TIAA
Sr. Principal CIAM Architect
TIAA, Greendale, Wisconsin, United States, 53129
TIAA
At TIAA, we believe everyone deserves the chance for a secure retirement. Explore our annuity, financial planning advice, and investing solutions.
TIAA is seeking a Sr. Principal CIAM Architect. This role will support the organization’s mission-critical systems and will lead complex architecture requirements to convert end-user needs into technical solutions.
The Principal CIAM Architect will design, develop, and enhance services that are across every interaction between TIAA, its users, and partners. This position will assist the organization in the transformation and development activities such as defining the scope of services, building solution design, and related support for the delivery of the projects to the stakeholders. In addition, this position will integrate CIAM solutions with other security systems, such as identity and access management (IAM), authentication, and authorization systems, and lead the design of CIAM solutions aligned to the organizational objectives.
The ideal candidate is considered a subject matter expert and possesses hands-on in-depth technical engineering experience with implementing identity protocols and standards, cybersecurity best practices, and building scalable solutions within a medium-to-large CIAM infrastructure.
Responsibilities:
Manage the delivery of large, complex projects using appropriate frameworks and collaborating with stakeholders to manage scope and risk.
Drive profitability and continued success by managing service quality and cost and leading delivery.
Measure and communicate progress to leadership within committed time frames.
Provide support to the organization’s mission-critical systems and lead complex architecture requirements to convert end-user needs into technical solutions.
Design, develop, and enhance services that are across every interaction between TIAA, its users, and partners.
Collaborate with other engineering teams, IT, and business stakeholders to understand requirements and deliver innovative identity solutions that meet organizational needs.
Communicate with stakeholders on technical standards, principles, methodologies, and trends.
Enhance overall system operational characteristics by establishing best practices for code quality, reduction in tech debt, and building frameworks or shared techniques to enhance engineering effectiveness.
Identify opportunities for refactoring, API changes, solution designs, and other types of tech debt remediation.
Influence stakeholders to drive technical decision-making for the right selection of technology by providing direct, understandable, and actionable advice.
Work with standards-defining organizations to understand the evolving standards, identify gaps, provide inputs on platforms gaps, and contribute to roadmap planning to build a world-class CIAM platform.
Drive decision-making with stakeholders who have different views for simple to complex problems with the business requirements to help synthesize the best solution.
Conduct Proof-of-Value (POV), Proof-of-Concept (POC) by partnering with vendor and internal resources.
Qualifications: Required:
Minimum of 8+ years of demonstrated experience in designing and implementing IAM solutions within a medium-to-large scale and complex environment with a focus on Customer Identity.
Experienced in implementing Identity orchestration tools like FlexID from Transmit Security.
Expert level knowledge of IAM concepts like SSO, Federation, Role Based Access Control (RBAC).
Possess an in-depth understanding of IAM protocols such as OAuth2, SAML, OIDC, SCIM, and Kerberos.
Demonstrated experience in creating architecture design, roadmaps for security platforms.
Preferred:
Possess a CIAM related certification.
Experience driving decision-making with stakeholders who have different views for simple to complex problems with the business requirements to help synthesize the best solution.
Advanced verbal and written communication skills with the ability to interact across all levels in the organization.
Experience with Proof-of-Value (POV) and Proof-of-Concept (POC).
Demonstrated conceptual knowledge of CI/CD and Infrastructure as Code (IaC).
Experience writing Ansible playbooks to support installation and configuration of Ping products.
Familiarity with Linux operating system.
Prior experience in System Administration and/or Application Development.
2+ years of direct experience with the Ping suite of products – Ping Access, Ping Federate, Ping Directory.
Anticipated Posting End Date: 2024-11-30
Base Pay Range: $143,300/yr. - $196,500/yr.
Actual base salary may vary based upon relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location. In addition to base salary, the competitive compensation package may include participation in an incentive program linked to performance.
TIAA is an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.
#J-18808-Ljbffr
TIAA is seeking a Sr. Principal CIAM Architect. This role will support the organization’s mission-critical systems and will lead complex architecture requirements to convert end-user needs into technical solutions.
The Principal CIAM Architect will design, develop, and enhance services that are across every interaction between TIAA, its users, and partners. This position will assist the organization in the transformation and development activities such as defining the scope of services, building solution design, and related support for the delivery of the projects to the stakeholders. In addition, this position will integrate CIAM solutions with other security systems, such as identity and access management (IAM), authentication, and authorization systems, and lead the design of CIAM solutions aligned to the organizational objectives.
The ideal candidate is considered a subject matter expert and possesses hands-on in-depth technical engineering experience with implementing identity protocols and standards, cybersecurity best practices, and building scalable solutions within a medium-to-large CIAM infrastructure.
Responsibilities:
Manage the delivery of large, complex projects using appropriate frameworks and collaborating with stakeholders to manage scope and risk.
Drive profitability and continued success by managing service quality and cost and leading delivery.
Measure and communicate progress to leadership within committed time frames.
Provide support to the organization’s mission-critical systems and lead complex architecture requirements to convert end-user needs into technical solutions.
Design, develop, and enhance services that are across every interaction between TIAA, its users, and partners.
Collaborate with other engineering teams, IT, and business stakeholders to understand requirements and deliver innovative identity solutions that meet organizational needs.
Communicate with stakeholders on technical standards, principles, methodologies, and trends.
Enhance overall system operational characteristics by establishing best practices for code quality, reduction in tech debt, and building frameworks or shared techniques to enhance engineering effectiveness.
Identify opportunities for refactoring, API changes, solution designs, and other types of tech debt remediation.
Influence stakeholders to drive technical decision-making for the right selection of technology by providing direct, understandable, and actionable advice.
Work with standards-defining organizations to understand the evolving standards, identify gaps, provide inputs on platforms gaps, and contribute to roadmap planning to build a world-class CIAM platform.
Drive decision-making with stakeholders who have different views for simple to complex problems with the business requirements to help synthesize the best solution.
Conduct Proof-of-Value (POV), Proof-of-Concept (POC) by partnering with vendor and internal resources.
Qualifications: Required:
Minimum of 8+ years of demonstrated experience in designing and implementing IAM solutions within a medium-to-large scale and complex environment with a focus on Customer Identity.
Experienced in implementing Identity orchestration tools like FlexID from Transmit Security.
Expert level knowledge of IAM concepts like SSO, Federation, Role Based Access Control (RBAC).
Possess an in-depth understanding of IAM protocols such as OAuth2, SAML, OIDC, SCIM, and Kerberos.
Demonstrated experience in creating architecture design, roadmaps for security platforms.
Preferred:
Possess a CIAM related certification.
Experience driving decision-making with stakeholders who have different views for simple to complex problems with the business requirements to help synthesize the best solution.
Advanced verbal and written communication skills with the ability to interact across all levels in the organization.
Experience with Proof-of-Value (POV) and Proof-of-Concept (POC).
Demonstrated conceptual knowledge of CI/CD and Infrastructure as Code (IaC).
Experience writing Ansible playbooks to support installation and configuration of Ping products.
Familiarity with Linux operating system.
Prior experience in System Administration and/or Application Development.
2+ years of direct experience with the Ping suite of products – Ping Access, Ping Federate, Ping Directory.
Anticipated Posting End Date: 2024-11-30
Base Pay Range: $143,300/yr. - $196,500/yr.
Actual base salary may vary based upon relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location. In addition to base salary, the competitive compensation package may include participation in an incentive program linked to performance.
TIAA is an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.
#J-18808-Ljbffr