Sumitomo Mitsui Financial Group, Inc.
IAM/Security Infrastructure Architect
Sumitomo Mitsui Financial Group, Inc., White Plains, New York, United States, 10606
SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the holding company of SMBC Group, which is one of the three largest banking groups in Japan. SMFG's shares trade on the Tokyo, Nagoya, and New York (NYSE: SMFG) stock exchanges.
In the Americas, SMBC Group has a presence in the US, Canada, Mexico, Brazil, Chile, Colombia, and Peru. Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients. It connects a diverse client base to local markets and the organization's extensive global network. The Group's operating companies in the Americas include Sumitomo Mitsui Banking Corp. (SMBC), SMBC Nikko Securities America, Inc., SMBC Capital Markets, Inc., SMBC MANUBANK, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and Leasing Co., Ltd.
The anticipated salary range for this role is between $213,000.00 and $231,000.00. The specific salary offered to an applicant will be based on their individual qualifications, experiences, and an analysis of the current compensation paid in their geography and the market for similar roles at the time of hire. The role may also be eligible for an annual discretionary incentive award. In addition to cash compensation, SMBC offers a competitive portfolio of benefits to its employees.
Role Description
SMBC is seeking a highly skilled and motivated IAM and Security Infrastructure Architect to join our Infrastructure Solutions Architecture team. Security is a shared responsibility, and as complex solutions are being designed and implemented, we need to ensure these initiatives consider the necessary infrastructure aspects as they relate to security. The person in this role will assist with the definition of the strategy and design in coordination with the existing Infrastructure and Information Security teams, help establish standards and policies, develop implementation plans, and transition applicable implementation and operational functions to applicable teams. An ideal candidate will have background and experience in the technologies and implementation methods related to both infrastructure and security architecture/engineering.
Role Objectives• Member of a team that establishes and drives infrastructure architecture with a specific focus on security requirements and best practices in a global, hybrid, multi-cloud environment.• Work directly with Information Security to develop and promote infrastructure requirements within security-related initiatives and ensure that security requirements are integrated into infrastructure projects.• Increase operational and financial efficiencies through identification of opportunities to standardize security toolsets and practices within a multi-company environment.• Ensure that the proposed and existing infrastructure architectures are aligned with organizational goals and objectives.• Provide architecture collaboration with other architecture, engineering, and application teams, translating application team needs into technical solutions and product requirements.• Drive infrastructure security and compliance requirements into the architecture framework.• Facilitate documentation of existing systems architecture and technology portfolios (e.g., architecture, configuration, and setup) and make recommendations for improvements and/or alternatives.• Provide effective knowledge transfer and upskilling to relevant Architecture and Engineering personnel.• Design with operations in mind. Look for ways to automate and improve operations.• Maintain strong relationships and identify opportunities for strengthening synergies between varying Infrastructure and IT Security teams.
Qualifications and Skills• Experience with IdP infrastructure and synchronization technologies including Active Directory, Entra ID, LDAP, SAML, SCIM, EID Connect, Cloud Synch, and MIM.• Background in end-to-end identity provisioning/deprovisioning standards and best practices including HRIS to IdP relationships and attribute management.• Familiarity with authentication infrastructure, protocols, and access controls (GPO, LDAP, Conditional Access, MFA, ADFS, Application Protection Policy, etc).• Familiarity with Microsoft native and competing security products such as Entra Identity Governance, Entitlement Management, Defender products, and Copilot for Security.• Understanding of endpoint management tools and standards including endpoint DLP, Defender for Cloud Apps, Intune endpoint management, and other policy frameworks.• Monitoring and logging tools such as Microsoft Sentinel, Cribl, Splunk, Cloudwatch, Cloudtrail, and MS Log Analytics.• Experience facilitating discussions with senior leadership regarding technical/architectural trade-offs, best practices, and risk mitigation.• Strong analytical, problem-solving, and decision-making skills.• Excellent communication and interpersonal skills.
Additional Requirements
D&I Commitment
Responsible for fostering a culture of diversity and inclusion, holding leaders accountable for creating an inclusive environment through awareness and practice of equity in recruiting, developing, and promoting diverse talent.
SMBC's employees participate in a hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process.
We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status or any other characteristic protected by law. SMBC provides reasonable accommodations for employees and applicants with disabilities consistent with applicable law. If you need a reasonable accommodation during the application process, please let us know at accommodations@smbcgroup.com.
In the Americas, SMBC Group has a presence in the US, Canada, Mexico, Brazil, Chile, Colombia, and Peru. Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients. It connects a diverse client base to local markets and the organization's extensive global network. The Group's operating companies in the Americas include Sumitomo Mitsui Banking Corp. (SMBC), SMBC Nikko Securities America, Inc., SMBC Capital Markets, Inc., SMBC MANUBANK, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and Leasing Co., Ltd.
The anticipated salary range for this role is between $213,000.00 and $231,000.00. The specific salary offered to an applicant will be based on their individual qualifications, experiences, and an analysis of the current compensation paid in their geography and the market for similar roles at the time of hire. The role may also be eligible for an annual discretionary incentive award. In addition to cash compensation, SMBC offers a competitive portfolio of benefits to its employees.
Role Description
SMBC is seeking a highly skilled and motivated IAM and Security Infrastructure Architect to join our Infrastructure Solutions Architecture team. Security is a shared responsibility, and as complex solutions are being designed and implemented, we need to ensure these initiatives consider the necessary infrastructure aspects as they relate to security. The person in this role will assist with the definition of the strategy and design in coordination with the existing Infrastructure and Information Security teams, help establish standards and policies, develop implementation plans, and transition applicable implementation and operational functions to applicable teams. An ideal candidate will have background and experience in the technologies and implementation methods related to both infrastructure and security architecture/engineering.
Role Objectives• Member of a team that establishes and drives infrastructure architecture with a specific focus on security requirements and best practices in a global, hybrid, multi-cloud environment.• Work directly with Information Security to develop and promote infrastructure requirements within security-related initiatives and ensure that security requirements are integrated into infrastructure projects.• Increase operational and financial efficiencies through identification of opportunities to standardize security toolsets and practices within a multi-company environment.• Ensure that the proposed and existing infrastructure architectures are aligned with organizational goals and objectives.• Provide architecture collaboration with other architecture, engineering, and application teams, translating application team needs into technical solutions and product requirements.• Drive infrastructure security and compliance requirements into the architecture framework.• Facilitate documentation of existing systems architecture and technology portfolios (e.g., architecture, configuration, and setup) and make recommendations for improvements and/or alternatives.• Provide effective knowledge transfer and upskilling to relevant Architecture and Engineering personnel.• Design with operations in mind. Look for ways to automate and improve operations.• Maintain strong relationships and identify opportunities for strengthening synergies between varying Infrastructure and IT Security teams.
Qualifications and Skills• Experience with IdP infrastructure and synchronization technologies including Active Directory, Entra ID, LDAP, SAML, SCIM, EID Connect, Cloud Synch, and MIM.• Background in end-to-end identity provisioning/deprovisioning standards and best practices including HRIS to IdP relationships and attribute management.• Familiarity with authentication infrastructure, protocols, and access controls (GPO, LDAP, Conditional Access, MFA, ADFS, Application Protection Policy, etc).• Familiarity with Microsoft native and competing security products such as Entra Identity Governance, Entitlement Management, Defender products, and Copilot for Security.• Understanding of endpoint management tools and standards including endpoint DLP, Defender for Cloud Apps, Intune endpoint management, and other policy frameworks.• Monitoring and logging tools such as Microsoft Sentinel, Cribl, Splunk, Cloudwatch, Cloudtrail, and MS Log Analytics.• Experience facilitating discussions with senior leadership regarding technical/architectural trade-offs, best practices, and risk mitigation.• Strong analytical, problem-solving, and decision-making skills.• Excellent communication and interpersonal skills.
Additional Requirements
D&I Commitment
Responsible for fostering a culture of diversity and inclusion, holding leaders accountable for creating an inclusive environment through awareness and practice of equity in recruiting, developing, and promoting diverse talent.
SMBC's employees participate in a hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process.
We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status or any other characteristic protected by law. SMBC provides reasonable accommodations for employees and applicants with disabilities consistent with applicable law. If you need a reasonable accommodation during the application process, please let us know at accommodations@smbcgroup.com.