Role Purpose:
The IAM Solution Designer is responsible for translating business security and technical requirements into detailed solution designs for Identity Access Management capabilities The role ensures IAM solutions are aligned with architectural standards security policies and operational needs and that they integrate effectively with enterprise systems applications and cloud platforms
The Solution Designer works closely with architects business analysts engineers and vendors to ensure IAM capabilities are designed correctly and delivered successfully
Key Responsibilities:
- Solution Design
- Produce detailed solution designs for IAM capabilities including
- Identity lifecycle JoinerMoverLeaver
- Access request and approval workflows
- Access certification
- Rolebased access control RBACABAC
- SSO MFA and federation
- Privileged Access Management PAM
- Directory and identity data integrations
- Translate highlevel architecture into implementable designs and configuration specifications
- Define data flows attribute mappings provisioning logic and integration patterns
- Requirements Analysis
- Work with Business Analysts Security and Architecture to understand and refine requirements
- Validate feasibility and identify design options constraints and tradeoffs
- Ensure designs meet functional and nonfunctional requirements performance security resilience
- Integration Technical Leadership
- Design integrations between IAM platforms and enterprise applications HR systems directories and cloud services
- Define API SSO and federation patterns using SAML OAuth2 OIDC SCIM and related standards
- Provide technical guidance to engineering teams during build and configuration
- Support role mining access modelling and governance design activities
- Documentation Governance
- Produce highquality design artefacts including
- Solution Design Documents SDDs
- Data flow diagrams
- Integration specifications
- Configuration guides
- Interface contracts
- Ensure designs align with enterprise architecture and security governance
- Participate in design reviews and architecture boards
- Stakeholder Vendor Engagement
- Work closely with IAM vendors and implementation partners to ensure alignment with design intent
- Provide technical input into SOWs vendor deliverables and integration requirements
- Collaborate with application owners to ensure smooth onboarding into IAM services
- Security Compliance Risk
- Ensure IAM designs support regulatory audit and internal security policy requirements
- Embed least privilege Zero Trust and strong identity hygiene principles into solution designs
- Identify design risks and propose mitigation strategies
- Support Delivery Testing
- Support engineering teams during build configuration and integration
- Assist with test planning test case definition and defect triage
- Validate that delivered functionality matches the approved design
Essential skills:
- Strong experience designing IAM solutions in mediumtolarge organisations
- Solid understanding of IAM domains
- Identity lifecycle management
- Access governance
- RBACABAC
- SSO MFA federation
- Privileged access
- Directory services AD Azure AD
- Handson experience with IAM platforms particularly SailPoint and Azure AD Okta or CyberArk
- Strong understanding of authentication and authorisation standards SAML OAuth2 OIDC SCIM
- Experience designing integrations with HR systems cloud platforms and enterprise applications
- Ability to produce clear detailed and technically accurate design documentation
- Strong collaboration and communication skills
Desirable Skills:
- Experience in regulated or critical infrastructure sectors
- Exposure to Zero Trust architectures and cloud identity models
- Experience with role mining access modelling and identity governance maturity assessments
- Familiarity with DevOps automation and CICD pipelines for IAM deployments
