Senior Lead Cybersecurity Architect - Cloud IAM

Play a vital role in shaping the future of an iconic company and make a direct impact in a dynamic environment designed for top achievers.

As a Senior Lead Cybersecurity Architect at JPMorgan Chase within the CTC, you will be responsible for promoting the design, architecture, and governance of Identity and Access Management (IAM) solutions across multi-cloud environments for the CTC.

This role demands deep expertise in cloud identity provisioning, role management, threat hunting, and privileged access, along with a proven track record in large-scale deployments and adherence to industry standards.

Job responsibilities


* Architect and oversee identity provisioning, role management, and entitlement processes for cloud infrastructure.


* Architect and manage RBAC, ABAC, PBAC, and role certification frameworks.


* Lead threat hunting initiatives and develop threat models for cloud IAM environments and collaborate with security operations to proactively identify and mitigate risks.


* Design and implement workload identity solutions and privileged access management for cloud workloads and Integrate, manage privileged access tools and processes.


* Deploy and manage IAM solutions such as EntraID, Ping, ForgeRock, CyberArk, Hashicorp Vault, and Dileania.


* Evaluate and recommend IAM products and integrations for cloud environments.


* Ensure IAM architectures align with NIST, OWASP, MITRE, and encryption standards and maintain compliance with regulatory requirements and internal policies.


* Develop and execute multi-cloud IAM strategies supporting platforms and lead large-scale IAM implementations and migrations.


* Design and develop custom IAM workflows to automate provisioning, certification, and access reviews.


* Integrate IAM with data security controls and risk management frameworks and conduct risk assessments and implement mitigation strategies.

Required qualifications, capabilities, and skills


* Formal training or certification on Cybersecurity concepts and 5+ years applied experience in cybersecurity architecture, with a focus on cloud IAM.


* Proven experience in identity provisioning, role management, and entitlement management for cloud infrastructure.


* Hands-on experience in threat hunting, threat modeling, and privileged access management.


* Deep expertise with IAM products: EntraID, Ping, ForgeRock, CyberArk, Hashicorp Vault, Delinea.


* Strong knowledge of RBAC, ABAC, PBAC, role certification, and cloud provisioning.


* Familiarity with security standards: NIST, OWASP, MITRE, encryption protocols.


* Experience with multi-cloud strategies and large-scale IAM implementations.


* Proficiency in developing custom IAM workflows and automation.


* Solid understanding of data security, risk management, and compliance frameworks.

Preferred qualifications, capabilities, and skills


* Professional certifications: CISSP, CCSP, AWS/Azure Security, or eq...