Manager, Digital Identity Architect

At Avanade, cybersecurity consultants are innovators, risk-takers, and challengers of the status quo. If you’re a seasoned Digital Identity Architect / Manager, with a proven ability to bridge business requirements with technical solutions, and if you're excited to contribute to enhancing customer experiences while ensuring data security, we encourage you to apply and become a key player in our innovative team.

About the Role in Our Security Practice

In a client-facing consulting role, we are seeking an experienced and highly skilled Customer Identity and Access Management (CIAM) Architect to join our dynamic team. You will work on exciting projects that transforms our client’s technology ecosystem with a focus on the Microsoft Digital Identity capabilities as well as other leading market vendors (e.g., Saviynt, One Identity, Okta, Ping Identity etc.).

The ideal candidate should possess a deep understanding of various IAM and CIAM technologies, with a proven track record of working collaboratively with multiple business stakeholders to define customer engagement journeys and experiences. The CIAM Architect will play a pivotal role in integrating CIAM solutions with ERP and CRM technologies (e.g., SAP S/4HANA, Microsoft Dynamics 365, Salesforce etc.). The candidate should be adept at comprehending existing customer capabilities, including custom applications, to architect solutions that maximize client investments while ensuring scalability and security. As a member of our security practice, you will work for both Avanade and Accenture clients, ranging from medium to large global enterprise clients. 

About You

You are a Digital Identity Architect/Manager, interested in joining our security practice, and are:  

• Experienced in consulting and advisory discussions with clients and other consulting firms.    

• Talented in designing and implementing technology solutions.

• Experienced in working with or leading medium to large teams.    

• Able to collaborate within a large global organization.     

• Seen as a role model and acts as a leader. 

• Have proven experience as a CIAM Architect or in a similar role, demonstrating successful implementation of CIAM solutions in complex environments.

• Have expertise in various IAM and CIAM technologies, including Microsoft Identity solutions, IBM Security Verify, Okta, Ping Identity, ForgeRock, and more.

• Hands-on experience with integrating CIAM solutions with ERP (e.g., SAP S/4HANA) and CRM (e.g., Salesforce) technologies.

• Strong understanding of customer engagement strategies, user experience (UX), and user journey mapping.

• Familiarity with custom application development related to IAM/CIAM capabilities.

• In-depth knowledge of authentication protocols (OAuth, SAML, OpenID Connect), multi-factor authentication (MFA), and single sign-on (SSO).

• Experience with API security and authorization mechanisms.

• You take full accountability to lead and manage projects, providing operational leadership for work efforts requiring significant coordination. 

• You create and implement work plans for assigned projects, programs and clients against established operational objectives. 

• You lead small to large project general design and delivery (solution architecture and associated infrastructure or business and functional requirements) 

Client Impact 

• You solve complex problems that consistently span work domains, requiring considerable judgement of contextual factors.

• You have wide latitude in approach to work, including ability to reshape work plans, guided by professional best practices and domain expertise. 

• You develop a strong client relationship and contribute to sales outcomes. 

• You work independently, with occasional validation of work efforts against strategic and operational objectives. 

• You orchestrate the development lifecycle and facilitate building specialty skills as required by the project. 

• You ensure that quality tools and processes are in place and are implemented by the development team. 

• You act as a Delivery Lead/ Technical Architect for small and medium projects. 

What We Need

Subject matter thought leader, who has experience working on the multiple platforms along with:   

• Experience collaborating with business stakeholders to define and design customer engagement journeys and experiences using CIAM solutions.

• Assess existing IAM/CIAM capabilities, including custom applications, and strategize solutions for decoupling to enhance client investments.

• Provide technical expertise in CIAM, guiding the selection and integration of technologies that align with business objectives and security requirements.

• Architect and implement CIAM solutions that enhance customer onboarding, authentication, authorization, and overall security.

• Design identity lifecycle management processes, encompassing registration, provisioning, de-provisioning, and user data synchronization.

• Evaluate and recommend CIAM technologies for implementation, including Microsoft Identity solutions, IBM Security Verify, Okta, Ping Identity, ForgeRock, and other relevant platforms.

• Lead the integration of CIAM solutions with ERP (e.g., SAP S/4HANA) and CRM (e.g., Salesforce) technologies, ensuring seamless data flow and user experience.

• Collaborate with cross-functional teams to ensure the successful deployment of CIAM solutions, considering scalability, performance, and security.

• Develop and maintain technical documentation, including architecture diagrams, integration guidelines, and solution blueprints.

• Experience with modern authentication protocols and integrating applications using those protocols. 

• Proven experience in the design and implementation of identity solutions, such as IBM Security Verify, Azure Active Directory P1 & P2 (which includes conditional access, application single sign on, and SCIM provisioning, as well as advanced security controls such as user and behavioral analytics); 

• Proven understanding of Active Directory and legacy authentication protections (LDAP, Kerberos, NTLM, etc.); 

• Proven understanding of Azure Active Directory and Azure Active Directory Domain Services (and respective scenarios);

Third Party Tools and Cross Related Experience 

IAM/IDP Tools – IBM Security Verify, Okta, Ping Identity, ForgeRock, 

CASB – MCAS 

Microsoft skills & Industry knowledge 

Azure Active Directory 

Active Directory Domain Services/ADFS 

Azure AD External Identities (B2C/B2B) 

Privileged Access Management (PIM / PAM) 

Single Sign-On (SSO) 

Multi Factor Authentication (MFA) 

Identity Governance  

Preferred Certifications 

SC-900 Microsoft Security, Compliance, and Identity 

SC-400 Microsoft Information Protection Administrator 

SC-300 Microsoft Identity and Access Administrator 

MS-500 Microsoft 365 Security Administration 

AZ-500 Microsoft Azure Security Engineer Associate 

MS-100 Microsoft 365 Identity & Services 

CISSP 

CISSP – MGR+ 

CSSLP – MGR+ 

SSCP - Analyst/ SR Analysts 

CCSP - Cons / Sr Cons/MGR+ 

Other IAM/CIAM vendor certifications

Our Benefits

• Opportunity to work for Microsoft’s Global Alliance Partner of the Year (17 of the last 20 years)  

• Exceptional development and training to help you understand Microsoft's broader Security, Compliance, and Identity (SCI) ecosystem with a minimum 80 hours/year of training and paid certifications.  

• Avanade University – real-time access to technical and skilled resources globally  

• Dedicated career adviser to encourage your progression.  

• Reward and recognition program  

• Full benefits package including medical coverage, income protection policy, extended benefits, bonus program, generous retirement plan, and much more.