ZipRecruiter

Log In

1

Identity Access Management Architect Jobs (NOW HIRING)

Shaarpro

Identity Access Management

San Antonio, TX · On-site

Identity Access Management Duration: 3-6 month (potential to extend) Location: Onsite at San Antonio, TX (no remote) Top skills: Large Tech App implementation exp. - Developing complex app end to end ...

next page

Showing results 1-20

All JobsIdentity Access Management Architect Jobs

Identity Access Management Architect information

See salary details

$21K

$116.4K

$189K

How much do identity access management architect jobs pay per year?

As of Jun 10, 2026, the average yearly pay for identity access management architect in the United States is $116,431.00, according to ZipRecruiter salary data. Most workers in this role earn between $95,500.00 and $143,000.00 per year, depending on experience, location, and employer.

What is the difference between Identity Access Management Architect vs Identity Access Management Engineer?

AspectIdentity Access Management ArchitectIdentity Access Management Engineer
CertificationsCertified Identity and Access Manager (CIAM), CISSPCISSP, CompTIA Security+
Work EnvironmentDesigns IAM frameworks, collaborates with stakeholdersImplements and maintains IAM solutions, supports systems
Employer & Industry UsageFinancial, healthcare, large enterprisesIT departments, security teams in similar industries

The main difference is that the Identity Access Management Architect focuses on designing and planning IAM systems, while the Identity Access Management Engineer handles the implementation and operational support of those systems. Both roles require relevant certifications and work within similar industries, but their responsibilities differ in scope and focus.

What does an Identity Access Management Architect do?

An Identity Access Management (IAM) Architect is responsible for designing and implementing systems that control and manage user identities and access permissions across an organization's digital resources. They ensure that only authorized users can access specific data or applications, safeguarding sensitive information and supporting regulatory compliance. IAM Architects work with technologies such as single sign-on (SSO), multi-factor authentication (MFA), and role-based access control (RBAC), and collaborate with IT teams to integrate security best practices throughout the company’s infrastructure.

How does an Identity Access Management Architect typically collaborate with other IT and business teams within an organization?

An Identity Access Management (IAM) Architect works closely with cross-functional teams, including IT security, application development, compliance, and business units. They are responsible for designing IAM solutions that align with organizational security policies while also supporting business requirements. Regular collaboration ensures that access controls integrate smoothly with existing systems and that user provisioning and deprovisioning processes are efficient and compliant. Effective communication and teamwork are essential, as IAM Architects often lead workshops, gather requirements, and provide guidance on best practices to both technical and non-technical stakeholders.

What are the key skills and qualifications needed to thrive as an Identity Access Management Architect, and why are they important?

To thrive as an Identity Access Management (IAM) Architect, you need a deep understanding of identity governance, authentication protocols, and security frameworks, typically supported by a degree in computer science or a related field. Familiarity with IAM tools such as Okta, SailPoint, or Microsoft Azure AD, as well as relevant certifications like CISSP or CISM, is highly valuable. Strong analytical thinking, communication, and problem-solving skills help you design secure, scalable solutions and collaborate effectively with stakeholders. These skills and qualifications are critical for protecting organizational assets, ensuring compliance, and enabling secure digital transformation.

What Is an Identity and Access Management Architect?

An identity and access management architect deals with data security. Their responsibilities are to design and maintain the software systems by which users interact with the network and data systems of an organization. They perform situational analyses and software testing to determine vulnerabilities in the company’s databases to ensure that sensitive information is protected. If issues arise with the organization’s data security, the identity and access management architect’s duties are to design and implement solutions to these weak points. They often also test the users of a system by creating situations in which they could unintentionally compromise the system security and analyze how users react to those situations.

More about Identity Access Management Architect jobs
What cities are hiring for Identity Access Management Architect jobs? Cities with the most Identity Access Management Architect job openings:
What are the most commonly searched types of Identity Access Management Architect jobs? The most popular types of Identity Access Management Architect jobs are:
Who are the top companies hiring for Identity Access Management Architect jobs? The top employers for Identity Access Management Architect jobs are:
What states have the most Identity Access Management Architect jobs? States with the most job openings for Identity Access Management Architect jobs include:
What job categories do people searching Identity Access Management Architect jobs look for? The top searched job categories for Identity Access Management Architect jobs are:
What are popular job titles related to Identity Access Management Architect jobs? For Identity Access Management Architect jobs, the most frequently searched job titles are:
Identity Access Management Architect jobs near you
Infographic showing various Identity Access Management Architect job openings in the United States as of June 2026, with employment types broken down into 2% Locum Tenens, 2% As Needed, 10% Full Time, 67% Part Time, and 19% Contract. Highlights an 95% Physical, 2% Hybrid, and 3% Remote job distribution, with an average salary of $116,431 per year, or $56 per hour.
Sr. Identity Access Management Architect

Sr. Identity Access Management Architect

Universal Music Group

Nashville, TN • On-site

Full-time

Medical, Dental, Vision, Retirement, PTO

Posted 21 days ago

Universal Music Group rating

7.8

Company rating: 7.8 out of 10

Based on 8 frontline employees who took The Breakroom Quiz

23rd of 65 rated media

Job description

We are UMG, the Universal Music Group. We are the world's leading music company. In everything we do, we are committed to artistry, innovation and entrepreneurship. We own and operate a broad array of businesses engaged in recorded music, music publishing, merchandising, and audiovisual content in more than 60 countries. We identify and develop recording artists and songwriters, and we produce, distribute and promote the most critically acclaimed and commercially successful music to delight and entertain fans around the world.
We are currently seeking an experienced Sr. Identity Access Management Architect to lead architectural design, strategic planning, and delivery across the full Identity & Access Management landscape. The Sr. Identity Access Management Architect will play a critical role in shaping UMG's global identity ecosystem across areas such as Access Management, IGA, PAM, Directory Services, and PKI.
This hands-on role will drive scalable and secure identity solutions, leading complex integrations across on-premises and multi-cloud environments. The successful candidate will possess deep technical expertise, a strategic mindset, and a strong ability to influence cross-functional teams and executive stakeholders.
Job Functions:
  • Architect and design enterprise-wide IAM solutions aligned with business goals, security policies, and compliance requirements.
  • Provide leadership and oversight for strategic IAM functions including PAM, IGA, SSO, MFA, Federation, PKI, Directory Services, and Secrets Management.
  • Define technical direction for IAM tools and develop overall strategic framework for implementation across the company with an emphasis on standard configurations.
  • Lead architecture planning and lifecycle designs for all personas including employees, partners, customers, and non-human identities.
  • Establish the target-state identity architecture and effectively communicate and guide engineers to implementing that vision.
  • Develop secure and scalable authentication, authorization, and account provisioning workflows.
  • Partner with engineering teams to integrate identity services into applications and infrastructure using APIs and automation pipelines.
  • Evaluate complex business requirements and effectively guide cross-functional teams to implement secure identity frameworks.
  • Create and maintain architectural documentation, standards, and design patterns for IAM services.
  • Contribute to solution development and code when needed, and review designs to ensure compliance with architecture and security standards.
  • Engage with internal and external stakeholders to communicate strategy, resolve roadblocks, and champion IAM modernization initiatives.

Job Requirements:
Qualifications:
  • 10+ years of experience in IAM or Security Architecture roles, with demonstrated success in designing enterprise-scale IAM platforms
  • Strong expertise with IAM protocols (SAML, OAuth2, OIDC, SCIM, LDAP, Kerberos, FIDO) and modern cloud identity models
  • Extensive hands-on experience with products like CyberArk, PingOne, Ping Davinci, EntraID, Saviynt, HashiCorp Vault, Digicert, Onfido, and Active Directory
  • Expert-level understanding of Authentication, Authorization, Directory Services, PKI, MFA, Federation, and PAM
  • Experience designing secure APIs and automating operational functions
  • Proven ability to lead architectural governance and collaborate across security, infrastructure, application, and compliance teams
  • Track record of implementing secure, scalable identity solutions in multi-cloud and hybrid environments
  • Excellent communication and leadership skills with the ability to influence at all levels of the organization
  • Experience working in Agile environments with cross-functional engineering teams

Desirable:
  • Bachelor's or Master's Degree in Computer Science, Engineering, or related technical discipline
  • Professional certifications such as CISSP, CISM, Microsoft Certified: Identity and Access Administrator, or TOGAF
  • Background in risk-based authentication, adaptive access, and identity analytics
  • Experience in media, entertainment, or global enterprises
  • Experience in cloud application development and maintenance
  • Strong understanding of cloud security, container security, and zero trust architecture
  • Experience deploying passwordless technology in a hybrid environment
  • Knowledge of IAM-related compliance frameworks such as SOX, GDPR, NIST, ISO 27001

Perks Playlist:
Join an entrepreneurial, global organization where authenticity, boldness, creativity, connection, drive, and insight aren't just values-they're how we work every day. Here are some of the ways we support you along the way (and just a few of the benefits we offer):
  • Comprehensive medical, dental, and vision coverage
  • Including 100% coverage for out-patient in-network mental health services
  • Fertility coverage for eligible medical plan participants
  • Wellbeing reimbursements for fitness classes, spa treatments, meal services, travel, and so much more (up to $720/year)
  • Student Loan Repayment Assistance and Tuition Reimbursement
  • 401(k) with 100% immediate vesting on the first 5% of your contributions, plus an additional UMG contribution

A variety of ways to prioritize much-needed time away from work including:
  • Flexible Paid Time Off (PTO) for exempt employees
  • 3-weeks PTO for non-exempt employees
  • 2-weeks paid Winter Break
  • 10 Company Holidays (including Juneteenth and Wellbeing Day)
  • Summer Fridays (between Memorial Day and Labor Day)
  • Generous paid parental leave for every type of parent

Check out our full overview of benefits on the Perks Playlist page of the career site.
Disclaimer: This job description only provides an overview of job responsibilities that are subject to change.
Universal Music Group is an Equal Opportunity Employer
We are an E-Verify employer in Alabama, Arizona, Georgia, Mississippi, North Carolina, South Carolina, Tennessee, and Utah.
Please note, UMG is not enrolled in E-Verify in California and New York, and cannot support employment of candidates whose employer must enroll in E-Verify, for example candidates on STEM-OPT.
For more information, please click on the following links.
E-Verify Participation Poster: English / Spanish
E-Verify Right to Work Poster: English | Spanish
Job Category:
Technology
Salary Range:
$164,380 - $199,805
The actual base salary offered depends on a variety of factors, which may include, as applicable, the qualifications of the individual applicant for the position, years of relevant experience, specific and unique skills, level of education attained, certifications or other professional licenses held, and the location in which the applicant lives and/or from which they will be performing the job. All candidates are encouraged to apply.

Apply