Senior Lead Cybersecurity Architect - IAM

Play a vital role in shaping the future of an iconic company and make a direct impact in a dynamic environment designed for top achievers.

As a Senior Lead Cybersecurity Architect at JPMorgan Chase within the CTC, you play a crucial role in developing top-tier cybersecurity solutions for a range of software applications and platform products. Your expertise and contributions promote significant business impact, as you apply your deep technical knowledge and problem-solving skills to address a wide variety of cybersecurity challenges across multiple technology domains.

Job responsibilities

• Architect and deploy enterprise-scale IAM solutions, ensuring robust security, scalability, and compliance.
• Directly implement and integrate IAM tools including Entra ID, ForgeRock, Ping, ADFS, SailPoint, Okta, Active Directory, Veza, and others.
• Design and develop Public Key Infrastructure (PKI) solutions, including ACME protocol integration and certificate lifecycle management.
• Conduct comprehensive threat modeling exercises to identify and mitigate security risks in IAM architectures.
• Work closely with engineering, application, infrastructure, and business teams to align IAM strategies with organizational goals.
• Develop and maintain IAM architecture diagrams, technical documentation, and security design patterns.
• Apply advanced security principles such as encryption, data security, and risk management throughout IAM solutions.
• Implement and manage IAM protocols and standards including RBAC, OAuth2.0, SCIM, Authentication, WebAuthN, Authorization, OPA, PBAC.
• Produce clear, concise, and comprehensive documentation and communicate complex technical concepts to both technical and non-technical stakeholders.

Required qualifications, capabilities, and skills

• Formal training or certification on Cybersecurity concepts and 5 years applied experience in cybersecurity with a focus on IAM architecture and implementation.
• Proven track record of deploying large-scale IAM solutions in complex environments.
• Deep hands-on experience with IAM tools: Entra ID, ForgeRock, Ping, ADFS, SailPoint, Okta, Active Directory, Veza.
• Strong background in PKI development, including ACME protocol.
• Proficient in threat modeling methodologies and tools.
• In-depth understanding of encryption, data security, and risk management.
• Familiarity with IAM principles: RBAC, OAuth2.0, SCIM, Authentication, WebAuthN, Authorization, OPA, PBAC.
• Demonstrated ability to work effectively with cross-functional teams.
• Excellent verbal and written communication skills.
• Strong documentation skills for technical and business audiences.

Preferred qualifications, capabilities, and skills

• Strategic thinker with a proactive approach to problem-solving.
• Ability to mentor and guide junior team members.
• Organizational and project management skills.
• Relevant certifications (e.g., CISSP, CISM, or vendor-specific IAM certifications) 

#CTC