Solutions Architect - IAM

Solutions Architect - IAM-076898

Description

 

Key Responsibilities:

Presales: The cyber solutions architect will work cross-functionally with Direct Cyber Sales team to ensure comprehensive coverage on all qualified cyber deals. They will provide technical leadership and content development for client and prospect needs such as proposal responses, RFIs, Statements of Work, and other similar requests.

Develop Solutions: For client requirements, bids, RFPs.

IAM System Design: The IAM Solution Specialist designs Identity systems tailored to the Client needs, considering scalability, security, and compliance requirements from the RFPs and Bids.

Technical skills required: IGA platforms such as SailPoint, Saviynt, Okta IGA etc. IAM, single sign on (SAML/OIDC), Passwordless and MFA authentication, RBAC, ABAC, PBAC, API Security, Cloud IAM, IDaas, SIEM, Containerization and Microservices

Authorization Policies: Define access control policies and roles within the IAM system to ensure that users have appropriate access privileges based on their roles and responsibilities.

Integration with Identity Sources: Create solutions with integrated IAM and IGA systems with various identity sources such as HR platforms (Workday, ADP etc.) Active Directory, Entra ID, LDAP, and third-party identity providers to centralize identity management.

Identity Federation: Depending on the client requirements, establishing federated identity relationships with external partners, allowing users to access resources seamlessly across organizational boundaries.

API Security: Ensuring that APIs used for authentication and authorization are secure and adhere to industry best practices, especially in modern distributed architectures like microservices.

Compliance and Audit Support: Ensure the solution includes IAM systems stay in sync with relevant regulations and standards (such as GDPR, HIPAA, PCI DSS) and supporting audit processes by providing necessary access logs and reports.

Cloud IAM: Design IAM solutions for Private and Public cloud environments, considering the unique challenges and opportunities presented by cloud platforms such as AWS, Azure, and Google Cloud Platform.

Identity as a Service (IDaaS): Designing and creating solutioning IDaaS that provide IAM functionality as a cloud-based service, potentially reducing operational overhead and improving scalability.

Portfolio Optimization: Work with the Global Portfolio Hub to support portfolio optimization and service expansion efforts based on market trending and opportunities recognized cross-sector.

Thought leadership: Provide thought leadership by engaging in publication of white papers, articles, podcasts, and participating in key industry events.

Requirements:

• 10+ Years of experience in IT and should be aligned with Identity governance and access management solutions.
• 5+ years aligned with Privileged Access Management solutions.
• 5+ years architecture or migrations and support for identity governance solutions such as SailPoint, Saviynt, Okta IGA etc.
• 5+ years of hands-on experience in any of Identity products such as Sailpoint, Saviynt, Active Directory, LDAP, OAuth 2.0, OpenID Connect, SAML, Kerberos, MFA methods, RBAC, ABAC, PBAC, Federations, API Security, Cloud IAM, IDaas, SIEM, Containerization and Microservices IBM SIM, CA IDM, Oracle IDM, ForgeRock IDM, Okta etc.
• Should have experience in installation and configurations of at least one of the above-mentioned product.
• Must have a thorough understanding and work experience for user lifecycle management process such as provisioning, de-provisioning, update, disable/enable, reconciliation, delete process with any one of the IDM tools.
• Must have a thorough understanding and work experience for Single Sign-On, Access management, Identity Federation, Multi-factor authentication, Risk / Context-based authentication, On-time provisioning / de-provisioning with any one of the IDM tools.
• Must have a thorough understanding and work experience for technologies such as Header based Single Sign On, SAML, OAuth, Ws-Fed, Ws-Trust, IWA based authentication etc.
• Experience with integration target systems such as Active Directory, RACF, EBS, Databases etc. with IDM.
• Must have working experience in workflow design and development, role management, policy development.
• Must have knowledge of technologies/protocol such as RBAC, ABAC, SoD, Access certification, User auto provisioning/ de-provisioning etc.
• Hands-On experience with customization of such as Connector development, writing scripts, and building workflows.
• Experience with directory services installation, configuration and their integration with at least one of the above-mentioned IDM product.
• Expertise in J2EE, JSF, Spring, JSON, REST, SCIM and SOAP-based web services.
• In-depth understanding of Databases/queries/stored procedures
• Problem solving skills are also a must.
• Should be able to work independently as a Developer, work may require the person to the solution and implement IDM the component

About Capgemini

Capgemini is a global leader in partnering with companies to transform and manage their business by harnessing the power of technology. The Group is guided everyday by its purpose of unleashing human energy through technology for an inclusive and sustainable future. It is a responsible and diverse organization of nearly 350,000 team members in more than 50 countries. As we leverage cloud, data, AI, connectivity, software, digital engineering, and platforms to address the entire breadth of business needs, this passion drives a powerful commitment. To unlock the true value of technology for your business, our planet, and society for a more inclusive, sustainable future.

Get The Future You Want | www.capgemini.com

About Cloud Infrastructure Services (CIS)

CIS powers enterprises’ business and technology digital transformation by accelerating change, reinforcing cybersecurity, empowering employees, managing complexity and fostering adaptability.

Leveraging our close partnerships with leading cloud vendors and advanced intelligence from our global operations centers, our CIS teams are trusted by clients to securely navigate in today’s dynamic business environments, driving forward business value so they get the future they want.

Our five key service areas are:

• Cloud Services: Exploiting the cloud at speed and scale
• Employee Experience Services: Making the “future of work” work for our clients
• Cybersecurity Services: Securing Foundations to Create Open Futures
• Enterprise Service Management: Taking charge of complexity to drive business value
• Infrastructure Services: Managing and modernizing IT estates

We pride ourselves on our inclusive and diverse workplace, a reflection of today’s global society’s richness and diversity and a place where our people feel empowered to build and choose meaningful careers, selecting a future where they can all thrive.

Come join our vibrant workforce at CIS to build an effective career that empowers you to get the future you want. Learn more about us at www.capgemini.com

Applicants for employment in the US must have valid work authorization that does not now and/or will not in the future require sponsorship of a visa for employment authorization in the US by Capgemini.

Please be aware that Capgemini may capture your image (video or screenshot) during the interview process. That image may be used for verification, including during the hiring and onboarding.

    

Job

 : Sales

Schedule

 : Full-time

Primary Location

 : US-Texas

Organization

 : CIS US P&C