Role Details
* Job Title: IAM Architect
* Work Model: Hybrid ( 2 to 3days)
* Location (if hybrid/office based): Leeds/Bradford
* Duration of Assignment: 6 Months
Role Description (Please include a brief outline of the impact this role will have, including overview of customer industry and projects, access to cutting-edge technology etc.) We are seeking an experienced IAM Architect with strong expertise across Identity Governance & Administration (IGA) and Privileged Access Management (PAM) to support a major BFSI customer in the UK. The role will be responsible for defining, shaping, and governing the target-state architecture for IGA and PAM capabilities, ensuring alignment with enterprise security strategy, regulatory obligations, and business priorities. The successful candidate will play a key role in security transformation initiatives, driving robust identity governance, privileged access controls, compliance, and risk reduction across a complex regulated environment and implementation. This role requires a strong combination of strategic architecture capability, technical domain depth, and stakeholder management across security, infrastructure, application, risk, audit, and business teams. Key Responsibilities (Up to 10, Avoid repetition)
* Define and maintain the target-state architecture for IGA and PAM across workforce, third-party, and privileged identities
* Lead the design of scalable and secure identity controls covering identity lifecycle management, access governance, privileged access, least privilege, and segregation of duties
* Develop architecture principles, standards, policies, patterns, and roadmaps for IGA and PAM transformation programmes
* Provide architectural leadership for onboarding applications, platforms, and infrastructure into IGA and PAM services
* Design and review solutions covering joiner, mover, leaver processes, access requests, approvals, certifications, role modelling, SoD controls, privileged account vaulting, elevation, session management, and break-glass access
* Support product and vendor evaluations, including RFP responses, technical assessments, and solution selection activities
* Ensure all solution designs align with UK BFSI regulatory, risk, audit, and compliance expectations
* Work closely with engineering, operations, security, and business stakeholders to ensure successful delivery and adoption of identity capabilities
* Review current-state IAM controls, identify architectural and control gaps, and recommend improvement opportunities
* Provide design assurance, governance, and sign-off for IGA and PAM initiatives
Key Skills / Knowledge / Experience (Up to 10, Avoid repetition)
* Proven experience working as an IAM Architect, Security Architect, or similar architecture role in large enterprise environments
* Strong hands-on architectural experience across both IGA and PAM domains
* Demonstrable experience in the Banking, Financial Services and Insurance (BFSI) sector, preferably within the UK
Strong understanding of identity governance principles including:
* Joiner, mover, leaver processes
* Access requests and approvals
* Access certifications and recertifications
* Role modelling and role-based access control
* Segregation of duties
* Policy-based access governance
Strong understanding of privileged access controls including:
* Privileged account discovery
* Password vaulting
* Privileged session management
* Just-in-time / just-enough access
* Elevation and delegation controls
* Break-glass access
* Service and shared account governance
* Experience designing integrations across on-prem, cloud, hybrid, and SaaS environments
* Good knowledge of identity and security protocols such as SAML, OAuth2, OpenID Connect, LDAP, SCIM, Kerberos, and API-based integrations
Experience working with one or more enterprise IGA and PAM solutions such as:
* SailPoint, Saviynt, One Identity, Entra ID Governance
* CyberArk, Delinea, BeyondTrust, One Identity PAM
Person Specification Client Facing and Lead for IDAM Workstream. The ideal candidate will be a seasoned IAM professional with deep architecture experience across both governance-led identity controls and privileged access security. They will be comfortable operating in a complex BFSI environment, engaging senior stakeholders, and translating security, risk, and regulatory requirements into practical and scalable architecture outcomes. Lead Implementation E2E and ensure benefits are realised.
JBRP1_UKTJ