Cocolevio logo

IAM Security Architect

Cocolevio
Full-time
Remote
$100,000 - $140,000 USD yearly
Full-time
Description

Who we are...

Cocolevio is a modern technology solutions company, and our vision is to enable a future where all businesses have the modern technology they need to compete in their market. Our mission is to provide platform-agnostic solutions to our clients, so they can leverage modern technologies—Cloud, AI, IoT, Big Data—to grow, increase profitability, and improve operational efficiency. Visit our website at cocolevio.com to learn more about what we do.


Who we're looking for...

We are looking for a "IAM Security Architect " to join our team. This role will start off directly supporting one of our largest clients in the Finance/Mortgage industry (BFS), with the ability to work with other clients that Cocolevio supports.


Requirements

Responsibilities:

  • Design and implement robust IAM platforms and technologies, including but not limited to Ping Identity, Microsoft Azure AD, ForgeRock, DUO, and CyberArk.
  • Develop and enforce security architecture strategies to control access using Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and Policy-Based Access Control (PBAC).
  • Lead the design and development of identity governance and administration (IGA) security architectures, including tools like SailPoint IQ.
  • Ensure strong authentication protocols are implemented, including SAML, OpenID Connect, OAuth, Multi-Factor Authentication (MFA), and Risk-Based Authentication.
  • Architect and design IAM solutions within AWS, and manage the migration of existing workloads to AWS.
  • Deeply understand and configure AWS Identity Center and IAM roles, policies, and permissions..

Requirements (Must Have):

  • Bachelor's degree in Computer Science, Information Technology, or related field.
  • 7+ years of experience in Azure Security, with a focus on security architecture and engineering.
  • Proven experience in designing and solving IAM platforms and technologies such as Ping Identity, Microsoft Azure AD, ForgeRock, DUO, and CyberArk.
  • Strong security architecture skills with a focus on RBAC, ABAC, and PBAC.
  • Demonstrated expertise in designing and taking ownership of IGA security architecture and roadmap, such as SailPoint IQ.
  • Excellent knowledge of authentication protocols including SAML, OpenID Connect, OAuth, MFA, and Risk-Based Authentication.
  • Expertise in architecting and designing IAM solutions in AWS, including migration of existing workloads to AWS.
  • Deep understanding of AWS Identity Center, IAM roles, policies, and permissions.


Note: Candidates must be able to commute regularly to our Northern Virginia office for this hybrid role. Only apply if you can report onsite to our Northern Virginia location.


Compensation: As required by applicable state or local law, the pay range for this position is $100,000 to $140,000. Please note that the range may extend from the lowest to the highest hourly wage or salary that the employer in good faith believes at the time of the posting it would pay.


Benefits: Cocolevio provides the following benefits to eligible employees:

  • Medical Insurance, Dental Insurance, Vision Insurance
  • 401(k) Retirement
  • Life Insurance and Disability Insurance
  • Paid Time off (PTO)
  • Holiday Pay
  • Bonus Plan

The diversity of Cocolevio employees is a tremendous asset. We are firmly committed to providing equal opportunity in all aspects of employment and will not tolerate any illegal discrimination or harassment based on age, race, gender, religion, national origin, disability, marital status, covered veteran status, sexual orientation, status with respect to public assistance, and other characteristics protected under state, federal, or local law and to prevent those who encourage, assist, or induce discrimination or force others to discriminate.


Accessibility: If you need an accommodation as part of the employment process please contact: HR@cocolevio.com


Disclaimer: The above description is meant to illustrate the general nature of work and level of effort being performed by individual’s assigned to this position or job description. This is not restricted as a complete list of all skills, responsibilities, duties, and/or assignments required. Individuals may be required to perform duties outside of their position, job description or responsibilities as needed.