Job details

Cloud Identity Architect

Get a free resume review

The work we do has an impact on millions of lives, and you can be a part of it.

We help protect our customers against life’s uncertainties. Regardless of where you work within the company, you’ll be helping provide protection and peace of mind when our customers need it most.

The Cloud Identity Engineer will be primarily working on EntraID and Sailpoint identity platforms to support Identity & Access Management needs. This position will be responsible for solutioning, implementing, and training across teams. The primary customers of this role include the Identity Team, along with other business and IT partners to modernize identity service offerings enabled by cloud adoption.

This role will work across IT (Information Technology) and application teams to design and implement cloud identity strategies. It will function as an enabler for maturing operational duties and focus on modernizing cloud identity management with best practices in mind.

Roles and Responsibilities

Work across teams to identify and capture requirements to inform future identity improvements
Implement cloud identity solutions based on best practices
Identify opportunities for automation, evaluate new tools, and drive implementation of technology that creates value for the organization
Remediate non-compliant resources and configuration through cross team collaboration
Review and recommend Conditional Access Policies for company-wide and use-case specific needs
Be responsible for supporting identity needs within project work and architectural design
Monitor, troubleshoot, and provide problem resolutions to related incidents
Assist with building and supporting all Access Review campaigns
Work with IAM team to implement additional Role Based Access Controls (RBAC) roles within SailPoint including the development of the Segregation of Duties matrix
Provide subject matter expertise with other cloud security endeavors

Skills and Qualifications Required

High school diploma, GED, or equivalent certification
At least 5 years of experience in Information Technology
At least 5 years of experience in PowerShell
At least 5 years of experience in SailPoint or another Identity, Governance, and Administration (IGA) tool

Skills and Qualifications Preferred

2+ years of EntraID or 5+ years of Active Directory experience
5+ years of experience supporting Java and SailPoint applications
5+ years of experience troubleshooting SailPoint workflows and customizations
5+ years of experience with Role Based Access Controls (RBAC)
5+ years of experience troubleshooting end user issues in Access Certifications

Certifications

SailPoint Certified IdentityIQ Engineer OR SailPoint Certified IdentityNow Engineer Certification
Azure Expert or Associate Certification
ITIL Foundations Certification preferred

Work Conditions

Meetings to be held outside of core working hours to adjust to other group companies’ time zones.
Will work closely with existing IAM Engineer and report regular updates to IAM team/director.

$107,000 - $164,000 a year

Protective’s targeted salary range for this position is $107,000 to $164,000. Actual salaries may vary depending on factors, including but not limited to, job location, skills, and experience. The range listed is just one component of Protective’s total compensation package for employees.

This position also offers additional incentive opportunities through an annual incentive based on individual and Company performance

Employee Benefits:

We aim to protect our employees' wellbeing through a broad benefits offering. For example, we protect physical wellbeing through health, dental and vision insurance. We protect mental wellbeing through mental health benefits and an employee assistance program. We protect time away from work with a variety of paid time away benefits (e.g., paid time off, paid parental leave, short-term disability, and a cultural observance day). We protect financial wellbeing through contributions to healthcare accounts, a pension plan, and a 401(k) plan with Company matching. All employees are encouraged to protect their overall wellbeing by engaging in ProHealth Rewards, Protective’s platform to improve wellbeing while earning cash rewards.

Eligibility for certain benefits may vary by position in accordance with the terms of the Company’s benefit plans.

Diversity and Inclusion:

At Protective, we are committed to providing an inclusive culture where all employees are able to fully contribute and thrive. Our goal is to grow and develop our people, attract diverse talent and support strong, diverse communities.

We support diversity, equity, and inclusion by working to develop a culture of inclusion and belonging led by leaders who develop potential and embrace all skills and abilities. Our aim is to create an equitable environment for all leaders and employees that will drive performance and impact business strategy. In this way, we can increase overall diversity for leadership roles and pipelines of talent by maturing our hiring practices, robust development opportunities and focus on retention of key talent.

We are proud to be an equal opportunity employer committed to being inclusive and attracting, retaining, and growing the talents of a diverse and inclusive workforce.

Accommodations for Applicants with a Disability:

If you require an accommodation to complete the application and recruitment process due to a disability, please email martina.winston@protective.com.This information will be held in confidence and used only to determine an appropriate accommodation for the application and recruitment process.

Please note that the above email is solely for individuals with disabilities requesting an accommodation. General employment questions should not be sent through this process.

Average salary estimate

$135500 / YEARLY (est.)

min

max

$107000K

$164000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Cloud Identity Architect, Protective

As a Cloud Identity Architect at Protective, you’ll be steering the ship on exciting identity and access management initiatives that directly impact the lives of millions. Imagine working from the comfort of your own home while helping to safeguard our customers against life’s uncertainties! In this role, you’ll primarily focus on the EntraID and Sailpoint identity platforms, taking charge of designing, implementing, and educating teams across the organization on identity services. You’ll collaborate with various IT and application teams to enhance our cloud identity strategies, ensuring that we are not only compliant but also leading the charge in best practices in cloud identity management. Your expertise will be invaluable as you identify automation opportunities and drive the adoption of innovative tools. You’ll play a pivotal role in refining conditional access policies, supporting project work related to identity design, and directly contributing to the overall success of the IAM team. With responsibilities that span monitoring incidents to building access review campaigns and developing Role Based Access Controls (RBAC) in SailPoint, every day will bring new challenges and opportunities to shine. At Protective, you'll be part of a diverse and inclusive culture that prioritizes well-being, growth, and maintaining a balanced work life. With a salary range of $107,000 to $164,000 and a suite of benefits designed to support your health and wellness, you'll find that your talent and commitment are valued and rewarded here.

Frequently Asked Questions (FAQs) for Cloud Identity Architect Role at Protective

What are the key responsibilities of a Cloud Identity Architect at Protective?

As a Cloud Identity Architect at Protective, your primary responsibilities include designing and implementing cloud identity solutions on EntraID and Sailpoint platforms, collaborating closely with IT and application teams, and ensuring compliance with identity service offerings. You will also focus on automation opportunities, remediation of non-compliant resources, and acting as a key subject matter expert in cloud security initiatives.