IAM Architect

Key Responsibilities: • Integrate Aladdin Access Model (Okta) with the organization's Entra ID (preferred) or on-prem Active Directory using SSO. • Design and implement Aladdin Access Requests using ServiceNow, leveraging RBAC and ABAC frameworks. • Set up automation workflows between Aladdin, SailPoint, ServiceNow, and Entra ID to streamline provisioning and access management. • Design User Access Review (UAR) processes to ensure compliance with audit, regulatory, and internal control standards. • Collaborate with Product Owners and business stakeholders to identify toxic combinations and ensure Segregation of Duties (SoD) compliance. • Architect user provisioning processes similar to SCIM, even if Aladdin does not natively support it. • Provide oversight for GRC control attestations, ensuring proper logging, monitoring, and auditing. • Develop full architectural designs and artifacts, including APIM integrations for provisioning, auditing, logging, and monitoring. • Ensure robust 4-A’s oversight: Authentication, Authorization, Accounting/Audit, and Administration. Requirements: • Proven experience in Identity & Access Management and enterprise access provisioning. • Strong knowledge of RBAC/ABAC frameworks, ServiceNow integration, and automation with SailPoint. • Hands-on experience with API integrations (APIM) for access provisioning, logging, and monitoring. • Familiarity with compliance and audit requirements for access management, including toxic combination and SoD analysis. • Experience with SCIM-based provisioning processes is a plus. • Ability to produce full architectural designs and documentation for enterprise IAM solutions.