Clicking on the following button will update the content below

Portfolio Architect - Identity and Access Management
BrandBest Buy

The Portfolio Architect - Identity and Access Management is responsible in developing long-term strategies for a portfolio of technical capabilities by using a set of architecture artifacts, socializing and communicating the strategy to capability owners and senior leadership, and ensuring the strategy is followed, making necessary adjustments based on market pressures during strategy execution. The Portfolio Architect will also provide key solution architecture for their respective portfolios in alignment those strategies. Individuals in this role need to have and exhibit strong leadership skills and a commitment to the success of the company.

The Portfolio Architect - Identity and Access Management is responsible for managing a portfolio of several technical capabilities – This includes assessing, planning (1 – 5 years), selling of ideas and concepts, and governing current projects against standards and patterns.

The position will also be responsible for understanding and meeting with customers of their portfolio’s technical capabilities to understand their needs, conceptualizing and designing detailed solutions to meet those needs, and enabling the organization to meet business objectives.

Provides technical leadership to ensure technical design and implementation are aligned with business requirements. Serves as the primary point of contact between the project team and the Architecture organization. Ensures compliance of technology solutions with architectural standards and patterns. Leads and/or participates in technology proofs-of-concept.

Create and Manage Architecture Artifacts
  • Portfolio taxonomy
  • Roadmaps
  • Standards, patterns, and decision workflow
  • Position papers, whitepapers, and strategies
Assesses Technology
  • Conducts assessments of current business and technology architectures
  • Conducts maturity assessment of assigned portfolios and asset readiness (e.g. availability, resiliency, DR)
  • Identifies and documents any risks, issues or critical success factors and creates Decision Documents as necessary.
  • During project implementations, align with Project Management and ensure budget and resource commitment to support roadmaps.
  • Coach, mentor and support engineering teams in developing architectures.
Project Architecture
  • Partners with business analysts, systems analysts and engineers in gathering and reviewing non-functional requirements.
  • Identifies key business and technology drivers that impact architectures, including end-user requirements, existing application environment (including legacy and packaged systems), and performance/availability requirements.
  • Collaborates with application and infrastructure teams to understand scope and requirements.
  • Assists projects within assigned portfolios with creating high level architecture blueprints and shepherding through the Architecture approval process.
Best Practices
  • Supports and helps mature the Architecture practice – framework, definitions, standards, patterns, and processes.
  • Researches and maintains a deep understanding of current and emerging technologies to solve business problems.
Required Qualifications
  • 8 years of IT experience.
  • 3+ years of relevant architecture experience.
  • Experience with operations and deployment methodologies and techniques (e.g. TOGAF, Zachman, COBIT, Agile, ITIL).
  • 2+ years of experience in solution architecture designs and concepts.
  • Microsoft Identity and Access Management (IAM)
    • 5 years of deep Microsoft Active Directory experience including the design of an Active directory forest with multiple domains and several sites.
    • Working knowledge of Azure identity management (AADC, AAD, AADDS)
    • Working knowledge with Microsoft PKI (or equivalent PKI).
    • Knowledge of Microsoft Red Forest concepts including Microsoft provisioning and identity systems.
    • Full understanding working with Federation protocols (SAML, OAuth2.0, OpenID connect)
  • Non-Microsoft Identity and Access Management (IAM)
    • 3 years of experience of LDAP Directory (Oracle), Authentication/Authorization systems (Oracle), and Federation (Ping, SecureAuth) including Multi-Factor Authentication (SecureAuth) solutions
    • Experience with Account Provisioning and Certification systems
  • Encryption/Cryptography
    • Strong knowledge of public key/private key encryption
    • Knowledge of database/file encryption systems
    • Knowledge of Hardware Security Modules (HSMs)
    • Knowledge of Key Management Systems (KMSes)
  • Other
    • Network subnetting and how to submit accurate firewall rule requests
Preferred Qualifications
  • Retail industry specific knowledge
  • Experience delivering concurrent, large projects at all phases from project ideation through design and delivery
  • Knowledge of and how to create Functional, Non-Functional and Technical requirements
  • Knowledge of Microsoft Terminal Services (jump hosts)
  • Disaster Recovery basics; RTO/RPO, and design required to meet RTOs/RPOs.
  • Familiar with Agile and Waterfall project methodologies
  • Strong written and verbal communication skills
  • Ability to communicate effectively with stakeholders, peers, and leadership, driving results and action
  • Strong business acumen and the ability to identify key issues and their impact in a broad business context. Translate technology into business terms and value.

Auto Req. ID741574BR
Employment CategoryDigital & Information Technology
Job LevelManager without Direct Reports
Location Number940661-105-Infra - Arch, Design and Project Mgmt
Address7601 Penn Avenue South


Clicking on the following button will update the content below