We are seeking an experienced Senior IAM Security Architect to join our team.This role will focus on designing and implementing robust identity and access management solutions, ensuring security architectures are risk-free and compliant with industry standards. The ideal candidate will have a proven track record of success in security architecture, particularly within identity and access management, and will possess strong collaborative skills to work effectively with various cross-functional teams.#LI-DNIResponsibilities
Develop identity and access management solutions. This includes lifecycle management, access management (SSO, SAML, OIDC), identity governance, privileged access management, etc
Plan, design and implement security architectures for multi-cloud systems and workloads
Gather business, functional and non-functional requirements (including all major compliance standards) to design security risk-free architectures as part of existing security posture improvements or migration projects
Utilize best security practices from various domains (public and private clouds, network, containerization and microservice, S-SDLC, etc.)
Collaborate with other teams (engineering, infrastructure, development, database, security operations, etc.) on physical and logical system design
Collaborate with others (C-management, engineering, infrastructure, development, database, security operations,.) to develop corporate security standards (including all major Clouds)
Design and implement security and disaster recovery strategies
Report to C-level management and security directors
Estimate and build a project plan and organize security engineers’ work
Requirements
Direct Security-focused education (Bachelors+) OR proven equivalent experience
8+ years of experience in developing Identity and Access Management Solutions
5+ years of experience as a security architect within Identity Access Management or Privileged Access Management
Specific skills in at least 2 of the following products: Okta, Auth0, Sailpoint, CyberArk, Ping Identity, Saviynt, and/or Forgerock
Successfully executed at least one Cloud security project
Security consulting experience in at least one business domain
Experience working with the DevOps team
Experience configuring security controls and policies (NIST SP 800-53)
Experience successfully delivering security service-oriented projects
Experience successfully implementing any Enterprise Security programs
Experience with at least one business domain’s compliance standards and proven record of successfully building compliant architectures
Hands-on proficiency is a must
We offer
Medical, Dental and Vision Insurance (Subsidized)
Health Savings Account
Flexible Spending Accounts (Healthcare, Dependent Care, Commuter)
Short-Term and Long-Term Disability (Company Provided)
Life and AD&D Insurance (Company Provided)
Employee Assistance Program
Unlimited access to LinkedIn learning solutions
Matched 401(k) Retirement Savings Plan
Paid Time Off – the employee will be eligible to accrue 15-25 paid days, depending on specific level and tenure with EPAM (accrual eligibility may change over time)
Paid Holidays - nine (9) total per year
Legal Plan and Identity Theft Protection
Accident Insurance
Employee Discounts
Pet Insurance
Employee Stock Purchase Program
If otherwise eligible, participation in the discretionary annual bonus program
If otherwise eligible and hired into a qualifying level, participation in the discretionary Long-Term Incentive (LTI) Program
Applications will be accepted on a rolling basis.EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.YouTube video player (https://www.youtube.com/embed/NUmnNITn2o?si=IiCxyQ4sr1YJWxDG)This posting includes a good faith range of the salary EPAM would reasonably expect to pay the selected candidate. The range provided reflects base salary only. Individual compensation offers within the range are based on a variety of factors, including, but not limited to: geographic location, experience, credentials, education, training; the demand for the role; and overall business and labor market considerations. Most candidates are hired at a salary within the range disclosed. Salary range: $150K – $200K. In addition, the details highlighted in this job posting above are a general description of all other expected benefits and compensation for the position.It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.EPAM Systems, Inc. is an equal opportunity employer. We recognize the value of diversity and inclusion in creating success for our customers, business partners, shareholders, employees and communities. We are committed to recruiting, hiring, developing and promoting employees without discrimination. As a global employer, this commitment includes complying with all laws in the countries in which we operate. Nevertheless, we believe equal employment practices should not be limited to what the law requires. Equal opportunity and inclusion are essential to motivate, empower and recognize the best in everyone.At EPAM, employment actions are based on individual qualifications, without regard to race, color, religion, creed, gender, pregnancy status, sexual orientation, gender identity, gender expression, marital or familial status, national origin, ancestry, genetics, age, disability status, veteran status, citizenship status when otherwise legally able to work, or any other characteristic protected by law.
Full-time