IAM Architect (Authentication & Access Management)

Overview

On Site
Depends on Experience
Accepts corp to corp applications
Contract - W2
Contract - Independent
Contract - 12 Month(s)
No Travel Required

Skills

Identity Management
IAM
Cloud Computing
Continuous Delivery
Continuous Integration
CyberArk
DevOps
Architectural Design
High Availability
Management
Microsoft Azure
Multi-factor Authentication
OAuth
PKI
Provisioning
Python
Regulatory Compliance
Incident Management
Reporting
SSO
Shell
Disaster Recovery
Auditing
Authentication
Budget
Communication
Conflict Resolution
Analytical Skill
Documentation
FOCUS
Scripting
Roadmaps

Job Details

Job Title: IAM Architect (Authentication & Access Management)

Location: Plano, TX On-site: 5 days/ week

Role Overview

As the IAM Architect, you will lead architectural design, development, and delivery of enterprise-wide authentication and access solutions including SSO, MFA, PKI, CIAM for over 380k identities across 1,300+ apps in a hybrid cloud environment. You ll work closely with enterprise architects and cross-functional teams to build scalable, secure, and resilient IAM services aligned with PepsiCo s security standards.

Key Responsibilities

  • Architect, implement, and support Single Sign-On (SSO), MultiFactor Authentication (MFA), Public Key Infrastructure (PKI), and Customer IAM (CIAM) solutions.

  • Develop and maintain the IAM strategy and roadmap for authentication services across hybrid (on-prem + Google Cloud Platform) environments.

  • Lead global teams and vendor partners in delivering authentication infrastructure with high availability and disaster recovery.

  • Integrate authentication and provisioning tools (e.g., CyberArk, LDAP/JNDI) with enterprise applications.

  • Ensure audit readiness, proactive monitoring, and incident response for IAM systems.

  • Guide application teams on best practices for authentication integration and security.

  • Drive remediation of security vulnerabilities and compliance issues promptly.

  • Manage vendor relationships, budgets, and licensing for IAM products.

  • Create and maintain architectural documentation, designs, and metric reporting.

Technical Requirements

  • 10+ years of IAM experience (SSO/MFA/PKI/CIAM) in enterprise environments.

  • Proficiency in SSO technologies (e.g., Okta, Azure AD).

  • Hands-on with MFA, PKI, and CIAM platforms (Adobe, Salesforce, CyberArk, etc.).

  • Experience with LDAP/JNDI, CyberArk, and directory integration.

  • Strong scripting/programming skills (Python, Java, shell) for automation.

  • Expertise in cloud (Google Cloud Platform preferred) and hybrid IAM infrastructure.

  • Solid understanding of IAM standards (OAuth, SAML, OpenID Connect).

  • Familiar with DevOps/CI-CD tools, monitoring, and automation.

Desired Skills & Traits

  • Leadership in IAM architecture & global IAM teams.

  • Experience managing complex incidents and ensuring uptime.

  • Excellent communication across multiple levels from engineers to business leaders.

  • Strong analytical mindset with problem-solving, documentation, and compliance focus.

  • Strategic thinker capable of aligning IAM architecture to business and security goals.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.