IAM Architect

About Us:

LTIMindtree is a global technology consulting and digital solutions company that enables enterprises across industries to reimagine business models, accelerate innovation, and maximize growth by harnessing digital technologies. As a digital transformation partner to more than 700+ clients, LTIMindtree brings extensive domain and technology expertise to help drive superior competitive differentiation, customer experiences, and business outcomes in a converging world. Powered by nearly 90,000 talented and entrepreneurial professionals across more than 30 countries, LTIMindtree a Larsen & Toubro Group company combines the industry-acclaimed strengths of erstwhile Larsen and Toubro Infotech and Mindtree in solving the most complex business challenges and delivering transformation at scale. For more information, please visit ;/p>

Role: IAM Architect

Location: Charlotte, NC/Atlanta, GA/Dallas, TX (Hybrid role 3 days/week)

Job Description:

Role Overview:

The IAM Architect will lead the design, implementation, and governance of enterprise-wide Identity and Access Management (IAM) solutions. This includes Identity Governance and Administration (IGA) and Privileged Access Management (PAM) platforms, with a strong preference for Saviynt and CyberArk. The role requires deep technical expertise, strategic vision, and the ability to collaborate across security, infrastructure, and application teams.

Key Responsibilities:

Architect and implement scalable IAM solutions using Saviynt IGA and CyberArk PAM platforms

Define and govern identity lifecycle processes (Joiner, Mover, Leaver), access certifications, and role-based access control (RBAC/ABAC)

Lead integration of IAM platforms with enterprise systems including AD, Entra ID, Azure, AWS, Google Cloud Platform, and SaaS applications

Design and implement secure authentication and authorization mechanisms (SAML, OAuth2, OIDC, SCIM)

Oversee onboarding of applications and privileged accounts, including vaulting, session monitoring, and credential rotation

Collaborate with DevOps and engineering teams to embed IAM into CI/CD pipelines and Infrastructure-as-Code (IaC) practices

Support compliance initiatives (e.g., ISO 27001, GDPR, PCI-DSS) through audit-ready IAM controls

Evaluate emerging IAM technologies and contribute to the IAM roadmap and strategy .

Required Skills:

Proven experience as an IAM Architect or Lead in large-scale enterprise environments

Hands-on expertise in Saviynt IGA (v23.x or later) including ARS, SOD, analytics, workflows, and connector development

Deep knowledge of CyberArk PAM including vaulting, PSM, CPM, and API integrations

Strong understanding of directory services (Active Directory, Entra ID), federation, and group management

Proficiency in scripting (PowerShell, Python) and integration via REST/SOAP/SCIM APIs

Familiarity with ITSM tools (e.g., ServiceNow), ticketing workflows, and incident response

Deep knowledge on Identity lifecycle, access request cycle and Access reviews in IGA

Proficiency in IGA PAM integration.

LTIMindtree is an equal opportunity employer that is committed to diversity in the workplace. Our employment decisions are made without regard to race, color, creed, religion, sex (including pregnancy, childbirth or related medical conditions), gender identity or expression, national origin, ancestry, age, family-care status, veteran status, marital status, civil union status, domestic partnership status, military service, handicap or disability or history of handicap or disability, genetic information, atypical hereditary cellular or blood trait, union affiliation, affectional or sexual orientation or preference, or any other characteristic protected by applicable federal, state, or local law, except where such considerations are bona fide occupational qualifications permitted by law.