Talent.com
Senior Information Security Architect - Cloud IAM
Senior Information Security Architect - Cloud IAM95-2566122 First American Title Insurance Co • USA, California, Santa Ana
Senior Information Security Architect - Cloud IAM

Senior Information Security Architect - Cloud IAM

95-2566122 First American Title Insurance Co • USA, California, Santa Ana
[job_card.30_days_ago]
[job_preview.job_type]
  • [job_card.full_time]
[job_card.job_description]

Who We Are

Join a team that puts its People First! Since 1889, First American (NYSE : FAF) has held an unwavering belief in its people. They are passionate about what they do, and we are equally passionate about fostering an environment where all feel welcome, supported, and empowered to be innovative and reach their full potential. Our inclusive, people-first culture has earned our company numerous accolades, including being named to the Fortune 100 Best Companies to Work For® list for ten consecutive years. We have also earned awards as a best place to work for women, diversity and LGBTQ+ employees, and have been included on more than 50 regional best places to work lists. First American will always strive to be a great place to work, for all. For more information, please visit www.careers.firstam.com.

What We Do

  • Remote Work Welcome

We are seeking a highly skilled Senior IAM Security Architect to join our information security architecture team. This role requires deep expertise in the design, implementation, and management of IAM security controls, with a focus on identity protection across cloud environments. The ideal candidate will have a strong background in AWS, Azure, and Entra ID (formerly Azure AD), and possess at least 5 years of experience in IAM related security risk assessment and threat modeling. The Senior IAM Security Architect will be responsible for ensuring the secure and efficient designs for governance of user & non-human identities, access controls, and security policies within the organization. This role will also focus on establishing a Zero Trust identity posture, implementing behavioral risk assessments, and driving automation for identity security. Expertise in Single Sign-On (SSO), Multi-Factor Authentication (MFA), and modern authentication protocols is essential.

What You'll Do :

  • Participate in the design of secure IAM architectures across multiple platforms (AWS, Azure, Entra ID), ensuring all components align with best practices and organizational security requirements.
  • Design security controls for IAM, including user authentication, authorization, role management, identity federation, and privilege management across cloud and hybrid environments.
  • Establish and maintain a Zero Trust security model for IAM, ensuring that all access requests are continuously verified, regardless of location or network.
  • Integrate Zero Trust principles with cloud-native security tools and IAM platforms (e.g., AWS, Azure, Entra ID) to ensure seamless, secure, and dynamic access control.
  • Automate risk-based access controls and adaptive authentication based on behavioral signals, ensuring a dynamic response to security events.
  • Establish and enforce least privilege access principles for all roles across cloud and on-prem environments, ensuring users only have the minimal access necessary to perform their job functions.
  • Design and implement Just-in-Time (JIT) access control mechanisms to dynamically grant access based on user needs, significantly reducing standing permission sets.
  • Design SSO solutions that provide seamless and secure access to enterprise applications, ensuring a frictionless user experience while maintaining high security standards.
  • Lead the adoption of modern authentication protocols (e.g., OAuth 2.0, OpenID Connect, SAML) for secure, scalable, and standardized access management across applications and systems.
  • Design MFA solutions to enhance authentication security, applying risk-based policies to ensure strong protection for sensitive data and critical resources.
  • Develop and integrate IAM security controls with cloud platforms such as AWS, Azure, and Entra ID, ensuring secure access management across both public and hybrid cloud environments.
  • Leverage native security features of cloud platforms (e.g., AWS IAM, Azure AD, Entra ID) to design scalable, secure, and automated IAM solutions.
  • Lead the migration process from Hybrid Active Directory to Entra-ID based authentication to ensure minimal disruption and proper synchronization and federation across systems.
  • Develop and maintain security governance frameworks for IAM, focusing on identity lifecycle management, role-based access control (RBAC), user provisioning, deprovisioning, and enforcement of least privilege.
  • Ensure proper identity governance and access reviews are conducted regularly, documenting changes and exceptions as part of compliance audits.
  • Collaborate with cross-functional teams, including application security, network security, infrastructure, and DevOps, to integrate IAM security best practices across systems and services.
  • Stay up to date on the latest IAM trends, security threats, and technology advancements to continuously improve IAM practices and solutions.
  • Implement security automation tools and workflows to improve efficiency and reduce manual efforts in identity management and access control.

    • What You'll Bring :

  • Bachelor’s degree in computer science, Information Security, or related field.
  • 7+ years of experience in IAM security, including at least 5 years of experience in IAM risk assessment, threat modeling, and security control design.
  • Preferred Certified Information Systems Security Professional (CISSP) or Certified Identity and Access Manager (CIAM) or other relevant IAM / security certification.
  • Proven expertise in implementing and securing IAM solutions in cloud environments such as AWS, Azure, and Entra ID. Knowledge in GCP would be a nice to have.
  • In-depth knowledge of IAM security best practices, identity governance, and access management policies.
  • Hands-on experience in conducting security risk assessments and threat modeling for IAM systems.
  • Demonstrated experience in establishing least privilege access and implementing Just-in-Time (JIT) access controls across cloud and on-premises environments.
  • Expertise in implementing and managing a Zero Trust security posture for IAM, with hands-on experience in identity validation, continuous authentication, and risk-based access controls.
  • Strong expertise with IAM platforms such as Microsoft Entra ID (Azure AD), AWS IAM, Azure Active Directory.
  • Experience with cloud security, integrating IAM systems with AWS, Azure, and hybrid environments.
  • Strong understanding of IAM security controls, including role-based access control (RBAC), attribute-based access control (ABAC), policy enforcement, and Just-in-Time (JIT) provisioning.
  • Experience in implementing and managing SSO and MFA, with expertise in modern authentication protocols such as OAuth 2.0, OpenID Connect, and SAML.

    • Pay Range : $148,600.00 - $198,200.00 AnnuallyThis hiring range is a reasonable estimate of the base pay range for this position at the time of posting. Pay is based on a number of factors which may include job-related knowledge, skills, experience, business requirements and geographic location.

  • Note that the following statements only apply to candidates who will be working from an unincorporated area within Los Angeles County.

    • First American will consider for employment all qualified applicants, including those with arrest or conviction records, in a manner consistent with the requirements of applicable state and local laws (e.g., the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act).

    First American intends to conduct a review of an applicant’s criminal history in connection with a conditional offer. First American reasonably believes that a criminal history may have a direct, adverse and negative relationship with the following material job duties for this position potentially resulting in the withdrawal of the conditional offer of employment : handling of confidential, proprietary or trade secret information belonging to First American or its customers, administrating or facilitating financial transactions, and the ability to meet customer-imposed criminal history requirements.

    What We Offer

    By choice, we don’t simply accept individuality – we embrace it, we support it, and we thrive on it! Our People First Culture celebrates diversity, equity and inclusion not simply because it’s the right thing to do, but also because it’s the key to our success. We are proud to foster an authentic and inclusive workplace For All. You are free and encouraged to bring your entire, unique self to work. First American is an equal opportunity employer in every sense of the term.Based on eligibility, First American offers a comprehensive benefits package including medical, dental, vision, 401k, PTO / paid sick leave and other great benefits like an employee stock purchase plan.

    [job_alerts.create_a_job]

    Senior Information Security Architect Cloud IAM • USA, California, Santa Ana

    [internal_linking.similar_jobs]
    Senior Information Security Specialist

    Senior Information Security Specialist

    VirtualVocations • Garden Grove, California, United States
    [job_card.full_time]
    A company is looking for a Staff Information Security Specialist to join their Cybersecurity & IT team.Key Responsibilities Act as a strategic partner to execute high-impact security initiatives ...[show_more]
    [last_updated.last_updated_1_day] • [promoted]
    Information System Security Engineer (ISSE)

    Information System Security Engineer (ISSE)

    Govcio LLC • VSFB, CA, United States
    [job_card.full_time]
    GovCIO is currently hiring for an Information System Security Engineer (ISSE) to support the 2ROPS accreditation process for small classified mobile systems to renew the current Authority to Operat...[show_more]
    [last_updated.last_updated_less] • [promoted] • [new]
    Information Security Analyst

    Information Security Analyst

    TradeJobsWorkForce • 92614 Irvine, CA, US
    [job_card.full_time]
    Monitor their organization’s networks for security breaches and investigate a violation when one occurs Install and use software, such as firewalls and data encryption programs, to protect sensitiv...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Data Architect (Contractor) - Commercial IT

    Data Architect (Contractor) - Commercial IT

    InfoStride • Anaheim, CA, US
    [job_card.temporary]
    Data Architect (Contractor) – Commercial IT.Location : San Francisco (Hybrid) 3 days onsite,.Client is seeking an experienced Commercial Data Architect to manage and scale day-to-.This role will act...[show_more]
    [last_updated.last_updated_variable_hours] • [promoted] • [new]
    Analyst

    Analyst

    TradeJobsWorkforce • 90022 East Los Angeles, CA, US
    [job_card.full_time]
    ESSENTIAL JOB FUNCTIONS Analyzes global markets for IT Services, servers, storage, backup, IT security, productivity software, remote monitoring services, hyperconvergence and IoT.Studies SMB and m...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Senior Information Security Engineer

    Senior Information Security Engineer

    VirtualVocations • Orange, California, United States
    [job_card.full_time]
    A company is looking for a Senior Information Security Engineer.Key Responsibilities : Lead technical remediation of security platforms and conduct continuous configuration audits Manage integrat...[show_more]
    [last_updated.last_updated_1_day] • [promoted]
    Cloud Security Architect

    Cloud Security Architect

    VirtualVocations • Garden Grove, California, United States
    [job_card.full_time]
    A company is looking for a Cloud Security Architect to support the Department of Justice with a focus on cloud security engineering. Key Responsibilities Serve as the technical cloud security engi...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Information System Security Manager

    Information System Security Manager

    Leonardo DRS • Cypress, CA, United States
    [job_card.full_time]
    The Electro Optical InfraredSystems (EOIS) line of business within DRS has locations in Dallas and Austin, TX, Melbourne, FL, and Cypress, CA. EOIS develops, manufactures, and supports infrared and ...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Chief Pricing Architect, Enterprise Security Services

    Chief Pricing Architect, Enterprise Security Services

    Inter-Con Security Systems, Inc. • Pasadena, CA, United States
    [job_card.full_time]
    A leading security solutions provider located in Pasadena, CA, seeks a Head of Pricing.This executive role involves establishing and scaling pricing strategies, ensuring competitive market position...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Remote Security Platform Engineering Lead

    Remote Security Platform Engineering Lead

    Experian • Costa Mesa, CA, United States
    [filters.remote]
    [job_card.full_time]
    A global data and technology company seeks a Software Engineering Manager for their Security Platform.This remote role involves leading a high-performing engineering team, driving the development o...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    VP, Senior Application Support Manager - BSA & Risk

    VP, Senior Application Support Manager - BSA & Risk

    TEKsystems • Santa Ana, CA, United States
    [job_card.permanent]
    We are looking to fill a newly created position - VP, Senior Application Support Manager, focusing on Bank Secrecy Act (BSA), Governance, Risk, and Compliance (GRC), and Anti-Money Laundering (AML)...[show_more]
    [last_updated.last_updated_variable_hours] • [promoted] • [new]
    Senior Enterprise Release & Environment Architect - Remote

    Senior Enterprise Release & Environment Architect - Remote

    CalOptima • Orange, CA, United States
    [filters.remote]
    [job_card.full_time]
    A leading healthcare organization in California is seeking an Enterprise Release & Environment Architect to manage the release lifecycle and IT environments. You will play a pivotal role in ensuring...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Global Cloud Platforms Director : Cloud, Security & AI

    Global Cloud Platforms Director : Cloud, Security & AI

    Pacific Life • Newport Beach, CA, United States
    [job_card.full_time]
    A leading insurance company is seeking a Cloud Platforms Director to oversee the strategic management of cloud platforms. You will lead global teams in Newport Beach or Charlotte, ensuring high avai...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Enterprise Technical Sales Consultant, Security & Data, Spectrum Business

    Enterprise Technical Sales Consultant, Security & Data, Spectrum Business

    SPECTRUM • CERRITOS, California, United States
    [job_card.full_time]
    This role requires the ability to work lawfully in the U.Do you want to partner with local sales teams to define and execute team-based selling strategies? You can do that.Ready to grow market shar...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Senior Director, Edge Infrastructure & AI Growth

    Senior Director, Edge Infrastructure & AI Growth

    Slope • Costa Mesa, CA, United States
    [job_card.full_time]
    A leading defense technology company is seeking a Senior Director of Business Development to drive the next generation of edge infrastructure that supports AI-driven operations.Candidates should ha...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Solution Architect

    Solution Architect

    TradeJobsWorkForce • 92708 Fountain Valley, CA, US
    [job_card.full_time]
    Solution Architect Job Duties : Responsible for assisting in the establishment of an IT Architect...[show_more]
    [last_updated.last_updated_30] • [promoted]
    Security Platform Engineering Lead - Remote

    Security Platform Engineering Lead - Remote

    Experian Group • Costa Mesa, CA, United States
    [filters.remote]
    [job_card.full_time]
    A leading data and technology company is seeking a skilled individual to lead engineers in building a security modular platform. This role involves driving architecture, design, and implementation w...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]
    Software Engineering Manager, Security Platform - Remote

    Software Engineering Manager, Security Platform - Remote

    Experian Group • Costa Mesa, CA, United States
    [filters.remote]
    [job_card.full_time]
    You will lead engineers who will build Experian's security modular platform.You will work with other engineering teams to bring critical security services into the platform and deliver this to the ...[show_more]
    [last_updated.last_updated_variable_days] • [promoted]