Senior Lead Cybersecurity Architect - Cloud IAM

Play a vital role in shaping the future of an iconic company and make a direct impact in a dynamic environment designed for top achievers.

As a Senior Lead Cybersecurity Architect at JPMorgan Chase within the CTC, you will be responsible for promoting the design, architecture, and governance of Identity and Access Management (IAM) solutions across multi-cloud environments for the CTC. This role demands deep expertise in cloud identity provisioning, role management, threat hunting, and privileged access, along with a proven track record in large-scale deployments and adherence to industry standards.

• Architect and oversee identity provisioning, role management, and entitlement processes for cloud infrastructure.
• Architect and manage RBAC, ABAC, PBAC, and role certification frameworks.
• Lead threat hunting initiatives and develop threat models for cloud IAM environments and collaborate with security operations to proactively identify and mitigate risks.
• Design and implement workload identity solutions and privileged access management for cloud workloads and integrate, manage privileged access tools and processes.
• Deploy and manage IAM solutions such as EntraID, Ping, ForgeRock, CyberArk, Hashicorp Vault, and Dileania.
• Evaluate and recommend IAM products and integrations for cloud environments.
• Ensure IAM architectures align with NIST, OWASP, MITRE, and encryption standards and maintain compliance with regulatory requirements and internal policies.
• Develop and execute multi-cloud IAM strategies supporting platforms and lead large-scale IAM implementations and migrations.
• Design and develop custom IAM workflows to automate provisioning, certification, and access reviews.
• Integrate IAM with data security controls and risk management frameworks and conduct risk assessments and implement mitigation strategies.

• Formal training or certification on Cybersecurity concepts and 5+ years applied experience in cybersecurity architecture, with a focus on cloud IAM.
• Proven experience in identity provisioning, role management, and entitlement management for cloud infrastructure.
• Hands‑on experience in threat hunting, threat modeling, and privileged access management.
• Deep expertise with IAM products: EntraID, Ping, ForgeRock, CyberArk, Hashicorp Vault, Delinea.
• Strong knowledge of RBAC, ABAC, PBAC, role certification, and cloud provisioning.
• Familiarity with security standards: NIST, OWASP, MITRE, encryption protocols.
• Experience with multi-cloud strategies and large-scale IAM implementations.
• Proficiency in developing custom IAM workflows and automation.
• Solid understanding of data security, risk management, and compliance frameworks.

• Professional certifications: CISSP, CCSP, AWS/Azure Security, or equivalent.
• Experience in financial services or highly regulated industries.
• Excellent communication, leadership, and stakeholder management skills.
• Ability to mentor and guide junior architects and engineers.

#CTC