Apply Now

IAM Architect

Phoenix, AZ, US • Posted 30+ days ago • Updated 5 hours ago

Contract Independent

On-site

USD $135,000.00 - 170,000.00 per year

Judge Group, Inc.

Fitment

Dice Job Match Score™

🎯 Assessing qualifications...

Job Details

Skills

Collaboration
Authorization
Roadmaps
RBAC
Data-flow Diagrams
Testing
Cloud Security
Enterprise Architecture
Internal Auditing
Continuous Improvement
ISACA
SANS
Certified Ethical Hacker
Active Directory
Identity Management
Regulatory Compliance
Sarbanes-Oxley
Lifecycle Management
SAML
OIDC
OAuth
Multi-factor Authentication
Documentation
High-level Design
Communication
Authentication
SAP
HR Management System
Orchestration
Microsoft
CISSP
CISM
Artificial Intelligence
Security Controls
Insurance
Privacy
Marketing

Summary

Location: Phoenix, AZ
Salary: $135,000.00 USD Annually - $170,000.00 USD Annually
Description:

About the Role

Our client is seeking an experienced Enterprise Identity Security Architect to lead the strategy, architecture, and implementation of enterprise identity and access management (IAM) solutions. This role focuses on advancing Zero Trust principles, strengthening identity security posture, and enabling scalable, AI-secure identity platforms across the enterprise.

Work Location

The clients' global headquarters is located in Phoenix, Arizona. This position follows a hybrid work model, combining virtual collaboration with in-person meetings at their Phoenix Collaboration Hub or site locations as required by the role and department.

The Collaboration Hub is a modern, flexible workspace featuring meeting rooms with advanced collaboration technology, phone booths, and a working cafe. In-person attendance requirements may vary.

Key Responsibilities

Lead enterprise identity architecture across domains including Microsoft Entra, Identity Governance & Administration (IGA), Identity Threat Detection & Response (ITDR), non-human identities, and agentic AI security.

Define and maintain identity reference architectures for directories (AD/Entra), authentication and authorization, federation (SAML, OIDC, OAuth), Conditional Access, and identity lifecycle management.

Develop and maintain a 1-3 year Identity Security Roadmap, including AD/Entra modernization, RBAC and role engineering, access reviews, workload and machine identity strategy, and ITDR automation.

Translate business and security requirements into end-to-end solution designs; produce high-level and low-level designs, data flow diagrams, trust boundaries, and control mappings.

Establish identity control objectives, metrics, and testing procedures, supporting joiner/mover/leaver processes, privileged access management, access certifications, and passwordless adoption.

Partner with Infrastructure, Cloud, Security Operations, Application teams, HRIS, Enterprise Architecture, Internal Audit, and Compliance to ensure alignment with Zero Trust, SOX, and NIST CSF.

Lead architecture reviews and design workshops; clearly communicate architecture decisions to technical and executive stakeholders.

Monitor emerging identity threats and platform advancements to drive continuous improvement across the identity ecosystem.

Perform additional duties as assigned.

Qualifications

Required

One of the following education and experience combinations:

Associate's degree with 10+ years of experience in security systems technologies and a relevant security certification (e.g., ISACA, SANS, ISC, CEH), or

Bachelor's degree with 6-8 years of experience in security systems technologies (certification required at 6 years), or

Master's degree with 5-6 years of experience in security systems technologies (certification required at 5 years).

Hands-on experience with:

Active Directory and Microsoft Entra (users, groups, policies, access management)

Identity Governance & Administration (IGA) platforms

Strong knowledge of Zero Trust architectures, least-privilege access, and compliance frameworks (e.g., SOX, NIST CSF).

Expertise in identity lifecycle management, federation (SAML/OIDC/OAuth), Conditional Access, MFA/passwordless authentication, and access reviews.

Understanding of workload and machine identity governance (managed identities, service accounts, certificates, secrets).

Ability to create architecture documentation (HLD/LLD), threat models, and control mappings.

Strong communication skills with the ability to influence across technical and business teams.

Preferred

Experience with passkeys/passwordless authentication, external identities, workload Conditional Access policies, and identity automation.

Exposure to SAP or HRIS integrations and joiner/mover/leaver orchestration.

Certifications such as Microsoft Identity/Entra, CISSP, CISM, or IGA/ITDR-related credentials.

Knowledge of agentic AI and AI-related security controls.

Compensation & Benefits

Estimated annual base salary: $134,000 - $170,000
(Base pay only; actual compensation is based on experience, skills, and qualifications.)

Quarterly/Annual Bonus based on performance

Eligibility for annual incentive compensation and long-term incentives, subject to plan terms and approvals.

Benefits Include

Medical, dental, and vision insurance

Company-paid life and disability insurance

401(k) with employer contribution/match

Paid time off, sick time, holidays, and parental leave

Tuition assistance

Employee Assistance Program (EAP)

Discounted auto, home, and pet insurance

Internal career progression opportunities

By providing your phone number, you consent to: (1) receive automated text messages and calls from the Judge Group, Inc. and its affiliates (collectively "Judge") to such phone number regarding job opportunities, your job application, and for other related purposes. Message & data rates apply and message frequency may vary. Consistent with Judge's Privacy Policy, information obtained from your consent will not be shared with third parties for marketing/promotional purposes. Reply STOP to opt out of receiving telephone calls and text messages from Judge and HELP for help.

Contact:

This job and many more are available through The Judge Group. Please apply with us today!

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: cxjudgpa
Position Id: 1125746
Posted 30+ days ago

Company Info

About Judge Group, Inc.

The Judge Group, is a leading professional services firm specializing in talent, technology, and learning solutions. We consult, staff, train, and solve. Through our work we make people and organizations better.

Our services are successfully delivered through a network of more than 30 offices across the United States, Canada, and India. The Judge Group is proud to partner with the best and brightest companies in business today, including over 60 of the Fortune 100. We serve organizations in financial services, healthcare, life sciences, insurance, government (including aerospace and defense), manufacturing, and technology and telecommunications.

Go to company profile

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Information Security Engineer

Chandler, Arizona

•

Today

Location: Chandler, AZ Salary: $41.00 USD Hourly - $44.00 USD Hourly Description: Information Security Engineer - Baseline Configurations Locations (Hybrid, 3 days onsite): Chandler, AZ (preferred); Phoenix, AZ; Charlotte, NC; Dallas, TX; Minneapolis, MN; West Des Moines, IA Employment Type: Contract (6 months, with potential conversion) Organization: Cybersecurity Reports To: Security Engineering Management About the Role As an Information Security Engineer, you will support enterprise

Contract

USD 41.00 - 44.00 per hour

Information Security Analyst

Chandler, Arizona

•

Today

Location: Chandler, AZ Salary: $69.00 USD Hourly - $74.00 USD Hourly Description: Security Configuration Baseline Engineer Locations: Chandler, AZ; Charlotte, NC; Las Colinas, TX Employment Type: Contract (with potential for conversion) About the Role The Security Configuration Baseline Engineer designs, implements, and operationalizes security configuration baselines across enterprise cloud and platform environments. This role focuses on engineering and automation, translating security po

Contract

USD 69.00 - 74.00 per hour

Information Security Analyst

Chandler, Arizona

•

Today

Location: Chandler, AZ Salary: $69.00 USD Hourly - $74.00 USD Hourly Description: Job Title Senior Information Security Analyst (Contingent) Employment Type Contingent / Contract (Conversion Eligible) Location Charlotte, NC (Brevard) or Chandler, AZ (Hybrid/Onsite expectations may apply) Role Overview The Senior Information Security Analyst is a senior-level individual contributor responsible for governance and risk management activities within the Information Protection domain. This ro

Contract

USD 69.00 - 74.00 per hour

Information Security Analyst

Chandler, Arizona

•

Today

Location: Chandler, AZ Salary: $53.00 USD Hourly - $57.00 USD Hourly Description: Senior Information Security Analyst (Level ) (Functionally an Analyst; Senior-Level Scope) Contract Length: 18 months Work Location (Hybrid): Chandler, AZ (primary); open to Texas or Charlotte, NC Work Schedule: Tuesday-Friday, 10-hour shifts (MST) Training Schedule: Monday-Friday, 9:00 AM-5:00 PM (approx. first 2-3 months) Role Overview We are seeking a Senior Information Security Analyst to support enterp

Contract

USD 53.00 - 57.00 per hour

Search all similar jobs