Senior IAM Architect to to support the design and migration of on-premises applications to the Microsoft Entra ID platform for our major banking client-395

Senior IAM Architect to to support the design and migration of on-premises applications to the Microsoft Entra ID platform for our major banking client-39510

Location Address: Toronto or Scarborough (4 days a week)

Contract Duration: 8 months (possibility of extension or conversion to FTE)

Schedule Hours: 9am-5pm Monday-Friday; standard 37.5 hrs/week

Story Behind the Need

Business group: Global Technology Control Testing - IAM (Identity and Access Management) Architecture - part of Information Security and Controls - design solutions for customer IAM platforms

The Identity Access Management (IAM) Architect will work with business channels and the product team to understand the challenges facing them, provide solutions to these challenges and recommend architecture and design to bring modern capabilities to various IAM platforms

Project: The project aims to support the design and migration of on-premises applications to the Microsoft Entra ID platform. Applications will need to adopt MFA provided by Microsoft Entra ID Platform as part of the migration.

Candidate Value Proposition:

The successful candidate will have the opportunity to work on a global initiative and have exposure to international stakeholders (not only specific to the Canadian market) such as LATAM; help design a platform that supports over 16 million users in a major financial institution so is high visibility.

Typical Day in Role:

• Be responsible for the architecture and design of new features/capabilities that client is looking to introduce into the IAM platform (Microsoft Entra ID / ForgeRock / Ping
• Design the technical roadmap to support user identity and application migration from on-premises Identity Provider to Microsoft Entra ID platform
• Provide subject matter expertise surrounding the various security controls (MFA, Conditional Access Policies, Intune Device Management) within Microsoft platform
• Configure and validate architectural designs within the Entra Platform to verify solutions and new capabilities proposed for adoptio
• Review the business requirements (the “what”) provided by the IAM Product team and provide the overall architectural design (the “how”) to the IAM Engineering team to build into the IAM service
• Provide required design artifacts to key stakeholders which clearly outlines the solution, components involved, key decisions, and time and cost estimates
• Closely collaborate with IAM Engineering partners in all aspects of the design and ensure alignment and synergy regarding proposed solution
• Evaluate new authentication capabilities introduced into the ever-changing IAM landscape and account for what is applicable into proposed designs (short-term and long-term
• Partner with various cross functional architect teams (IAM, security, business channel, fraud) to solidify a design approach that aligns with best practices and strategic direction of the platform
• Collaborate with stakeholders across the Bank - technology, security architecture, security advisory, fraud, compliance and business channel teams - to provide enterprise grade solutions which meet the business and security requirement
• Design based on strong CIAM expertise that aligns with industry standards (FIDO, OIDC, OAUTH), best practices (MFA, NIST 800-63B) and a forward-looking mentality (Passkeys, VCs, DIDs)

/Must Have Skills:

• 10+ years in IAM space with 3+ years in an Architect Role.
• 3+ years of hands-on experience with the Microsoft Entra ID platform
• Experience with designing and implementing authentication and credential management flows based on channel requirements.

Nice-To-Have Skills:

• Knowledge of project finance or previous experience working within the Banking Sector.
• Experience of preparation of presentation decks and presenting to senior leadership.
• Experience with cloud-based platforms (GCP, Azure, AWS) in relation to the deployment of IAM services
• Experience with Java-based programming languages (Java, JavaScript, NodeJS)
• Strong understanding of various MFA technologies along with pro/con of each
• Experience developing and documenting CIAM directives, standards, and policies.
• Experience in scoping, sizing, and prioritizing solutions for a project.

Education:

Bachelor’s degree in computer science or engineering, or related field or relevant experience.

Best VS. Average Candidate:

The best candidate is someone with the longest experience designing solutions with Microsoft ENTRA.

Candidate Review & Selection:

1st - Hiring manager or Architect lead- Online - 45 mins - scenario-based questions on how they will design and configure. General experience on the platform.

2nd - Peers- Online- 45 mins - probing questions on business requirements, what information will you need to design XYZ

Hiring Manager’s availability to interview: ASAP