IAM AD Architect

Job Description – IAM AD Architect

Job Title: IAM AD Architect
Locations: Charlotte, NC / Chandler, AZ / Irving, TX / Iselin, NJ
Experience Required: 10–15+ Years

Job Summary

We are seeking an experienced IAM AD Architect to lead enterprise Identity & Access Management (IAM) and Active Directory (AD) architecture initiatives within a highly regulated banking environment. The ideal candidate will possess deep expertise in Active Directory, hybrid identity architecture, RBAC models, and enterprise IAM governance, along with strong stakeholder management and client-facing consulting skills.

The role requires defining enterprise IAM standards, guiding remediation programs, supporting audit and compliance initiatives, and providing strategic architectural leadership across complex banking systems and infrastructure.

Key Responsibilities

• Define and govern enterprise IAM and Active Directory architecture aligned with banking and security standards.
• Design and implement scalable identity governance, authentication, authorization, and access control frameworks.
• Establish enterprise standards for service accounts, AD groups, roles, permissions, and privileged access management.
• Provide architecture guidance, technical approvals, and governance oversight for IAM remediation activities.
• Act as the escalation point for complex IAM, Active Directory, and access management design decisions.
• Collaborate with security, infrastructure, audit, compliance, and application teams across the organization.
• Present architecture strategies, risks, remediation progress, and recommendations to senior leadership and stakeholders.
• Support RBAC, least-privilege access, segregation of duties, and regulatory compliance initiatives.
• Design and support hybrid identity solutions leveraging Active Directory and Azure AD / Entra ID.
• Provide expertise on database authentication and AD integration patterns across Oracle, SQL Server, PostgreSQL, DB2, and related platforms.
• Create architecture documentation, governance standards, workflows, and technical diagrams using Visio and Confluence.
• Drive IAM best practices, modernization initiatives, and enterprise security improvements.

Required Skills & Experience

• 10–15+ years of experience in IAM and Active Directory architecture.
• 5+ years of experience in banking or highly regulated financial services environments.
• Strong expertise in:
• Microsoft Active Directory (AD DS, AD CS, AD FS)
• Azure AD / Entra ID (Hybrid Identity)
• RBAC, least privilege, and access governance models
• IAM architecture and enterprise security frameworks
• Experience with IAM platforms such as SailPoint, Saviynt, or CyberArk.
• Strong understanding of AD-integrated database authentication concepts and patterns.
• Advanced PowerShell scripting and automation experience.
• Excellent communication, documentation, and executive presentation skills.
• Strong stakeholder management and consulting capabilities.
• Experience leading enterprise-wide IAM remediation or transformation programs.

Preferred Qualifications

• Experience working with audit, compliance, and regulatory security programs.
• Knowledge of privileged access management (PAM) solutions.
• Familiarity with cloud identity security and Zero Trust principles.
• Relevant certifications such as Microsoft, CISSP, SailPoint, CyberArk, or IAM-related certifications preferred.