... architecture standards. * Serve as the technical authority and escalation point for identity ... privileged access elevation, and certificate lifecycle management. * Reduce manual effort and ...
... architecture standards. * Serve as the technical authority and escalation point for identity ... privileged access elevation, and certificate lifecycle management. * Reduce manual effort and ...
Overview The Director of Identity and Access Management (IAM) leads the strategic planning, development, and execution of enterprise IAM initiatives to ensure secure, efficient, and compliant user ...
Overview The Director of Identity and Access Management (IAM) leads the strategic planning, development, and execution of enterprise IAM initiatives to ensure secure, efficient, and compliant user ...
Identity & Access Management Engineer
Springfield, MA · On-site
$75K - $97K/yr
The Identity and Access Management (IAM) Engineer ensures user identity and access management is implemented and consistent with Financial Partners Inc. (FPI) overall security objectives and audit ...
Identity & Access Management Engineer
Springfield, MA · On-site
$75K - $97K/yr
The Identity and Access Management (IAM) Engineer ensures user identity and access management is implemented and consistent with Financial Partners Inc. (FPI) overall security objectives and audit ...
Identity Access Management Engineer
Roseville, MN · On-site
$77K - $95K/yr
Identity Access Management Engineer * Location: Roseville, MN * In Office/Hybrid * Hours: Monday-Friday, 8a-5p THE POSITION: Were looking for an IAM Engineer to join our Digital Infrastructure ...
Identity Access Management Engineer
Roseville, MN · On-site
$77K - $95K/yr
Identity Access Management Engineer * Location: Roseville, MN * In Office/Hybrid * Hours: Monday-Friday, 8a-5p THE POSITION: Were looking for an IAM Engineer to join our Digital Infrastructure ...
PDMI is looking for a Manager, Identity & Access Management (IAM) to lead the strategy, architecture, and delivery of enterprise IAM initiatives across on-premises and multi-cloud environments. This ...
PDMI is looking for a Manager, Identity & Access Management (IAM) to lead the strategy, architecture, and delivery of enterprise IAM initiatives across on-premises and multi-cloud environments. This ...
Identity Access Management Analyst
MD · On-site
$80K - $130K/yr
Review existing IAM documentation, processes, system configurations, and architecture. * Conduct ... Certified Identity and Access Manager (CIAM) * Certified Identity Management Professional (CIMP)
Identity Access Management Analyst
MD · On-site
$80K - $130K/yr
Review existing IAM documentation, processes, system configurations, and architecture. * Conduct ... Certified Identity and Access Manager (CIAM) * Certified Identity Management Professional (CIMP)
This role provides strategic direction, hands-on leadership, and technical oversight for identity lifecycle management, access governance, compliance-driven controls, and integration of key business ...
This role provides strategic direction, hands-on leadership, and technical oversight for identity lifecycle management, access governance, compliance-driven controls, and integration of key business ...
Identity and Access Management/ABAC Architect
Suitland, MD · Hybrid
$170K - $180K/yr
The successful candidate will serve as the technical authority for Identity, Credential, and Access Management (ICAM) architecture, enabling secure access to enterprise applications, cloud ...
Quick apply
Identity and Access Management/ABAC Architect
Suitland, MD · Hybrid
$170K - $180K/yr
The successful candidate will serve as the technical authority for Identity, Credential, and Access Management (ICAM) architecture, enabling secure access to enterprise applications, cloud ...
Identity and Access Management/ABAC Architect
Suitland, MD · On-site
$170K - $180K/yr
The successful candidate will serve as the technical authority for Identity, Credential, and Access Management (ICAM) architecture, enabling secure access to enterprise applications, cloud ...
Identity and Access Management/ABAC Architect
Suitland, MD · On-site
$170K - $180K/yr
The successful candidate will serve as the technical authority for Identity, Credential, and Access Management (ICAM) architecture, enabling secure access to enterprise applications, cloud ...
This role provides strategic direction, hands-on leadership, and technical oversight for identity lifecycle management, access governance, compliance-driven controls, and integration of key business ...
This role provides strategic direction, hands-on leadership, and technical oversight for identity lifecycle management, access governance, compliance-driven controls, and integration of key business ...
NTT DATA is a global innovator of business and technology services seeking a Senior Identity & Access Management (IAM) Architect. This role focuses on designing, implementing, and governing the ...
NTT DATA is a global innovator of business and technology services seeking a Senior Identity & Access Management (IAM) Architect. This role focuses on designing, implementing, and governing the ...
This role will serve as a technical authority for IAM architecture, leading initiatives across Identity Governance & Administration (IGA), Privileged Access Management (PAM), Single Sign On (SSO ...
This role will serve as a technical authority for IAM architecture, leading initiatives across Identity Governance & Administration (IGA), Privileged Access Management (PAM), Single Sign On (SSO ...
Identity & Access Management (IAM) Engineer III
$150K - $183K/yr
This role will serve as a technical authority for IAM architecture, leading initiatives across Identity Governance & Administration (IGA), Privileged Access Management (PAM), Single Sign On (SSO ...
Quick apply
Identity & Access Management (IAM) Engineer III
$150K - $183K/yr
This role will serve as a technical authority for IAM architecture, leading initiatives across Identity Governance & Administration (IGA), Privileged Access Management (PAM), Single Sign On (SSO ...
PDMI is looking for a Manager, Identity & Access Management (IAM) to lead the strategy, architecture, and delivery of enterprise IAM initiatives across on-premises and multi-cloud environments. This ...
PDMI is looking for a Manager, Identity & Access Management (IAM) to lead the strategy, architecture, and delivery of enterprise IAM initiatives across on-premises and multi-cloud environments. This ...
... and identity standards • Hands-on architecture or engineering experience within cloud ... access management frameworks • Strong understanding of identity governance, compliance ...
... and identity standards • Hands-on architecture or engineering experience within cloud ... access management frameworks • Strong understanding of identity governance, compliance ...
Hybrid role urgent client needs Azure Identity & Access Management (IAM) Engineer Azure Identity & Access Management (IAM) Engineer | Microsoft Entra ID (Azure AD B2B/B2C) | FedRAMP High | RBAC | JIT ...
Hybrid role urgent client needs Azure Identity & Access Management (IAM) Engineer Azure Identity & Access Management (IAM) Engineer | Microsoft Entra ID (Azure AD B2B/B2C) | FedRAMP High | RBAC | JIT ...
Duties The Enterprise Identity & Access Management Architect is an expert-level System Administrator for planning, designing, provisioning, implementing, configuring, troubleshooting, and managing ...
Duties The Enterprise Identity & Access Management Architect is an expert-level System Administrator for planning, designing, provisioning, implementing, configuring, troubleshooting, and managing ...
This role will serve as a technical authority for IAM architecture, leading initiatives across Identity Governance & Administration (IGA), Privileged Access Management (PAM), Single Sign On (SSO ...
This role will serve as a technical authority for IAM architecture, leading initiatives across Identity Governance & Administration (IGA), Privileged Access Management (PAM), Single Sign On (SSO ...
Identity & Access Management (IAM) Technology Lead
Boston, MA · On-site
$130K - $180K/yr
Architect identity lifecycle processes including Joiner, Mover, and Leaver workflows * Architect and design automation for Privilege Access Management across the firm * Develop solutions to handle ...
Identity & Access Management (IAM) Technology Lead
Boston, MA · On-site
$130K - $180K/yr
Architect identity lifecycle processes including Joiner, Mover, and Leaver workflows * Architect and design automation for Privilege Access Management across the firm * Develop solutions to handle ...
Architect identity lifecycle processes including Joiner, Mover, and Leaver workflows * Architect and design automation for Privilege Access Management across the firm * Develop solutions to handle ...
Architect identity lifecycle processes including Joiner, Mover, and Leaver workflows * Architect and design automation for Privilege Access Management across the firm * Develop solutions to handle ...
Identity Access Management Architect information
See salary details
$21K - $36.3K
4% of jobs
$36.3K - $51.5K
1% of jobs
$51.5K - $66.8K
0% of jobs
$66.8K - $82.1K
0% of jobs
$94.7K is the 25th percentile. Wages below this are outliers.
$82.1K - $97.4K
24% of jobs
The median wage is $106.1K / yr.
$97.4K - $112.6K
36% of jobs
$112.6K - $127.9K
6% of jobs
$134.5K is the 75th percentile. Wages above this are outliers.
$127.9K - $143.2K
7% of jobs
$143.2K - $158.5K
9% of jobs
$158.5K - $173.7K
8% of jobs
$173.7K - $189K
3% of jobs
$21K
$116.4K
$189K
How much do identity access management architect jobs pay per year?
What is the difference between Identity Access Management Architect vs Identity Access Management Engineer?
| Aspect | Identity Access Management Architect | Identity Access Management Engineer |
|---|---|---|
| Certifications | Certified Identity and Access Manager (CIAM), CISSP | CISSP, CompTIA Security+ |
| Work Environment | Designs IAM frameworks, collaborates with stakeholders | Implements and maintains IAM solutions, supports systems |
| Employer & Industry Usage | Financial, healthcare, large enterprises | IT departments, security teams in similar industries |
The main difference is that the Identity Access Management Architect focuses on designing and planning IAM systems, while the Identity Access Management Engineer handles the implementation and operational support of those systems. Both roles require relevant certifications and work within similar industries, but their responsibilities differ in scope and focus.
What does an Identity Access Management Architect do?
How does an Identity Access Management Architect typically collaborate with other IT and business teams within an organization?
What are the key skills and qualifications needed to thrive as an Identity Access Management Architect, and why are they important?
What Is an Identity and Access Management Architect?
An identity and access management architect deals with data security. Their responsibilities are to design and maintain the software systems by which users interact with the network and data systems of an organization. They perform situational analyses and software testing to determine vulnerabilities in the company’s databases to ensure that sensitive information is protected. If issues arise with the organization’s data security, the identity and access management architect’s duties are to design and implement solutions to these weak points. They often also test the users of a system by creating situations in which they could unintentionally compromise the system security and analyze how users react to those situations.
- oracle identity management consultant
- identity and access management consultant
- identity management consultant
- identity management developer
- enterprise security architect
- enterprise information security architect
- information security architect
- security architect
- it security architect
- senior information security architect

Full-time
Re-posted 21 days ago
Job description
The Senior Manager, Identity & Access Management (IAM) is responsible for defining and advancing the Firm's enterprise IAM strategy to protect access to systems, applications, and data.
This role provides IAM strategy, governance, and risk oversight, partnering closely with global IT teams, HR, and business stakeholders. The ideal candidate is a hands-on technical leader with strong technical depth and proven delivery experience, able to translate security and compliance requirements into scalable, business-aligned IAM capabilities while enabling secure business operations. The person in this role must be detail-oriented with the ability to adapt rapidly to new challenges, think creatively and holistically, and quickly resolve unforeseen issues.
Essential Job Duties & Responsibilities
- Develop and execute the firm's IAM strategy and roadmap aligned with enterprise security objectives, business priorities, and client requirements.
- Establish and enforce identity governance and access management standards, including role-based access control (RBAC), least privilege, segregation of duties (SoD), and periodic access certifications, ensuring consistent adoption across the firm.
- Define, maintain, and operationalize IAM policies, standards, procedures, and reference architectures to support consistent, auditable, and scalable access management practices.
- Partner with technology risk and client assurance teams to support internal and external assessments and drive remediation of IAM-related findings.
- Define security requirements and governance standards for IAM technologies and platforms, including Active Directory, Entra ID (Azure AD), SAML/SSO, MFA, PAM, and cloud-based IAM services.
- Partner with Infrastructure and Application teams to support the secure implementation and ongoing operation of IAM controls across on-premises, cloud, and SaaS environments.
- Own the selection, configuration, and lifecycle management of identity-specific security platforms, including authentication, identity governance, and privileged access management solutions in alignment with enterprise architecture standards.
- Serve as the technical authority and escalation point for identity security platforms, responsible for architecture decisions, advanced configuration, integrations, upgrades, and decommissioning.
- Maintain deep, hands-on expertise in Active Directory, Entra ID (Azure AD), Windows Certificate Services (CA), and core identity protocols, including LDAP, Kerberos, SAML, OAuth, and OpenID Connect.
- Design, implement, and operate privileged access controls, strong authentication policies, and identity governance workflows within security-owned IAM and PAM platforms.
- Design and develop automation and tooling to support IAM processes such as joiner/mover/leaver workflows, access provisioning and deprovisioning, access reviews, privileged access elevation, and certificate lifecycle management.
- Reduce manual effort and operational risk by identifying opportunities to standardize and automate identity processes across platforms and environments.
- Define and oversee user lifecycle management standards (joiner/mover/leaver), to ensure timely and secure onboarding, access changes, and deprovisioning.
- Establish governance and oversight for digital certificate inventory and lifecycle management, including issuance, renewal, and revocation processes.
- Identify IAM-specific risks such as misconfigurations, excessive access, orphaned accounts, and weak authentication controls, and partner with relevant stakeholders to prioritize and remediate issues.
- Ensure IAM practices align with applicable regulatory, privacy, and security frameworks (e.g., SOX, GDPR, ISO 27001, NIST).
- Develop dashboards, metrics, and reporting to provide visibility into IAM risks, control effectiveness, and program maturity for senior leadership.
- Provide IAM subject-matter expertise during security incidents, investigations, and control failures.
- Lead, mentor, and develop IAM engineers and analysts, fostering a culture of accountability, technical excellence, and continuous improvement.
- Influence and collaborate with technical and non-technical stakeholders to drive adoption of IAM best practices without impeding delivery.
- Communicate IAM risks, tradeoffs, and recommendations clearly to senior leadership and business stakeholders.
- Stay current on emerging IAM threats, technologies, and industry best practices.
- Drive continuous optimization of IAM governance processes to improve security, scalability, and user experience.
- Participate in on-call rotation to support after-hours incident response and critical security operations as needed.
Education
Required
- Bachelor's degree in information security, IT, risk management, related discipline, or equivalent experience
Preferred
- Professional certifications such as CISSP, CISM, or similar
Skills and Experience
- 15+ years of progressive experience in IT or Information Security, with at least 5 years in a leadership role focused on IAM or access governance.
- Demonstrated success building, scaling, and operating enterprise-grade IAM programs in large, complex organizations, preferably in a hybrid environment (on-premises, multi-cloud, and SaaS).
- Proven ability to define IAM strategy, roadmap, and operating models, aligning capabilities with business objectives, risk posture, and regulatory requirements.
- Deep, hands-on expertise with identity lifecycle management, SSO, MFA, directory services (e.g., Active Directory, Entra ID), federation protocols (SAML, OAuth, OIDC), and PKI/certificate infrastructure.
- Experience implementing and managing Identity Governance & Administration (IGA) platforms such as SailPoint, Saviynt etc.
- Strong background in user access reviews, certification campaigns, entitlement modeling, role-based and policy-based access controls
- In-depth understanding of NIST digital identity guidelines, including identity assurance and authentication levels
- Familiarity with compliance frameworks and standards such as NIST CSF and ISO 27001.
- Experience working in a global organization and collaborating across diverse business units.
- Strong program and project management skills, with experience delivering complex initiatives on time and within budget.
- Proven ability to manage third-party vendors, and software providers, including delivery oversight, and performance management.
- Demonstrated ability to lead, mentor, and develop high-performing IAM engineering and operations teams.
- Excellent executive communication and presentation skills, with the ability to clearly articulate risk, strategy, and technical concepts to both technical and non-technical audiences.
- Strong interpersonal and collaboration skills, with comfort engaging regularly with senior leadership and key internal and external stakeholders.
- Ability to manage multiple concurrent objectives and activities and make effective judgments in prioritizing and time allocation.
- Must be able to execute with limited information and ambiguity.
- Demonstrated continuous learning mindset, with the ability to stay current on emerging IAM technologies, security threats, vulnerabilities, and attack vectors
- Passion for innovation, automation, and driving continuous improvement in IAM processes.
Salary Information
NY Only: The estimated base salary range for this position is $190,000 to $220,000 at the time of posting.
The actual salary offered will depend on a variety of factors, including without limitation, the qualifications of the individual applicant for the position, years of relevant experience, level of education attained, certifications or other professional licenses held, and if applicable, the location in which the applicant lives and/or from which they will be performing the job. This role is exempt meaning it is not overtime pay eligible.
Simpson Thacher will not sponsor applicants for work visas for this position.
Privacy Notice
For information about how Simpson Thacher & Bartlett LLP collects and processes your personal information, please refer to our Privacy Notice available athttps://www.stblaw.com/other/privacy-notice.
Simpson Thacher & Bartlett is committed to a collegial work environment in which all individuals are treated with respect and dignity.The Firm prohibits discrimination or harassment based upon race, color, religion, gender, gender identity or expression, age, national origin, citizenship status, disability, marital or partnership status, sexual orientation, veteran's status or any other legally protected status. This Policy pertains to every aspect of an individual's relationship with the Firm, including but not limited to recruitment, hiring, compensation, benefits, training and development, promotion, transfer, discipline, termination, and all other privileges, terms and conditions of employment.
#LI-Hybrid