Overview

Senior Identity Architect – Nashville, 37201, United States of America 

Job Summary:

We are currently seeking an experienced Identity Architect to lead architectural design, strategic planning, and delivery across the full Identity & Access Management landscape. The Identity Architect will play a critical role in shaping UMG’s global identity ecosystem across areas such as Access Management, IGA, PAM, Directory Services, and PKI.

This hands-on role will drive scalable and secure identity solutions, leading complex integrations across on-premises and multi-cloud environments. The successful candidate will possess deep technical expertise, a strategic mindset, and a strong ability to influence cross-functional teams and executive stakeholders.

Job Functions:

  • Architect and design enterprise-wide IAM solutions aligned with business goals, security policies, and compliance requirements.
  • Provide leadership and oversight for strategic IAM functions including PAM, IGA, SSO, MFA, Federation, PKI, Directory Services, and Secrets Management.
  • Define technical direction for IAM tools and develop overall strategic framework for implementation across the company with an emphasis on standard configurations.
  • Lead architecture planning and lifecycle designs for all personas including employees, partners, customers, and non-human identities.
  • Establish the target-state identity architecture and effectively communicate and guide engineers to implementing that vision.
  • Develop secure and scalable authentication, authorization, and account provisioning workflows.
  • Partner with engineering teams to integrate identity services into applications and infrastructure using APIs and automation pipelines.
  • Evaluate complex business requirements and effectively guide cross-functional teams to implement secure identity frameworks.
  • Create and maintain architectural documentation, standards, and design patterns for IAM services.
  • Contribute to solution development and code when needed, and review designs to ensure compliance with architecture and security standards.
  • Engage with internal and external stakeholders to communicate strategy, resolve roadblocks, and champion IAM modernization initiatives.

Job Requirements:

Qualifications:

  • 10+ years of experience in IAM or Security Architecture roles, with demonstrated success in designing enterprise-scale IAM platforms
  • Strong expertise with IAM protocols (SAML, OAuth2, OIDC, SCIM, LDAP, Kerberos, FIDO) and modern cloud identity models
  • Extensive hands-on experience with products like CyberArk, PingOne, Ping Davinci, EntraID, Saviynt, HashiCorp Vault, Digicert, Onfido, and Active Directory
  • Expert-level understanding of Authentication, Authorization, Directory Services, PKI, MFA, Federation, and PAM
  • Experience designing secure APIs and automating operational functions
  • Proven ability to lead architectural governance and collaborate across security, infrastructure, application, and compliance teams
  • Track record of implementing secure, scalable identity solutions in multi-cloud and hybrid environments
  • Excellent communication and leadership skills with the ability to influence at all levels of the organization
  • Experience working in Agile environments with cross-functional engineering teams

Desirable:

  • Bachelor’s or Master’s Degree in Computer Science, Engineering, or related technical discipline
  • Professional certifications such as CISSP, CISM, Microsoft Certified: Identity and Access Administrator, or TOGAF
  • Background in risk-based authentication, adaptive access, and identity analytics
  • Experience in media, entertainment, or global enterprises
  • Experience in cloud application development and maintenance
  • Strong understanding of cloud security, container security, and zero trust architecture
  • Experience deploying passwordless technology in a hybrid environment
  • Knowledge of IAM-related compliance frameworks such as SOX, GDPR, NIST, ISO 27001

 

Before you apply -
Register now and turn on alerts for jobs like this!

  • To apply for this position, receive job notifications and manage your applications, click "Register with Diversity Jobs Group".
  • To apply for this position without registering, click "Apply with Customer".

By registering you agree to our terms and conditions.

Apply with Customer

IMPORTANT: Before applying for this role, please make sure you have the right to work in the country where the role is based. Unless it clearly stipulates within in the job advert above that the hiring company is looking to or able to sponsor applicants it is deemed that the hiring employer will only consider applications from those able to comply with and work in the country where the role is based.