The Managing Director, Domain Architect – Identity is the senior‑most architectural authority for the Identity domain, accountable for defining and driving the target‑state architecture for Identity & Access Management across the enterprise. This role provides deep architectural leadership across workforce IAM, privileged access, customer and partner identity, machine and workload identity, and emerging agentic/AI‑driven identity use cases.
Key Responsibilities
Own the enterprise Identity domain target architecture, including IAM, IGA, PAM, CIAM, machine and non‑human identities, federation, and authorization services.
Define and maintain Identity reference architectures, design patterns, and architectural principles, ensuring alignment with enterprise standards and Zero Trust objectives.
Serve as the final design authority for material identity solutions and major identity‑related programs.
Strategy to Execution
Translate business, regulatory, and cybersecurity strategy into a clear, sequenced Identity architecture roadmap.
Partner with IAM product, engineering, and operations leaders to ensure architectural intent is realized consistently in delivery.
Guide modernization initiatives including platform rationalization, cloud‑native identity, passwordless authentication, and identity orchestration.
Enterprise & Central EA Collaboration
Operate as the Identity Domain counterpart to Central Enterprise Architecture, ensuring alignment while defending domain‑specific architectural needs.
Escalate and arbitrate design decisions that have enterprise‑wide risk, cost, or precedent implications.
Contribute identity expertise to Architecture Review Boards (ARB) and Technology Review Boards (TRB).
Risk, Control, and Regulatory Alignment
Ensure Identity architectures align with financial‑services regulatory expectations and internal risk frameworks.
Embed security‑by‑design, least privilege, strong authentication, and auditability across all identity patterns.
Act as a trusted architectural partner in regulatory discussions where identity design is material to outcomes.
Emerging Identity Capabilities
Provide architectural leadership for non‑human identity, service accounts, secrets management, and agentic/AI identity patterns.
Continuously assess emerging identity standards, protocols, and industry practices, incorporating them where strategically appropriate.
Leadership & Influence
Mentor and develop senior and principal‑level identity architects.
Influence senior stakeholders across technology, cybersecurity, and the business without direct authority.
Represent the Identity architecture function with credibility at managing director, executive, and board‑adjacent levels.
Qualifications & Experience
15+ years of experience in Identity & Access Management, security architecture, or enterprise architecture in large, regulated environments.
Deep hands‑on architectural expertise across IAM, PAM, CIAM, federation, directories, authorization, and cloud identity.
Demonstrated experience defining and governing domain architectures at enterprise scale.
Strong understanding of regulatory, audit, and risk considerations in financial services.
Education & Certifications (preferred)
Bachelor’s or Master’s degree in Computer Science, Engineering, or related field.
CISSP, CISM, CCSP, TOGAF, or equivalent practical experience.
Salary Range
$170,000 - $282,500 Annual
Benefits
Retirement savings plan (401K) with company match.
Insurance coverage including basic life, medical, dental, vision, and long‑term disability.
Paid‑time off including vacation, sick leave, short‑term disability, and family care responsibilities.
Employee Assistance Program.
Incentive compensation including eligibility for annual performance‑based awards (excluding certain sales roles).
Eligibility for certain tax‑advantaged savings plans.
Equal Opportunity Employer
As an Equal Opportunity Employer, we consider all qualified applicants for all positions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship, marital status, domestic partnership or civil union status, familial status, military and veteran status, and other characteristics protected by applicable law.
Job Application Disclosure
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
Job ID
R-788812
#J-18808-Ljbffr