Role Overview
The Solution Architect IAM & Data Privacy is responsible for designing and implementing secure, compliant, and scalable identity and access management (IAM) and data privacy solutions. The role focuses on enforcing strong access controls, enabling privacy-by-design, and supporting regulatory compliance across applications, data platforms, and cloud environments.
Key Responsibilities
IAM Architecture & Implementation
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Design and implement IAM architectures, including identity lifecycle, access provisioning, authentication, and authorization for enterprise applications and cloud platforms.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Define and maintain role-based and attribute-based access control models (RBAC/ABAC), group structures, and access policies to support least-privilege principles.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Integrate IAM solutions with directories and cloud identity providers (e.g., AD/Azure Entra, LDAP, SSO) and relevant business applications.
Data Privacy & Compliance
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Support the design and operation of data privacy controls aligned with regulations such as GDPR, CCPA, and other applicable frameworks.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Contribute to privacy impact assessments (PIAs), data mapping, classification, and data subject rights processes in partnership with privacy and security teams.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Work with governance stakeholders to ensure IAM and data privacy controls align with internal policies, audits, and regulatory expectations.
Operations, Monitoring & Governance
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Participate in the operation and continuous improvement of IAM and privacy platforms, including access reviews, entitlement audits, and certification campaigns.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Monitor IAM and privacy-related KPIs, identify anomalies or access risks, and support remediation and incident response activities.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Document solution designs, standards, and runbooks, and contribute to governance models, workflows, and RACI definitions.
Collaboration & Advisory
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Collaborate with application owners, security, infrastructure, and data teams to embed IAM and privacy-by-design into new and existing solutions.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Provide technical guidance and recommendations on IAM patterns, data protection controls, and integration best practices to project teams and stakeholders.
Required Skills & Experience
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> 57 years of experience in information security, with a strong focus on Identity & Access Management and/or Data Privacy.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Hands-on experience implementing or supporting IAM technologies (e.g., directory services, SSO, MFA, RBAC/ABAC models, access certification).
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Good understanding of authentication and authorization concepts and common standards (e.g., SSO concepts, SAML, OAuth2, OpenID Connect).
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Working knowledge of data privacy principles and regulatory frameworks (e.g., GDPR, CCPA) and how they impact identity, access, and data protection.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Experience participating in access reviews, entitlement audits, or certification campaigns and handling remediation.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Ability to write or review technical documentation, standards, and procedures related to IAM and data privacy controls.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Strong analytical, problem-solving, and communication skills, with the ability to explain technical topics to non-technical stakeholders.
Qualifications & Preferred Certifications
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Bachelor's degree in Computer Science, Information Security, Information Systems, or a related field.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0> Preferred: Certifications in IAM or security/privacy, such as CIAM/CIMP, CISSP, CIPP/E, or cloud security/IAM certifications from major providers.
Skills: gdpr compliance,data privacy,identity & access management (iam),iam,risk analyst,ccpa
