Title:  IAM Architect

Requisition ID: 262678

 Salary Range:  -  

Please note that the Salary Range shown is a guideline only. Salary offered may vary based on factors, including, but not limited to, the successful candidate’s relevant knowledge, skills, and experience.

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.

Purpose

We are seeking an IAM Architect to join Information Security’s Identity Access Management Team. The ideal candidate has strong leadership skills and in-depth knowledge of the IAM security domain, with a strong focus of authentication technologies, industry standards, and emerging protocols.  Candidate to deliver Scotiabank’s next generation CIAM platform; in alignment with long term product roadmap, as part of a large-scale transformation.  The Identify Access Management (IAM) Architect will work with business channels and product team to understand the challenges facing them, provide solutions to these challenges and recommend architecture and design to bring modern capabilities to various IAM platforms.

What You'll Do

•    Responsible for the architecture and design of new features/capabilities Scotiabank is looking to introduce into the IAM platform (ForgeRock / Ping / PingOne Advanced Identity Cloud).
•    Provide subject matter expertise surrounding the various security controls (MFA, Device Binding, Session Control) within ForgeRock\Ping platform.
•    Work with application domain architects to design solutions and patterns for migration of business applications to next gen CIAM capabilities (on-prem or SaaS platforms).
•    Review the business requirements (the “what”) provided by the IAM Product team and provide the overall architectural design (the “how”) to the IAM Engineering team to build into the IAM service.
•    Provide required design artifacts to key stakeholders which clearly outlines the solution, components involved, key decisions, and time and cost estimates.
•    Closely collaborate with IAM Engineering partners in all aspects of the design and ensure alignment and synergy regarding proposed solution.
•    Evaluate new authentication capabilities introduced into the ever-changing IAM landscape and account for what is applicable into proposed designs (short-term and long-term).
•    Partner with various cross functional architect teams (IAM, security, business channel, fraud) to solidify design approach which aligns with best practices and strategic direction of the platform.
•    Collaborate with stakeholders across the Bank - technology, security architecture, security advisory, fraud, compliance and business channel teams – to provide enterprise grade solutions which meet the business and security requirements.
•    Represent the CIAM Architecture team on various governance boards but providing both expertise and the required artifacts necessary to ensure stakeholder approval.
•    Design based on strong CIAM expertise that aligns with industry standards (FIDO, OIDC, OAUTH), best practices (MFA, NIST 800-63B) and a forward-looking mentality (Passkeys, VCs, DIDs).

What You'll Bring

•    10+ years in IAM space with 3+ years in an Architect Role.
•    5+ years of experience working within CIAM space (ForgeRock, Okta, Ping Identity, Microsoft Entra ID, etc.)
•    3+ years of hands-on experience with ForgeRock \ PingAM \ PingOne Advanced Identity Cloud.
•    Experience with REST APIs, JSON, and scripting languages (Python, JavaScript, NodeJS).
•    Experience with programming languages (Java), SIEM integrations and security monitoring.
•    Strong understanding of various MFA technologies along with pro/con of each.
•    Experience developing and documenting CIAM directives, standards and policies.
•    Experience with designing and implementing authentication and credential management flows based on channel requirements.
•    Experience in scoping, sizing and prioritizing solutions for a project.

Nice to Haves:

•    Previous experience working within Banking Sector.
•    Experience of preparation of presentation decks and presenting to senior leadership.
•    Security certifications such as CISSP, CCSP and vendor specific IAM certifications are preferred.

Interested?

If your experience is closely related but doesn’t align perfectly with every qualification, we do encourage you to apply - you might be the right candidate for this or other roles at Scotiabank! 

At Scotiabank, every employee is empowered to reach their fullest potential, respected for who they are and, embraced for their differences. That’s why we work to grow and diversify talent and engage employees in a performance-oriented culture. 

What's in it for you? 

Scotiabank wants you to be able to bring your best self to work – and life, every day. With a focus on holistic well-being, our many flexible benefit programs are designed to help support your unique family, financial, physical, mental, and social health needs. 

#Dallas

Location(s):  United States : Texas : Dallas

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.  

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.

Scotiabank is an equal opportunity employer.  We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other characteristic protected by federal, state, or local law.