Access Management Architect

ABOUT US:

As a world leading provider of integrated solutions for the alternative investment industry, Alter Domus (meaning “The Other House” in Latin) is proud to be home to 90% of the top 30 asset managers in the private markets, and more than 6,000 professionals across 24 jurisdictions.

With a deep understanding of what it takes to succeed in alternatives, we believe in being different in what we do, how we work, and most importantly in how we enable and develop our people. Invest yourself in the alternative, and join an organization where you progress on merit, where you can speak openly with whoever you are speaking to, and where you will be supported along whichever path you choose to take. 

Find out more about life at Alter Domus at careers.alterdomus.com  

Position Overview

We are seeking an experienced Access Management Architect with 12-15 years of professional experience to lead the design, development, and implementation of enterprise identity and access management solutions. The ideal candidate will have extensive hands-on experience with SailPoint Identity Security Cloud (ISC), along with expertise in modern access management platforms including Okta and Auth0. This role requires a proven track record of delivering scalable IAM solutions in complex enterprise environments.

Key Responsibilities

Strategy & Architecture

• Design and architect end-to-end identity and access management solutions using SailPoint Identity Security Cloud (ISC), Okta, Auth0, and other IAM platforms
• Define IAM strategy, roadmap, and governance frameworks aligned with business objectives and security requirements
• Design hybrid IAM architectures integrating IGA (Identity Governance) and access management solutions

Implementation & Development

• Lead hands-on development and configuration of SailPoint ISC modules including access requests, lifecycle management, access certifications, and compliance reporting
• Implement and configure Okta solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Lifecycle Management, and Universal Directory
• Design and deploy Auth0 solutions for customer identity and access management (CIAM), including authentication flows, authorization rules, and custom login experiences
• Design and implement role-based access control (RBAC) models, segregation of duties (SoD) policies, and entitlement management
• Configure identity lifecycle processes including joiner-mover-leaver (JML) workflows and automated provisioning/deprovisioning

Integration & Optimization

• Integrate SailPoint ISC with various target systems including Active Directory, cloud applications (SaaS), databases, and legacy systems
• Implement Okta integrations with enterprise applications using SAML, OIDC, OAuth 2.0, and SCIM protocols
• Optimize IAM processes for performance, scalability, and user experience

Governance & Compliance

• Establish access governance policies, certification campaigns, and compliance reporting frameworks
• Design and implement access review processes to ensure regulatory compliance (SOX, GDPR, HIPAA, etc.)

Leadership & Collaboration

• Provide technical leadership and mentorship to IAM team members and junior developers
• Collaborate with security, IT operations, application teams, and business stakeholders
• Participate in vendor management and engagement with SailPoint, Okta, Auth0 support and professional services

Required Qualifications

• 10+ years of progressive experience in identity and access management
• Minimum 1-3 years of hands-on experience with SailPoint Identity Security Cloud (ISC)
• Minimum 3-5 years of experience with Okta (Workforce Identity and/or Customer Identity)
• Proven experience in full-cycle IAM implementations from requirements gathering to production deployment
• Strong background in enterprise architecture and security frameworks

Technical Skills

• SailPoint ISC Expertise
• Deep knowledge of SailPoint ISC architecture, modules, and capabilities
• Experience with identity lifecycle management, access certification, and compliance reporting
• Core IAM & Security Skills
• IAM Concepts: Expert understanding of identity lifecycle management, RBAC, access certification, provisioning, SSO, MFA, and privileged access management
• Authentication Protocols: Deep expertise in SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), JWT, SCIM 2.0
• Cloud Platforms: Familiarity with AWS, Azure, or GCP IAM services and cloud security best practices
• Directories & Authentication: Experience with Active Directory, Azure AD/Entra ID, LDAP, and directory synchronization
• Application Integration: Hands-on experience integrating IAM with enterprise applications (SAP, Oracle, Workday, ServiceNow, Salesforce, Office 365, Google Workspace, etc.)

Certifications (Preferred)

• SailPoint IdentityIQ or ISC certification
• Okta Certified Professional or Okta Certified Administrator
• CISSP, CISM, or other relevant security certifications
• Cloud certifications (AWS Certified Security, Azure Security Engineer, etc.)
  

Soft Skills

• Excellent communication and presentation skills with ability to engage technical and business audiences
• Strong analytical and problem-solving capabilities
• Proven leadership skills with ability to drive projects independently
• Strong documentation and knowledge management skills
  

Education

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field
• Master's degree or equivalent experience preferred

WHAT WE OFFER:

We are committed to supporting your development, advancing your career, and providing benefits that matter to you.

Our industry-leading Alter Domus Academy offers six learning zones for every stage of your career, with resources tailored to your ambitions and resources from LinkedIn Learning. 

Our global benefits also include:

• Support for professional accreditations 
• Flexible arrangements, generous holidays, plus an additional day off for your birthday!
• Continuous mentoring along your career progression 
• Active sports, events and social committees across our offices 
• 24/7 support available from our Employee Assistance Program 
• The opportunity to invest in our growth and success through our Employee Share Plan 
• Plus additional local benefits depending on your location 

Equity in every sense of the word:

We are in the business of equity, in every sense of the word. For us, this means taking action to ensure every colleague has equal opportunity, valuing every voice and experience across our organisation, maintaining an inclusive culture where you can bring your whole self to work, and making Alter Domus a workplace where everyone feels they belong. 

We celebrate our differences, and recognise that our success relies on diverse perspectives and experiences, as we work towards shared goals and a common purpose. We take pride in creating a workplace where all our people are empowered to be truly invested in the alternative and bring their whole selves to work.

We are committed to ensuring a welcomling recruiting and onboarding process for everyone. Please contact our hiring team if you require any accommodations to make our recruitment process more accessible for you. Alter Domus is an Equal Opportunity Employer: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected veteran status. 

(Alter Domus Privacy notice can be reviewed via Alter Domus webpage: https://alterdomus.com/privacy-notice/)

#LI-HYBRID