Position Summary:

Pax8 is seeking an experienced and highly skilled Solutions Architect specializing in Access Control and Identity Management. Reporting to the Director of Enterprise Architecture, this role will play a critical part in designing and implementing solutions to enhance security and streamline access management for our internal employees across all systems and tooling. The ideal candidate will have a strong background in Azure AD and extensive knowledge of Single Sign-On (SSO) integrations, with a commitment to continuously improving the user experience while maintaining required security controls and guidelines. This role cares for our digital identities in any service or platform which recognizes them.

Essential Responsibilities:

• Solution Design- Collaborate with cross-functional teams to design and architect Access Control and Identity Management solutions that meet the specific needs of our users
• Documentation- Create comprehensive documentation for solutions, including architecture diagrams, implementation plans and user guides
• Security Compliance- Ensure that all solutions align with industry security standards and compliance requirements
• Continuously review and improve processes to increase efficiency and quality
• Drive your own personal development and performance improvements by participating in learning paths on Elev8, taking part in Pax8 L&D programs, receiving peer or manager coaching, taking on stretch projects or on the job training

Ideal Skills and Experience:

• Bachelor's degree in Computer Science, Information Technology, or a related field
• Proven experience in an Architecture role with a focus on Access Control and Identity Management.
• Able to design Identity Lifecycle, systems and methods of propagation
• Expertise in industry standard security and compliance requirements (SOC II, ISO, etc.)
• Thorough understanding of SSO integration protocols (SAML, OIDC, OAuth, WS-F, WS-T, Basic Auth, AAD B2B, AAD App Proxy, AAD Join, AAD Seamless SSO
• Expert knowledge of Microsoft granular delegated admin privileges (GDAP)
• Experience with multi-location Microsoft Partner Center and Azure tenant management
• Experience with multi-factor authentication (MFA) methods (Knowledge, Physical, Biometric, Geo, Risk, etc.)
• Experience with project management tooling (e.g. Confluence, Jira) and methodologies (agile, kanban)
• Experience using engineering tools; python, powershell, sql, jupyter, awscli, github, RESTful APIs, MS graphAPI
• Proven ability to deliver high quality documentation and architectural diagrams/plans
• Ability to build partnerships and work collaboratively with others to meet shared objectives. Empathetic customer service
• Stong problem-solving and analytical skills
• Experience with AzureAD, ServiceNow HRSD, AWS IAM, Google Workspace Identity preferred

Required Education & Certifications:

• B.A./B.S. in related field or equivalent work experience
• Relevant certifications, such as
  Microsoft Certified: Azure Solutions Architect
  Microsoft Certified: Identity and Access Administrator Associate
  Certified Information Systems Security Professional (CISSP)
  Certified Information Security Manager (CISM)
  AWS Certified Solutions Architect – Professional
  AWS Certified Security - Speciality

Compensation:

#LI-Remote #LI-CL1 #BI-Remote #DICE-C