Source Job

United States

  • Design and lead the architecture of CIAM and IAM solutions for customer, partner, and workforce identity use cases.
  • Define reference architectures and integration patterns using protocols like OAuth 2.0, OpenID Connect, SAML, and SCIM.
  • Drive integration across platforms such as Okta, Auth0, Microsoft Entra ID, AWS, and Salesforce to ensure secure and scalable identity experiences.

Identity And Access Management OAuth 2.0 OpenID Connect Okta Microsoft Entra ID

20 jobs similar to Identity Application Architect

Jobs ranked by similarity.

United States

  • Define architecture and technical direction for a large-scale IAM platform supporting authentication, authorization, and identity governance.
  • Lead design and implementation of secure, scalable identity systems including RBAC, ABAC, and multi-tenant architectures.
  • Partner with Security, Compliance, and Product teams to meet enterprise governance and regulatory requirements.

Jobgether uses AI-powered matching to connect candidates with hiring companies. They process applications and shortlist top candidates for partner companies, focusing on efficient and fair hiring.

United States

  • Design, implement, and maintain PingFederate, PingAccess, and PingDirectory solutions in a regulated financial services environment.
  • Administer SSO, federation, and authentication services using SAML 2.0, OAuth 2.0, and OpenID Connect.
  • Collaborate with security, infrastructure, and application teams to integrate enterprise applications into the IAM ecosystem.

Jobgether uses AI-powered matching to connect candidates with job opportunities. The platform processes applications to identify top-fitting candidates and shares them with hiring companies.

United States

  • Lead the design and evolution of Kaseya’s IAM platform, defining architecture and technical direction across multiple products.
  • Build and operate core IAM platform services, APIs, and integrations for authentication, authorization, and identity governance.
  • Partner with Security, Compliance, and Product teams to meet governance and regulatory requirements while mentoring engineers.

Kaseya is the leading provider of AI-powered IT management and cybersecurity software, serving Managed Service Providers (MSPs) and internal IT organizations worldwide. Backed by Insight Partners, Kaseya has experienced sustained double-digit growth, supports customers in over 20 countries, and manages over 15 million endpoints worldwide.

Latin America

  • Design and develop scalable IAM solutions, including identity provisioning and access management workflows.
  • Integrate corporate directories, cloud environments, and third-party applications with the core IAM platform.
  • Configure Single Sign-On (SSO), Multi-Factor Authentication (MFA), and federated identity protocols.

Nortal is a digital transformation company delivering complex solutions for global enterprises and public sector organizations. They have a close-knit remote team across Latin America and foster a culture of autonomy and open communication.

US Unlimited PTO

  • Configure end-to-end SAML 2.0 and OIDC SSO integrations and lead technical coordination with third-party vendors.
  • Set up SCIM 2.0 provisioning and implement group-based Role-Based Access Control (RBAC) within Okta.
  • Manage daily access operations, including provisioning/deprovisioning lifecycles and authoring CAB tickets for production changes.

EverOps is an Embedded Service Provider that partners with enterprise engineering and operations teams to solve complex delivery and service issues. They are a remote-first company that values ownership and collaboration.

US

  • You will administer and configure core IAM platforms and integrate applications using protocols like SAML, OAuth, OIDC, and SCIM.
  • You will define the identity strategy, architect enterprise-grade IAM toolsets, and build seamless operational processes.
  • You will collaborate with cross-functional teams to design SSO and MFA solutions and ensure a friction-free user experience.

We have been providing clean energy solutions throughout the U.S., Canada, and Mexico since 1987. We are a market-leading independent power producer and service provider with an innovative and collaborative team environment.

$175,000–$210,000/yr
US

  • Lead enterprise authentication services across multiple Microsoft Entra ID tenants, ensuring secure and reliable access for workforce and partner applications.
  • Partner with cybersecurity, infrastructure, and application teams to design and implement MFA, SSO, and conditional access patterns with modern protocols.
  • Manage a team of direct reports and offshore staff, driving automation, vendor relationships, and operational metrics for authentication platforms.

NBCUniversal is a world-leading media and entertainment company, creating content across film, television, and streaming, and operating theme parks and consumer products. As a subsidiary of Comcast Corporation, they have a large global workforce and foster an inclusive culture with opportunities for community service and talent development.

US

  • Design, configure, and maintain Identity Provider (IdP) solutions for SSO and federated identity access across enterprise systems.
  • Administer and optimize Active Directory (AD) and LDAP environments, including schema management and access control.
  • Develop and maintain CI/CD pipelines to automate deployment of identity infrastructure and related applications.

Jobgether is an AI-powered job matching platform that connects candidates with hiring companies. They focus on objective and fair application reviews and operate with a small, technology-driven team.

$212,000–$237,000/yr
US Unlimited PTO

  • Build and improve core parts of Temporal Cloud's identity platform including authentication (OAuth 2.0/OIDC, SAML) and authorization (RBAC and policy-based access).
  • Integrate with enterprise identity providers (Okta, Entra ID, Google Workspace) and support user provisioning (SCIM) while addressing identity threats like token replay.
  • Write clear architecture and design docs, and contribute to the team's technical direction.

Temporal is an open source programming model that simplifies code and makes applications more reliable. We are a growing team of curious, driven, and collaborative individuals building the reliable foundation for every developer's toolbox.

US

  • Administer Okta and Entra ID/AD, implementing SSO, MFA, and Conditional Access.
  • Design secure API authentication and automate identity lifecycle processes.
  • Operate privileged identity management and integrate identity telemetry into SIEM/XDR.

ARS-Rescue Rooter is a home services company that provides plumbing, heating, and cooling services. The company is an equal opportunity employer with thousands of employees and a focus on security and technology.

Brazil

  • Design, configure, and maintain Okta policies, authentication flows, access controls, and token configurations for applications and APIs.
  • Integrate enterprise applications with Okta using secure authentication and authorization standards, and support migration of configurations between environments.
  • Troubleshoot and resolve authentication and identity-related issues, collaborating with application and infrastructure teams to implement secure solutions.

This posting is on behalf of a partner company that manages applications. The role is focused on designing and operating identity and access management solutions using Okta across distributed environments.

US Unlimited PTO

  • Architect and manage HR-driven provisioning with Okta and Workday for secure JML lifecycles.
  • Engineer cloud identity architecture including AWS IAM, cross-account role assumption, and identity federation.
  • Implement zero-trust device posture checks and contextual access policies using Open Policy Agent.

SmithRx is a rapidly growing, venture-backed Health-Tech company disrupting the expensive and inefficient Pharmacy Benefit Management (PBM) sector. With hundreds of thousands of members onboarded since 2016, we pride ourselves on a mission-driven and collaborative culture that inspires our employees to do their best work.

Europe 6w PTO

  • Define and own the technical architecture for the Identity squad’s authentication systems, including edge authentication redesign.
  • Lead the design and implementation of large-scale, multi-quarter initiatives spanning multiple services and teams.
  • Mentor and develop senior engineers, providing technical guidance and support for their professional growth.

Grafana Labs is the company behind the open observability cloud, providing a fully managed platform for monitoring and analyzing data. With over 1,600 team members across 40+ countries, we are a 100% remote company fostering a collaborative, open-source culture.

US 12w maternity 12w paternity

  • Lead high-performing engineering teams in building identity security platforms (ITDR and ISPM) for millions of users globally.
  • Define technical vision, architecture, and engineering standards for scalable, identity-focused cybersecurity products.
  • Collaborate with product, security, and architecture teams to drive roadmap execution and deliver customer value.

Jobgether is an AI-powered job matching platform that connects candidates with hiring companies efficiently. As a partner company, we manage applications and next steps for this role, operating in a remote-first, high-growth environment focused on cybersecurity.

Europe 6w PTO

  • Manage privileged access controls, identity governance, and security across cloud and enterprise environments.
  • Design and implement automation for identity workflows, access validation, and remediation activities.
  • Collaborate with Security, Infrastructure, and Engineering teams to strengthen identity security.

Sporty Group is a remote-first company focused on building scalable and secure software systems. They have a distributed team with a culture of sustainability and performance-based bonuses.

US Canada

  • Design and deploy access controls, authorization policies, and automated workflows on the Veza platform.
  • Require 5 to 10+ years of IAM experience with proficiency in cloud/SaaS access management.
  • Strong customer-facing consulting or engineering skills to advise CISOs and lead deployments.

Veza is the pioneer in identity security, built to answer who can take what action on data, mapping over 30 billion access permissions across SaaS, cloud, and on-prem applications. Founded in 2020 and headquartered in Redwood City, California, Veza is now part of ServiceNow, providing enterprise scale and resources with a mission-driven focus.

$255,000–$345,000/yr
US

  • Design and guide Identity, Credential, and Access Management (ICAM) solutions for secure, mission-driven environments.
  • Collaborate with engineering teams and federal customers to define scalable, compliant architecture solutions.
  • Evaluate technologies, shape system design decisions, and ensure alignment with enterprise security standards.

Our partner is a technology firm focused on identity and access management solutions for secure, mission-driven environments. They are a mid-sized organization that fosters a fast-paced, Agile culture with a focus on cybersecurity and government projects.

Netherlands 6w PTO

  • Design, implement, and manage privileged access controls including Privileged Identity Management (PIM) and just-in-time (JIT) access.
  • Lead access review and certification processes, ensuring remediation actions are completed and access remains aligned with least-privilege principles.
  • Manage the lifecycle of service accounts, machine identities, secrets, API keys, and credentials, including rotation, monitoring, and decommissioning.

This position is listed on behalf of a partner company, who manages all applications and next steps. The partner is looking for an Identity & PAM Security Engineer based in Netherlands. The role sits at the core of enterprise security, focusing on how identities are governed, accessed, and protected across critical systems and infrastructure.

US 4w PTO

  • Architect and deliver a greenfield permission service from design doc to production, covering data model, policy evaluation, and enforcement APIs.
  • Define AuthN/AuthZ standards for 180+ product domains, including token strategy and access control patterns.
  • Drive architectural decisions and mentor engineers while partnering with product and security teams.

BambooHR builds a people intelligence platform that transforms HR and sets people free to do great work. The company is a proven market leader with a values-driven culture recognized by Inc and Salt Lake Tribune, offering flexibility and growth.

$190,800–$267,100/yr
United States Unlimited PTO

  • Build backend services for authentication, authorization, and identity to serve millions of daily users.
  • Mentor and coach fellow engineers while collaborating with cross-functional teams.
  • Drive high-leverage projects that improve system performance, scalability, and architecture.

Reddit is a community of communities built on shared interests, passion, and trust, hosting some of the most open conversations on the internet. With over 100,000 active communities and about 126 million daily active visitors, it is one of the largest sources of information online, fostering a flexible and remote-first culture.