Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
LPL Financial

AI IAM Architect

LPL Financial

AI IAM Architect leading identity patterns for AI workloads and security engineering at LPL Financial. Collaborating with cross-functional teams to ensure secure agent access and compliance.

Posted 6/24/2026full-timeFort Mill • New York, Texas • 🇺🇸 United StatesSeniorLead💰 $153,470 - $255,749 per yearWebsite

About the role

Key responsibilities & impact
  • Discover AI/agent identity requirements across users, services, runtimes, tools, and APIs.
  • Assess existing SSO, MFA, federation, and API authorization models; identify gaps in delegation, token lifecycle, scopes, secrets, and auditability.
  • Design enterprise IAM patterns (user context propagation, delegation chains, BFF sessions, least-privilege access) and OAuth/OIDC client models.
  • Define standards for securing agent tools, data access, and cross-domain integrations; align to zero trust and regulatory controls.
  • Produce architecture artifacts (CAD/HLD/PSS) and reference implementations.
  • Lead and build IAM POCs (end-to-end flows, token exchange, gateway enforcement, delegated agent access).
  • Configure/test identity flows; troubleshoot tokens, scopes, and integrations.
  • Implement or guide IAM integrations across gateways, BFFs, agent orchestration, and observability.
  • Transition validated patterns to IAM engineering for production rollout.
  • Define agent identity lifecycle (registration, credential rotation, revocation, environment separation).
  • Integrate IAM across AI platform components; support CI/CD and IaC for IAM configurations.
  • Establish patterns for human-in-the-loop controls, break-glass access, and rate limiting.
  • Maintain documentation, decision records, diagrams, and runbooks.
  • Deliver POC summaries, evaluations, and implementation guidance; communicate risks and dependencies.
  • Ensure regulatory compliance; partner on threat modeling and controls (secrets, PAM, audit evidence).

Requirements

What you’ll need
  • 10+ years in IAM, security architecture, or platform engineering with significant IAM scope.
  • 2+ years building IAM POCs and troubleshooting OAuth 2.0 / OIDC flows (Auth Code + PKCE, refresh tokens, client credentials, token exchange, OBO).
  • 2+ years with PingOne AIC and/or Microsoft Entra ID.

Benefits

Comp & perks
  • 401K matching
  • health benefits
  • employee stock options
  • paid time off
  • volunteer time off

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
IAMOAuth 2.0OIDCtoken exchangedelegated accessAPI authorizationidentity flowscredential rotationzero trustCI/CD
Soft Skills
leadershipcommunicationtroubleshootingdocumentationevaluationrisk assessmentcollaborationguidanceproblem-solvingdecision-making