Job Description
Job DescriptionAbout Company
Papigen is a fast-growing global technology services company, delivering innovative digital solutions through deep industry experience and cutting-edge expertise. We specialize in technology transformation, enterprise modernization, and dynamic areas like Cloud, Big Data, Java, React, DevOps, and more. Our client-centric approach combines consulting, engineering, and data science to help businesses evolve and scale efficiently.
About the Role
We are seeking a highly skilled IAM Architect with deep expertise in Identity and Access Management (IAM), Data Privacy, and Cloud Security. This role will be responsible for designing and delivering enterprise-grade IAM authorization architectures, data access controls, and privacy frameworks to secure mission-critical systems and data. You will collaborate with stakeholders, security engineers, and development teams to establish reference architectures, models, and governance standards that ensure scalable, compliant, and secure access management across the enterprise.
Key Responsibilities
- Architect IAM Solutions:
Define enterprise-wide IAM authorization policies and frameworks (PBAC, ABAC, RBAC). Develop reference architectures, conceptual models, logical models, and physical models for IAM and data security. Integrate identity governance workflows (lifecycle, entitlements, delegated administration, access governance automation).
- Data Privacy Access Control:
- Design and implement data access control policies for structured and unstructured data.
- Integrate data governance tools (e.g., Microsoft Purview) for compliance, classification, and monitoring.
- Establish data protection frameworks (encryption, key management, recovery, secure storage).
- Cloud Security Architecture:
- Design secure cloud-native architectures on Azure (primary), aligned with CIS, NIST, ISO 27001 standards.
- Implement application onboarding workflows with SailPoint and Entra ID.
- Collaborate on unified access and authorization solutions across enterprise applications (including Salesforce).
- Automation Governance:
- Automate security and IAM deployments via CI/CD pipelines (Azure DevOps) and Infrastructure-as-Code (Terraform).
- Develop developer guidance, documentation, and runbooks to ensure consistent IAM adoption.
- Present architectural solutions and roadmap progress to senior stakeholders and leadership.
Required Skills Experience
- IAM Expertise:
- 8+ years of hands-on IAM and cloud architecture experience.
- Strong command of IAM tools: Entra ID (Azure AD), SailPoint, PlainID.
- Proven experience designing and implementing authorization frameworks (PBAC, ABAC, RBAC).
- Cloud Data Security:
- Advanced knowledge of Azure security services (AWS/GCP a plus).
- Experience with data governance privacy tools (e.g., Microsoft Purview).
- Proficiency in data protection, encryption, and compliance frameworks (GDPR, HIPAA, SOC2).
- Technical Foundations:
- Strong background in .NET, APIs, OAuth/JWT, with working knowledge of C#, JavaScript, Python.
- Familiarity with databases (SQL Server, Postgres, Cosmos DB, Oracle) and their IAM/security models.
- Understanding of enterprise architecture frameworks (TOGAF, Zachman).
- Soft Skills:
- Excellent stakeholder engagement and presentation skills.
- Strong problem-solving mindset and ability to simplify complex IAM challenges.
- Ability to work independently or lead a small architecture team.
Nice to Have
- Certifications: Azure Solutions Architect Expert, Azure Security Engineer, CISSP, AWS/GCP Architect.
- Experience with data loss prevention (DLP), classification, and labeling strategies.
- Exposure to continuous security monitoring, firewalls, and network security integration.
Equal Opportunity Inclusion Statement
Papigen is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or any other characteristic protected by applicable law. We encourage candidates from underrepresented groups to apply.