financial services industries. </li></ul> <p>Salary Range- $120,000-$140,000 a year</p> <p>#LI-SP3</p> <p>#LI-VX1</p>