The anticipated salary range for this role is between $213,000.00 and $231,000.00. The specific salary offered to an applicant will be based on their individual qualifications, experiences, and an analysis of the current compensation paid in their geography and the market for similar roles at the time of hire.
The role may also be eligible for an annual discretionary incentive award. In addition to cash compensation, SMBC offers a competitive portfolio of benefits to its employees.
Role Description
SMBC is seeking a highly skilled and motivated IAM and Security Infrastructure Architect to join our Infrastructure Solutions Architecture team.
Security is a shared responsibility, and as complex solutions are being designed and implemented, we need to ensure these initiatives consider the necessary infrastructure aspects as they relate to security.
The person in this role will assist with the definition of the strategy and design in coordination with the existing Infrastructure and Information Security teams, help establish standards and policies, develop implementation plans, and transition applicable implementation and operational functions to applicable teams.
An ideal candidate will have background and experience in the technologies and implementation methods related to both infrastructure and security architecture / engineering.
Role Objectives
- Member of a team that establishes and drives infrastructure architecture with a specific focus on security requirements and best practices in a global, hybrid, multi-cloud environment.
- Work directly with Information Security to develop and promote infrastructure requirements within security-related initiatives and ensure that security requirements are integrated into infrastructure projects.
- Increase operational and financial efficiencies through identification of opportunities to standardize security toolsets and practices within a multi-company environment.
- Ensure that the proposed and existing infrastructure architectures are aligned with organizational goals and objectives.
- Provide architecture collaboration with other architecture, engineering, and application teams, translating application team needs into technical solutions and product requirements.
- Drive infrastructure security and compliance requirements into the architecture framework.
- Facilitate documentation of existing systems architecture and technology portfolios (e.g., architecture, configuration, and setup) and make recommendations for improvements and / or alternatives.
- Provide effective knowledge transfer and upskilling to relevant Architecture and Engineering personnel.
- Design with operations in mind. Look for ways to automate and improve operations.
- Maintain strong relationships and identify opportunities for strengthening synergies between varying Infrastructure and IT Security teams.
Qualifications and Skills
- Experience with IdP infrastructure and synchronization technologies including Active Directory, Entra ID, LDAP, SAML, SCIM, EID Connect, Cloud Synch, and MIM.
- Background in end-to-end identity provisioning / deprovisioning standards and best practices including HRIS to IdP relationships and attribute management.
- Familiarity with authentication infrastructure, protocols, and access controls (GPO, LDAP, Conditional Access, MFA, ADFS, Application Protection Policy, etc).
- Familiarity with Microsoft native and competing security products such as Entra Identity Governance, Entitlement Management, Defender products, and Copilot for Security.
- Understanding of endpoint management tools and standards including endpoint DLP, Defender for Cloud Apps, Intune endpoint management, and other policy frameworks.
- Monitoring and logging tools such as Microsoft Sentinel, Cribl, Splunk, Cloudwatch, Cloudtrail, and MS Log Analytics.
- Experience facilitating discussions with senior leadership regarding technical / architectural trade-offs, best practices, and risk mitigation.
- Strong analytical, problem-solving, and decision-making skills.
- Excellent communication and interpersonal skills.