FICO is an analytics company helping businesses make better decisions that drive higher levels of growth and success.

Senior Identity Security Architect

Security EngineerSecurity EngineerFull TimeRemoteTeam 1,001-5,000Since 1956H1B No SponsorCompany Site LinkedIn

Location

United States

Posted

101 days ago

Salary

$133K - $209K / year

Bachelor Degree5 yrs expEnglishAWSCloudCyber SecurityGoogle Cloud Platform

Job Description

• Partner with the IAM architecture team to develop and grow the organization’s IAM strategy and identity governance • Collaborate with IT, HR, compliance, product developers and business units to enhance onboarding, access provisioning, and RBAC • Work with engineering and operations teams within the broader IAM function to ensure smooth execution of architecture solutions • Identity opportunities for automation and reporting across IDP estate to enhance identity governance • Define IAM architecture roadmap, policies, standards, and ensure compliance with internal security policies and external regulatory requirements • Develop architecture diagrams and presentations for various audiences • Stay current with emerging trends and technologies in identity governance and evaluate their potential impact on the organization • Participate and collaborate with IAM and security tools vendors to shape future identity security and governance tools selections

Job Requirements

Hands-on experience with cloud IAM and IDPs (Entra ID, AWS IAM, GCP IAM, Okta, Ping, Active Directory, RHIM)
In-depth experience with SailPoint – Identity Security Cloud preferred
Strong knowledge of IAM processes: provisioning, de-provisioning, certifications, RBAC, ABAC, MFA, SSO, PAM
Experience with Federated Identity Management (SAML, OAuth, OpenID Connect)
Experience designing solutions to effectively manage privileged access using PAM solutions like CyberArk or Thycotic
Strong understanding of modern authentication and authorization standards (SAML, OIDC)
Familiarity with software development practices and experience working with Rest APIs
Knowledge of Private Key Infrastructure (PKI), mTLS machine authentication, and FIDO2/WebAuthn
Knowledge of Non-Human Identity (NHI) concepts and threat detections
Knowledge of Zero Trust architecture and NIST cybersecurity frameworks
Knowledge of AI and LLMs and use cases for identity governance is a plus
Relevant certifications are a plus (e.g., CISSP, CIDPRO, CCSP, GIAC, AWS Certified Security, Microsoft SC-100, SC-300)

Benefits

Highly competitive compensation
Benefits and rewards programs that encourage you to bring your best every day
Engaging, people-first work environment offering work/life balance
Employee resource groups and social events to promote interaction and camaraderie