girl looking into her desktop
Back to search results

Architect

Denver, Colorado;

Job Description:

The Architect role is responsible for guiding on the design, development, and implementation of architectural principles and security policies related to Identity and Access Management (IAM). You will gain a deep understanding of the business partner's requirements for the applications/systems, the security policies, and the related technology offerings of the bank.  These requirements and knowledge will then be used to make determinations and recommendations on the technical and operational feasibility and the security position of the solutions. 

While you may not be architecting the entire application/system, you will work with the business architecture teams and core infrastructure teams on the solution.  You will use your knowledge and abilities as senior technical resource to provide your expertise to the team(s). You will also use your strong communications skills on a regular basis. You will bridge the gap between various business architecture teams designing solutions, the core technology teams with their product capabilities and the required security controls. You will be the primary liaison to collaborate with the various teams to develop a secure solution to enable the business while securing the bank.

Required Skills:
•    Information Technology industry experience in architecting and delivering Identity and Access Management solutions for large enterprises
•    Experience and in-depth knowledge of: 
•    the technology stack such as web, client/server, mobile protocols, multiple operating systems, hypervisors, mainframe, midrange, and distributed systems architecture
•    Identities, access/entitlements and authenticators life cycle management, federation and governance concepts and processes
•    Authentication protocols/methods (Federated/non-Federated – Forms, Certs, LDAP, NTLM, Kerberos, Certs, keytabs, SAML 2.0, OAuth 2.0/OIDC 1.0, FIDO2/UAF/U2F Passwordless, WebSSO)
•    IAM integration architecture/design patterns and practices for  various applications/systems (Operating Systems (Windows, Mac, Unix/Linux), middleware systems, API gateways, web/app servers, containers, virtual machines, databases, file servers, network devices, mobile devices, mainframes, midrange servers and cloud environments)
•    Experience designing highly available, geographically-distributed, dynamically scalable, API-driven services
•    Ability to balance the pragmatic need to deliver while maintaining a high level of architectural purity
•    Strong communication skills

Desired Skills:
•    Experience in Security Engineering, Virtualization, and Automation
•    Experience with distributed systems and cloud services, such as Azure and/or Amazon Web Services
•    Experience with implementing IAM systems and processes at a large financial institution
•    Experience with IAM Protection and Detection Monitoring Controls design, implementation, and testing
•    Knowledge in NIST 800-63 / ISO 27001 Access Controls adoption and implementation
•    Industry recognized Information Security certifications – CISSP, CISM, CRISC, CISA, CCSP, CCSK or any other well recognized vendor specific certifications
 

Job Band:

H5

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

The Architect role is responsible for guiding on the design, development, and implementation of architectural principles and security policies related to Identity and Access Management (IAM). You will gain a deep understanding of the business partner's requirements for the applications/systems, the security policies, and the related technology offerings of the bank.  These requirements and knowledge will then be used to make determinations and recommendations on the technical and operational feasibility and the security position of the solutions. 

While you may not be architecting the entire application/system, you will work with the business architecture teams and core infrastructure teams on the solution.  You will use your knowledge and abilities as senior technical resource to provide your expertise to the team(s). You will also use your strong communications skills on a regular basis. You will bridge the gap between various business architecture teams designing solutions, the core technology teams with their product capabilities and the required security controls. You will be the primary liaison to collaborate with the various teams to develop a secure solution to enable the business while securing the bank.

Required Skills:
•    Information Technology industry experience in architecting and delivering Identity and Access Management solutions for large enterprises
•    Experience and in-depth knowledge of: 
•    the technology stack such as web, client/server, mobile protocols, multiple operating systems, hypervisors, mainframe, midrange, and distributed systems architecture
•    Identities, access/entitlements and authenticators life cycle management, federation and governance concepts and processes
•    Authentication protocols/methods (Federated/non-Federated – Forms, Certs, LDAP, NTLM, Kerberos, Certs, keytabs, SAML 2.0, OAuth 2.0/OIDC 1.0, FIDO2/UAF/U2F Passwordless, WebSSO)
•    IAM integration architecture/design patterns and practices for  various applications/systems (Operating Systems (Windows, Mac, Unix/Linux), middleware systems, API gateways, web/app servers, containers, virtual machines, databases, file servers, network devices, mobile devices, mainframes, midrange servers and cloud environments)
•    Experience designing highly available, geographically-distributed, dynamically scalable, API-driven services
•    Ability to balance the pragmatic need to deliver while maintaining a high level of architectural purity
•    Strong communication skills

Desired Skills:
•    Experience in Security Engineering, Virtualization, and Automation
•    Experience with distributed systems and cloud services, such as Azure and/or Amazon Web Services
•    Experience with implementing IAM systems and processes at a large financial institution
•    Experience with IAM Protection and Detection Monitoring Controls design, implementation, and testing
•    Knowledge in NIST 800-63 / ISO 27001 Access Controls adoption and implementation
•    Industry recognized Information Security certifications – CISSP, CISM, CRISC, CISA, CCSP, CCSK or any other well recognized vendor specific certifications
 

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Learn more about this role

Full time

JR-21056932

Band: H5

Manages People: No

Travel: No

Manager:

Talent Acquisition Contact:

Samuel Ezeilo

Referral Bonus:

0

Colorado job seekers

Colorado pay range:

$107,500 - $153,000 annualized salary, offers to be negotiated based on experience, education and skill set.

Discretionary incentive eligible

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

Benefits

This role is currently benefits eligible. We provide industry-leading benefits, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.