Cybersecurity Identity and Access Management Architect

Fiserv • Columbus • 2h ago

Calling all innovators - find your future at Fiserv.

We're Fiserv, a global leader in Fintech and payments, and we move money and information in a way that moves the world. We connect financial institutions, corporations, merchants and consumers to one another millions of times a day - quickly, reliably, and securely. Any time you swipe your credit card, pay through a mobile app, or withdraw money from the bank, we're involved. If you want to make an impact on a global scale, come make a difference at Fiserv.

Job Title

Fiserv is looking for an Identity and Access Management Cybersecurity Architect to take a lead role in driving the maturity and modernization of the IAM security program managing millions of identities across the entire financial services industry.

This Cybersecurity Architect role will lead the design, integration, and governance of scalable, enterprise-wide IAM solutions. This strategic role is responsible for establishing secure identity foundations across a complex, multi-cloud and hybrid environment. As a critical member of the enterprise cybersecurity architecture team, you will guide the organization toward a Zero Trust security model while ensuring regulatory compliance, operational efficiency, and strong user experience.

The role will involve working with the business leaders and stakeholders across the enterprise to understand the business needs and the anticipated threats against the organization.

The Architect position will work closely with local technology experts and risk managers to assist in solution architecture and risk identification.

Key Responsibilities

Develop and maintain the enterprise IAM reference architecture aligned to Zero Trust, NIST and cloud security frameworks.
Design end-to-end IAM solutions that support Single Sign-on (SSO), Multi-factor Authentications (MFA), Identity Federation (e,g., SAML, OIDC), and Role-Based Access Control (RBAC).
Architect identity lifecycle process across workforce, customer, and third-party identities (joiner/mover/leaver).
Define enterprise IAM roadmap, incorporating AI capabilities and automation and ensure alignment with broader cybersecurity, IT, and business strategies.
Support the development of IAM standards, patterns, and guardrails for secure access across applications, APIs, cloud platforms, and infrastructure.
Collaborate with teams to leverage AI and machine learning to improve access risk detection, behavioral analytics, and anomaly detection
Collaborate with data science and AI governance teams to define policies around ethical AI use in IAM processes

Qualifications

Required

8 - 10 years of related IT experience
Minimum 5 years’ experience in a cybersecurity or architecture role

Bachelor’s Degree at College of Engineering and Technology or equivalent work experience.
Strong understanding on Zero Trust, Identity-as-a-service (IDaaS) and modern access control models
Subject matter expertise in identity governance and management, including both human, non-human and machine identities. Provide technical guidance and support in identifying and implementing next generation IGA products and services
Deep knowledge of authentication protocols (SAML, OAuth2, OIDC, Kerberos), directory services (LDAP, AD) and policy frameworks (ABAC, PBAC).
Deep technical understand of privileged access management and controls. Help research, identify and drive next generation Privileged Access capabilities and solutions
Strong understanding of how technology relates to business, market and industry and applies knowledge to support the needs of critical systems and projects
Able to function independently and perform multiple functions and duties with minimal supervision or guidance. Strong communication and interpersonal skills
Excellent communications, stakeholder engagement, and technical writing skills

Preferred

Certifications: CISSP, CCSP, SABSA, TOGAF, pr relevant IAM certs
Background integrating IAM with DevSecOps, CI/CD pipelines, or containerized platforms (Kubernetes, Docker)
Experience in the payments industry
Experience with IAM in hybrid cloud environments (e.g., Azure, AWS, GCP)

Salary Range

$168,500.00 - $271,200.00

These pay ranges apply to employees in New Jersey and New York. Pay ranges for employees in other states may differ.

It is unlawful to discriminate against a prospective employee due to the individual's status as a veteran.

For incentive eligible associates, the successful candidate is eligible for an annual incentive opportunity which may be delivered as a mix of cash bonus and equity awards in the Company’s sole discretion.

Thank you for considering employment with Fiserv. Please:

Apply using your legal name
Complete the step-by-step profile and attach your resume (either is acceptable, both are preferable).

Our commitment to Equal Opportunity:

Fiserv is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, age, disability, protected veteran status, or any other category protected by law.

If you have a disability and require a reasonable accommodation in completing a job application or otherwise participating in the overall hiring process, please contact AskHR.US@fiserv.com. Please note our AskHR representatives do not have visibility to your application status. Current associates who require a workplace accommodation should refer to Fiserv’s Disability Accommodation Policy for additional information.

Note to agencies:

Fiserv does not accept resume submissions from agencies outside of existing agreements. Please do not send resumes to Fiserv associates. Fiserv is not responsible for any fees associated with unsolicited resume submissions.

Warning about fake job posts:

Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from a Fiserv representative will come from a legitimate Fiserv email address.