Golden 1 Talent Acquisition Team
IT - Digital Platform Delivery - CIAM Architect
Golden 1 Talent Acquisition Team, Sacramento, California, United States, 95828
IT - Digital Platform Delivery - CIAM Architect
PAY RANGE: $137,300.00 - $150,000.00 ANNUALLYGENERAL DESCRIPTION:The CIAM Architect leads the Credit Union’s Customer Identity and Access Management (CIAM) initiatives. The architect will be responsible for designing, implementing, and managing CIAM solutions to ensure secure and seamless member experiences across our digital platforms. The architect will work with internal stakeholders and vendor partners responsible for managing user identities, access controls, and authentication processes.The ideal candidate will have a strong background in customer identity and access management, digital banking platforms, cybersecurity, and project management, with a focus on delivering solutions that meet business objectives while maintaining compliance with regulatory standards.TASKS, DUTIES, FUNCTIONS:Stay updated on emerging trends, technologies, and best practices in CIAM, security, and identity management domains through self-study, training, and participation in relevant industry forums and events.Develop and design CIAM solutions that integrate with existing identity and access management systems. Work with internal infrastructure, application, business and external third-party teams for identity related integrations.Ensure the architecture supports scalability and performance for handling large volumes of customer identities.Create seamless user experiences for customer registration, login, and account management.Design multi-factor authentication (MFA) and adaptive authentication mechanisms to enhance security.Monitor system performance and user activity to identify and address potential security threats or usability issues.Regularly update and maintain the CIAM system to adapt to changing business needs and technological advancements.Create documentation for system architecture, processes, and user guides.Provide training and support to teams using the CIAM system to ensure effective implementation and usage.Work with cross-functional teams, including developers, security experts, and business stakeholders, to align CIAM solutions with organizational goals.PHYSICAL SKILLS, ABILITIES, AND EXERTION UTILIZED IN THE PERFORMANCE OF THESE TASKS:Effective oral and written communication skills required to assure the ongoing security and protection of Golden 1’s Information Technology and information assets.Must possess sufficient manual dexterity to skillfully operate an on-line computer terminal and other standard office equipment, such as financial calculators, personal computer, facsimile machine and telephone.ORGANIZATIONAL CONTACTS & RELATIONSHIPS:INTERNAL:
All levels of staff and management.EXTERNAL:
Volunteers, external auditors, professional and community organizations, and law enforcement agencies.QUALIFICATIONS:EDUCATION:
A bachelor's degree in computer science, information technology, cybersecurity, or a related field is preferred.eXPERIENCE:At least 8 years of experience in Information Technology with a focus on customer identity and access management. Experience working in the financial services industry is strongly preferred.Proven experience leading CIAM implementation projects, including requirements analysis, solution design, implementation, testing, and deployment, with strong project management skills. Ability to work in an agile environment, following scrum methodology is preferred.Hands-on experience with PingOne Advanced Identity Cloud (formerly known as ForgeRock Identity Cloud) is required.KNOWLEDGE / SKILLSTechnical Skills : Proficiency in identity protocols and standards (OAuth, OpenID Connect, SAML, LDAP, SCIM), CIAM platforms (ForgeRock/Ping), and integration technologies (APIs, SDKs).Security Knowledge : Deep understanding of cybersecurity and IAM principles, including authentication methods, authorization, federation, access control mechanisms, encryption, and secure coding practices, and user lifecycle management, with the ability to translate business requirements into effective IAM solutions.Compliance Expertise : Knowledge of privacy regulations (e.g., GDPR, CCPA) and industry standards (e.g., ISO 27001, NIST) related to customer data protection and compliance requirements.Communication Skills:
Excellent verbal and written communication skills, with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders. Familiar with the suite of Office products in relation to presenting ideas and documenting processes.Analytical Thinking : Strong analytical and problem-solving skills, with the ability to analyze complex issues, identify root causes, and propose effective solutions, proactively mitigate risks, and optimize CIAM processes for scalability and efficiency.Customer Focus:
A customer-centric mindset with a focus on delivering solutions that enhance user experience while ensuring security and compliance.Adaptability:
Ability to adapt to changing business requirements, technology landscapes, and security threats, with a continuous learning mindset to stay updated on industry trends and best practices.PHYSICAL REQUIREMENTS:Prolonged sitting throughout the workday with occasional mobility required.Corrected vision within the normal range.Hearing within normal range. A device to enhance hearing will be provided if needed.Occasional movements throughout the department daily to interact with staff, accomplish tasks, etc.Unusually long work hours may be required to accomplish tasks.LICENSES/CERTIFICATIONS:A current certification in PingOne Advanced Identity Cloud (formerly known as ForgeRock Identity Cloud) is requiredTHIS JOB DESCRIPTION IN NO WAY STATES OR IMPLIES THAT THESE ARE THE ONLY DUTIES TO BE PERFORMED BY THIS EMPLOYEE. HE OR SHE WILL BE REQUIRED TO FOLLOW OTHER INSTRUCTIONS AND TO PERFORM OTHER DUTIES REQUESTED BY HIS OR HER SUPERVISOR THAT ARE WITHIN HIS / HER KNOWLEDGE, SKILL AND ABILITY AS WELL AS HIS / HER MENTAL AND PHYSICAL ABILITIES.
#J-18808-Ljbffr
PAY RANGE: $137,300.00 - $150,000.00 ANNUALLYGENERAL DESCRIPTION:The CIAM Architect leads the Credit Union’s Customer Identity and Access Management (CIAM) initiatives. The architect will be responsible for designing, implementing, and managing CIAM solutions to ensure secure and seamless member experiences across our digital platforms. The architect will work with internal stakeholders and vendor partners responsible for managing user identities, access controls, and authentication processes.The ideal candidate will have a strong background in customer identity and access management, digital banking platforms, cybersecurity, and project management, with a focus on delivering solutions that meet business objectives while maintaining compliance with regulatory standards.TASKS, DUTIES, FUNCTIONS:Stay updated on emerging trends, technologies, and best practices in CIAM, security, and identity management domains through self-study, training, and participation in relevant industry forums and events.Develop and design CIAM solutions that integrate with existing identity and access management systems. Work with internal infrastructure, application, business and external third-party teams for identity related integrations.Ensure the architecture supports scalability and performance for handling large volumes of customer identities.Create seamless user experiences for customer registration, login, and account management.Design multi-factor authentication (MFA) and adaptive authentication mechanisms to enhance security.Monitor system performance and user activity to identify and address potential security threats or usability issues.Regularly update and maintain the CIAM system to adapt to changing business needs and technological advancements.Create documentation for system architecture, processes, and user guides.Provide training and support to teams using the CIAM system to ensure effective implementation and usage.Work with cross-functional teams, including developers, security experts, and business stakeholders, to align CIAM solutions with organizational goals.PHYSICAL SKILLS, ABILITIES, AND EXERTION UTILIZED IN THE PERFORMANCE OF THESE TASKS:Effective oral and written communication skills required to assure the ongoing security and protection of Golden 1’s Information Technology and information assets.Must possess sufficient manual dexterity to skillfully operate an on-line computer terminal and other standard office equipment, such as financial calculators, personal computer, facsimile machine and telephone.ORGANIZATIONAL CONTACTS & RELATIONSHIPS:INTERNAL:
All levels of staff and management.EXTERNAL:
Volunteers, external auditors, professional and community organizations, and law enforcement agencies.QUALIFICATIONS:EDUCATION:
A bachelor's degree in computer science, information technology, cybersecurity, or a related field is preferred.eXPERIENCE:At least 8 years of experience in Information Technology with a focus on customer identity and access management. Experience working in the financial services industry is strongly preferred.Proven experience leading CIAM implementation projects, including requirements analysis, solution design, implementation, testing, and deployment, with strong project management skills. Ability to work in an agile environment, following scrum methodology is preferred.Hands-on experience with PingOne Advanced Identity Cloud (formerly known as ForgeRock Identity Cloud) is required.KNOWLEDGE / SKILLSTechnical Skills : Proficiency in identity protocols and standards (OAuth, OpenID Connect, SAML, LDAP, SCIM), CIAM platforms (ForgeRock/Ping), and integration technologies (APIs, SDKs).Security Knowledge : Deep understanding of cybersecurity and IAM principles, including authentication methods, authorization, federation, access control mechanisms, encryption, and secure coding practices, and user lifecycle management, with the ability to translate business requirements into effective IAM solutions.Compliance Expertise : Knowledge of privacy regulations (e.g., GDPR, CCPA) and industry standards (e.g., ISO 27001, NIST) related to customer data protection and compliance requirements.Communication Skills:
Excellent verbal and written communication skills, with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders. Familiar with the suite of Office products in relation to presenting ideas and documenting processes.Analytical Thinking : Strong analytical and problem-solving skills, with the ability to analyze complex issues, identify root causes, and propose effective solutions, proactively mitigate risks, and optimize CIAM processes for scalability and efficiency.Customer Focus:
A customer-centric mindset with a focus on delivering solutions that enhance user experience while ensuring security and compliance.Adaptability:
Ability to adapt to changing business requirements, technology landscapes, and security threats, with a continuous learning mindset to stay updated on industry trends and best practices.PHYSICAL REQUIREMENTS:Prolonged sitting throughout the workday with occasional mobility required.Corrected vision within the normal range.Hearing within normal range. A device to enhance hearing will be provided if needed.Occasional movements throughout the department daily to interact with staff, accomplish tasks, etc.Unusually long work hours may be required to accomplish tasks.LICENSES/CERTIFICATIONS:A current certification in PingOne Advanced Identity Cloud (formerly known as ForgeRock Identity Cloud) is requiredTHIS JOB DESCRIPTION IN NO WAY STATES OR IMPLIES THAT THESE ARE THE ONLY DUTIES TO BE PERFORMED BY THIS EMPLOYEE. HE OR SHE WILL BE REQUIRED TO FOLLOW OTHER INSTRUCTIONS AND TO PERFORM OTHER DUTIES REQUESTED BY HIS OR HER SUPERVISOR THAT ARE WITHIN HIS / HER KNOWLEDGE, SKILL AND ABILITY AS WELL AS HIS / HER MENTAL AND PHYSICAL ABILITIES.
#J-18808-Ljbffr