Principal Identity Architect (2-year fixed term)

The role

The role of the Identity Architect is to shape and deliver APRA’s enterprise-wide identity and access management strategy to ensure the right people have the right access to the right resources thereby safeguarding our digital assets. The role will define and implement the architecture for identity lifecycle management, authentication, authorisation and access governance ensuring alignment with business requirements through procurement, solution options analysis, and vendor engagement.
The role requires a breadth of experience across a range of identity technologies and platforms and a thorough understanding of identity governance and administration, access management and privileged access controls in a hybrid cloud environment. 

The team

The Identity Architect reports to the Head of Architecture in the Data, Technology and Security (DTS) division and is part of the Enterprise Architecture team that helps develop, communicate and implement enterprise technology change. We define technical standards, create target state architecture and build investable technology roadmaps. We also support large enterprise transformation initiatives by working with procurement, business stakeholders, security, projects and product delivery teams.
Key stakeholders include the Chief Information Officer, IT Governance, Enterprise Security, and Product delivery teams, along with the Chief Information Security Officer, Chief Data Officer, Chief Risk Officer, and Project Management Office.

Key responsibilities

• Develop and maintain enterprise architecture artifacts including IT strategy and roadmaps for the Identity and Access Management Domain.
• Lead solution options analysis, vendor engagement, design and implementation of identity and access management solutions across APRA.
• Ensure that vendor products integrate with and complement the existing IT landscape and strategy. Where necessary recommend deployment and adoption strategies and roadmaps.
• Provide architectural leadership and ensure alignment to our enterprise IT strategy across various projects and stakeholders.
• Design resilient scalable, secure, and cost-effective identity solutions. Help define architectural frameworks, standards and integration patterns.
• Ensure solutions meet availability and recovery objectives.
• Create and maintain documentation and models for architectures, configurations, standards and best practices. Assist with the management and running of the architecture practice by streamlining internal processes and contributing to a positive, dynamic and innovative team culture.

About you

• Significant experience in Information Technology with a deep understanding of IT architecture and operations in a hybrid cloud configuration. You will have an in-depth knowledge of security protocols, encryption, and authentication mechanisms spanning:
  Identity Governance and Administration (IGA):
  Experience as a lead architect for IGA solutions such as One Identity, SailPoint, Saviynt, or similar.
  Strong understanding of identity lifecycle management, role-based access control (RBAC), user access review processes and policy enforcement.
  Ability to design and implement identity governance frameworks and processes.
  Privileged Access Management (PAM):
  Proficiency as a lead architect in PAM solutions like CyberArk, Beyond Trust or similar.
  Knowledge of best practices for securing privileged accounts and sessions.
  Experience in implementing and managing PAM tools and technologies.
• Experience in translating business requirements for resilience, recoverability, performance, cost and security to technical designs.
  Ability to communicate complex security concepts to non-technical audiences. Confident ability to understand and navigate stakeholder concerns and priorities.

• Solid understanding of Australian government security frameworks including the Protective Security Policy Framework, Essential 8, and Information Security Manual. Demonstrable experience of applying security considerations at the design stage to identify threats and embed protective controls as standards or patterns. An understanding of security assurance and IRAP assessment processes is an advantage.

   

• Ability to build strong partnerships with technical and business stakeholders to align delivery plans with business needs, expectations and inflight project initiatives.
• You will be a strong team player, willing to share experiences, offer advice and guidance to more junior staff and contribute to a positive culture of excellence. You will be open to learning new skills as advancements in technology changes how we work

To work with us, you need to be an Australian citizen with eligibility to gain a Baseline Security clearance.

About APRA

The Australian Prudential Regulation Authority (APRA) places you at the heart of Australia’s financial services industry. APRA serves the Australian community by helping ensure financial institutions deliver on the financial commitments they make, within a stable, efficient and competitive financial system.
At APRA we’re committed to providing an inclusive workplace where everyone belongs, feels valued and respected. We aspire to attract and foster diversity of background, thought, and experience, recognising that a broad range of perspectives, approaches and ideas makes us stronger, and better enables us to meet our obligation to protect the financial wellbeing of the Australian community. When applying, please inform us of any adjustments you may need during the interview process.