Job Description

Core Responsibilities:

· Design and Implement IAM Systems Architect and manage identity and access management solutions, ensuring secure and streamlined access across Symetra’s applications and infrastructure
· Governance and Compliance Define and enforce IAM policies, standards, and procedures. Conduct audits to ensure compliance with security and regulatory requirements.
· Integration and Federation Enable integration with identity providers (e.g., AD, Azure AD, Okta, ADFS) and support federated authentication using protocols like SAML and OAuth.
· Lifecycle Management Oversee Joiner-Mover-Leaver (JML) processes, provisioning/deprovisioning, and identity governance for internal and external users. Symetra currently uses NetIQ IDM and IGA for these processes.
· Security Architecture Collaborate with security teams to ensure IAM aligns with Zero Trust principles and Symetra’s cloud security strategy.
· Technical Leadership Provide guidance on IAM architecture during migrations (e.g., Symetra’s ongoing AWS migration for NetIQ Identity Manager).

· Tasks
o IAM architectural blueprints and deployment diagrams
o Documentation of identity processes and standards
o Migration plans for IAM systems to cloud environments
o Regular compliance and security posture reports

Required Skills & Qualifications

· Technical Expertise
o IAM tools: NetIQ IDM/IGA, Sailpoint Saviynt or similar, Access Manager, ForgeRock, Azure AD, Qualys, Palo Alto Firewall and LB
o Directory services: Active Directory, LDAP
o Protocols: SAML, OAuth, PKI
o Cloud platforms: AWS (for migration and optimization)

· Experience
o 10+ years in IAM architecture and design
o Hands-on with identity governance and provisioning systems
o Familiarity with hybrid environments (on-prem + cloud)
 o Certifications (Preferred) CISSP, CISM, ITIL, AWS Solutions Architect

͏

Core Responsibilities:

· Design and Implement IAM Systems Architect and manage identity and access management solutions, ensuring secure and streamlined access across Symetra’s applications and infrastructure
· Governance and Compliance Define and enforce IAM policies, standards, and procedures. Conduct audits to ensure compliance with security and regulatory requirements.
· Integration and Federation Enable integration with identity providers (e.g., AD, Azure AD, Okta, ADFS) and support federated authentication using protocols like SAML and OAuth.
· Lifecycle Management Oversee Joiner-Mover-Leaver (JML) processes, provisioning/deprovisioning, and identity governance for internal and external users. Symetra currently uses NetIQ IDM and IGA for these processes.
· Security Architecture Collaborate with security teams to ensure IAM aligns with Zero Trust principles and Symetra’s cloud security strategy.
· Technical Leadership Provide guidance on IAM architecture during migrations (e.g., Symetra’s ongoing AWS migration for NetIQ Identity Manager).

· Tasks
o IAM architectural blueprints and deployment diagrams
o Documentation of identity processes and standards
o Migration plans for IAM systems to cloud environments
o Regular compliance and security posture reports

Required Skills & Qualifications

· Technical Expertise
o IAM tools: NetIQ IDM/IGA, Sailpoint Saviynt or similar, Access Manager, ForgeRock, Azure AD, Qualys, Palo Alto Firewall and LB
o Directory services: Active Directory, LDAP
o Protocols: SAML, OAuth, PKI
o Cloud platforms: AWS (for migration and optimization)

· Experience
o 10+ years in IAM architecture and design
o Hands-on with identity governance and provisioning systems
o Familiarity with hybrid environments (on-prem + cloud)
 o Certifications (Preferred) CISSP, CISM, ITIL, AWS Solutions Architect

͏

i. Develop a direction to manage the portfolio of to-be-solutions including systems, shared infrastructure services, applications, hardware related to cyber risk security in order to better match business outcome objectives

ii. Analyse technology environment, enterprise specifics, client requirements to set a collaboration design framework/ architecture

iii. Depending on the client’s need with particular standards and technology stacks create complete RFPs

iv. Provide technical leadership to the design, development and implementation of custom solutions through thoughtful use of modern technology

v. Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions

vi. Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps

vii. Evaluate and recommend solutions to integrate with overall technology ecosystem

viii. Tracks industry and application trends and relates these to planning current and future IT needs

͏

2. Stakeholder coordination & audit assistance

a. Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations

b. Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security

c. Support audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements

d. Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers

e. Provide training to employees on issues such as spam and unwanted or malicious emails

͏

Deliver