IAM Consultant / Architect

Insighture is a leading technology consultancy that drives digital transformation for businesses worldwide. With a team of over 85 expert consultants, the company delivers tailored, high-impact strategies and solutions, enabling scalable product engineering. As an AWS partner, Insighture excels in co-integrated cloud services. It has collaborated with more than 50 clients globally, guiding them through cloud adoption, DevOps transformation, enterprise modernisation, and more.

The team’s expertise spans Cloud-Native Development, Solutions Architecture, UI/UX, Quality Engineering, Data Engineering, AI/ML, and DevSecOps. These capabilities empower businesses to achieve impactful and innovative outcomes.

In 2024, Insighture achieved ISO certification and was recognised as a Great Place to Work, earning three prestigious awards: Best Workplace in Sri Lanka, Best Workplace for Technology, and Best Workplace for Young People. Insighture's technology and expertise are embedded in the work of internationally recognised care providers, global freight operations, child protection systems, and health tech platforms across Australia, the UK, and Singapore.

The IAM Consultant/Architect will lead assessment, architecture, design and delivery assurance for enterprise IAM initiatives across hybrid identity (Enterprise and Customer), SSO/MFA & federation, and IGA. The role is accountable for producing secure-by-design architectures, roadmaps, estimates, and delivery plans, ensuring alignment to Zero Trust and compliance expectations typical in regulated / government adjacent environments

Required Experience

• 8–10+ years in IAM with strong architecture/design ownership in enterprise environments.
• Proven delivery across hybrid identity and multi app onboarding/integrations.
• Entra ID / Azure AD + Active Directory integrations; identity protocols and federation.
• Okta: SSO/MFA, lifecycle workflows, tenant governance.
• SailPoint IGA: provisioning, access certifications, role engineering, connectors/integrations.
• Strong grasp of identity standards: SAML, OAuth2, OIDC, SCIM/API integration patterns.
• Ability to produce high quality architecture documentation and communicate to exec + engineering audiences.
• Mentoring/leading engineers and providing architecture assurance.
• Experience in regulated sectors and working in security frameworks.
• Relevant certifications : Okta / SailPoint certifications; security/architecture frameworks.

Key Responsibilities

• Own IAM architecture end to end: discovery → target state → solution design → delivery governance and post deployment support.
• Define patterns for SSO, MFA, federation, lifecycle governance, IGA, and role/access models (RBAC/ABAC).
• Produce HLD/LLD, reference architectures, security patterns, and operational models with clear integration approaches (APIs/SCIM/SAML/OIDC).
• Microsoft Entra ID + AD: hybrid identity design, conditional access patterns, identity security controls, and AD integration considerations.
• Okta: tenant design (prod/dev), SSO/MFA rollout, federation integrations, and Joiner Mover Leaver workflows.
• SailPoint (IGA): identity lifecycle governance, provisioning, certifications/access reviews, role engineering and integrations with directories & enterprise apps.
• Embed Zero Trust thinking and security controls into design decisions, ensuring scalable and compliant identity foundations.
• Ensure IAM designs support auditability and uplift against common AU baselines (e.g., Essential Eight expectations around MFA / privilege restriction as part of broader controls).
• Produce security documentation that supports assurance processes (security requirements mapping, design risk assessments, controls traceability).
• Lead effort estimation and delivery planning: scope decomposition, sizing, milestones, dependency mapping, and rollout strategy.
• Develop practical delivery artifacts: work packages, backlog decomposition, RAID, migration waves, and cutover approach.
• Provide delivery oversight/assurance (quality gates, design authority reviews, and governance reporting).
• Engage senior stakeholders; translate business needs into IAM capabilities and ensure designs are understood and actionable.