IAM Architect

Key Responsibilities:

• Integrate Aladdin Access Model (Okta) with the organization's Entra ID (preferred) or on-prem Active Directory using SSO.

• Design and implement Aladdin Access Requests using ServiceNow, leveraging RBAC and ABAC frameworks.

• Set up automation workflows between Aladdin, SailPoint, ServiceNow, and Entra ID to streamline provisioning and access management.

• Design User Access Review (UAR) processes to ensure compliance with audit, regulatory, and internal control standards.

• Collaborate with Product Owners and business stakeholders to identify toxic combinations and ensure Segregation of Duties (SoD) compliance.

• Architect user provisioning processes similar to SCIM, even if Aladdin does not natively support it.

• Provide oversight for GRC control attestations, ensuring proper logging, monitoring, and auditing.

• Develop full architectural designs and artifacts, including APIM integrations for provisioning, auditing, logging, and monitoring.

• Ensure robust 4-A’s oversight: Authentication, Authorization, Accounting/Audit, and Administration.

Requirements:

• Proven experience in Identity & Access Management and enterprise access provisioning.

• Strong knowledge of RBAC/ABAC frameworks, ServiceNow integration, and automation with SailPoint.

• Hands-on experience with API integrations (APIM) for access provisioning, logging, and monitoring.

• Familiarity with compliance and audit requirements for access management, including toxic combination and SoD analysis.

• Experience with SCIM-based provisioning processes is a plus.

• Ability to produce full architectural designs and documentation for enterprise IAM solutions.