Architect

at Bank of America
Location Addison, TX
Date Posted November 25, 2021
Category Default
Job Type Full-time

Description

Job Description:

The Architect role is responsible for guiding on the design, development, and implementation of architectural principles and security policies related to Identity and Access Management (IAM). You will gain a deep understanding of the business partner's requirements for the applications/systems, the security policies, and the related technology offerings of the bank.  These requirements and knowledge will then be used to make determinations and recommendations on the technical and operational feasibility and the security position of the solutions. 

While you may not be architecting the entire application/system, you will work with the business architecture teams and core infrastructure teams on the solution.  You will use your knowledge and abilities as senior technical resource to provide your expertise to the team(s). You will also use your strong communications skills on a regular basis. You will bridge the gap between various business architecture teams designing solutions, the core technology teams with their product capabilities and the required security controls. You will be the primary liaison to collaborate with the various teams to develop a secure solution to enable the business while securing the bank.

Required Skills:
•    Information Technology industry experience in architecting and delivering Identity and Access Management solutions for large enterprises
•    Experience and in-depth knowledge of: 
•    the technology stack such as web, client/server, mobile protocols, multiple operating systems, hypervisors, mainframe, midrange, and distributed systems architecture
•    Identities, access/entitlements and authenticators life cycle management, federation and governance concepts and processes
•    Authentication protocols/methods (Federated/non-Federated – Forms, Certs, LDAP, NTLM, Kerberos, Certs, keytabs, SAML 2.0, OAuth 2.0/OIDC 1.0, FIDO2/UAF/U2F Passwordless, WebSSO)
•    IAM integration architecture/design patterns and practices for  various applications/systems (Operating Systems (Windows, Mac, Unix/Linux), middleware systems, API gateways, web/app servers, containers, virtual machines, databases, file servers, network devices, mobile devices, mainframes, midrange servers and cloud environments)
•    Experience designing highly available, geographically-distributed, dynamically scalable, API-driven services
•    Ability to balance the pragmatic need to deliver while maintaining a high level of architectural purity
•    Strong communication skills

Desired Skills:
•    Experience in Security Engineering, Virtualization, and Automation
•    Experience with distributed systems and cloud services, such as Azure and/or Amazon Web Services
•    Experience with implementing IAM systems and processes at a large financial institution
•    Experience with IAM Protection and Detection Monitoring Controls design, implementation, and testing
•    Knowledge in NIST 800-63 / ISO 27001 Access Controls adoption and implementation
•    Industry recognized Information Security certifications – CISSP, CISM, CRISC, CISA, CCSP, CCSK or any other well recognized vendor specific certifications
 

Job Band:

H5

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

-->

Job Description:

The Architect role is responsible for guiding on the design, development, and implementation of architectural principles and security policies related to Identity and Access Management (IAM). You will gain a deep understanding of the business partner's requirements for the applications/systems, the security policies, and the related technology offerings of the bank.  These requirements and knowledge will then be used to make determinations and recommendations on the technical and operational feasibility and the security position of the solutions. 

While you may not be architecting the entire application/system, you will work with the business architecture teams and core infrastructure teams on the solution.  You will use your knowledge and abilities as senior technical resource to provide your expertise to the team(s). You will also use your strong communications skills on a regular basis. You will bridge the gap between various business architecture teams designing solutions, the core technology teams with their product capabilities and the required security controls. You will be the primary liaison to collaborate with the various teams to develop a secure solution to enable the business while securing the bank.

Required Skills:
•    Information Technology industry experience in architecting and delivering Identity and Access Management solutions for large enterprises
•    Experience and in-depth knowledge of: 
•    the technology stack such as web, client/server, mobile protocols, multiple operating systems, hypervisors, mainframe, midrange, and distributed systems architecture
•    Identities, access/entitlements and authenticators life cycle management, federation and governance concepts and processes
•    Authentication protocols/methods (Federated/non-Federated – Forms, Certs, LDAP, NTLM, Kerberos, Certs, keytabs, SAML 2.0, OAuth 2.0/OIDC 1.0, FIDO2/UAF/U2F Passwordless, WebSSO)
•    IAM integration architecture/design patterns and practices for  various applications/systems (Operating Systems (Windows, Mac, Unix/Linux), middleware systems, API gateways, web/app servers, containers, virtual machines, databases, file servers, network devices, mobile devices, mainframes, midrange servers and cloud environments)
•    Experience designing highly available, geographically-distributed, dynamically scalable, API-driven services
•    Ability to balance the pragmatic need to deliver while maintaining a high level of architectural purity
•    Strong communication skills

Desired Skills:
•    Experience in Security Engineering, Virtualization, and Automation
•    Experience with distributed systems and cloud services, such as Azure and/or Amazon Web Services
•    Experience with implementing IAM systems and processes at a large financial institution
•    Experience with IAM Protection and Detection Monitoring Controls design, implementation, and testing
•    Knowledge in NIST 800-63 / ISO 27001 Access Controls adoption and implementation
•    Industry recognized Information Security certifications – CISSP, CISM, CRISC, CISA, CCSP, CCSK or any other well recognized vendor specific certifications
 

Job Band:

H5

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:
The Architect role is responsible for guiding on the design, development, and implementation of architectural principles and security policies related to Identity and Access Management (IAM). You will gain a deep understanding of the business partner's requirements for the applications/systems, the security policies, and the related technology offerings of the bank.  These requirements and knowledge will then be used to make determinations and recommendations on the technical and operational feasibility and the security position of the solutions. 

While you may not be architecting the entire application/system, you will work with the business architecture teams and core infrastructure teams on the solution.  You will use your knowledge and abilities as senior technical resource to provide your expertise to the team(s). You will also use your strong communications skills on a regular basis. You will bridge the gap between various business architecture teams designing solutions, the core technology teams with their product capabilities and the required security controls. You will be the primary liaison to collaborate with the various teams to develop a secure solution to enable the business while securing the bank.

Required Skills:
•    Information Technology industry experience in architecting and delivering Identity and Access Management solutions for large enterprises
•    Experience and in-depth knowledge of: 
•    the technology stack such as web, client/server, mobile protocols, multiple operating systems, hypervisors, mainframe, midrange, and distributed systems architecture
•    Identities, access/entitlements and authenticators life cycle management, federation and governance concepts and processes
•    Authentication protocols/methods (Federated/non-Federated – Forms, Certs, LDAP, NTLM, Kerberos, Certs, keytabs, SAML 2.0, OAuth 2.0/OIDC 1.0, FIDO2/UAF/U2F Passwordless, WebSSO)
•    IAM integration architecture/design patterns and practices for  various applications/systems (Operating Systems (Windows, Mac, Unix/Linux), middleware systems, API gateways, web/app servers, containers, virtual machines, databases, file servers, network devices, mobile devices, mainframes, midrange servers and cloud environments)
•    Experience designing highly available, geographically-distributed, dynamically scalable, API-driven services
•    Ability to balance the pragmatic need to deliver while maintaining a high level of architectural purity
•    Strong communication skills

Desired Skills:
•    Experience in Security Engineering, Virtualization, and Automation
•    Experience with distributed systems and cloud services, such as Azure and/or Amazon Web Services
•    Experience with implementing IAM systems and processes at a large financial institution
•    Experience with IAM Protection and Detection Monitoring Controls design, implementation, and testing
•    Knowledge in NIST 800-63 / ISO 27001 Access Controls adoption and implementation
•    Industry recognized Information Security certifications – CISSP, CISM, CRISC, CISA, CCSP, CCSK or any other well recognized vendor specific certifications
 
Shift:

1st shift (United States of America)

Hours Per Week: 

40

Drop files here browse files ...