Domain Architect, Identity

State Street

. Own the enterprise Identity domain target architecture, including IAM, IGA, PAM, CIAM, machine and non-human identities, federation, and authorization services .

Posted 4/21/2026full-timeQuincy • Massachusetts • 🇺🇸 United StatesSeniorLead💰 $170,000 - $282,500 per yearWebsite

Tech Stack

Tools & technologies

CloudCyber Security

About the role

Key responsibilities & impact

Own the enterprise Identity domain target architecture, including IAM, IGA, PAM, CIAM, machine and non-human identities, federation, and authorization services
Define and maintain Identity reference architectures, design patterns, and architectural principles, ensuring alignment with enterprise standards and Zero Trust objectives
Serve as the final design authority for material identity solutions and major identity-related programs
Translate business, regulatory, and cybersecurity strategy into a clear, sequenced Identity architecture roadmap
Partner with IAM product, engineering, and operations leaders to ensure architectural intent is realized consistently in delivery
Guide modernization initiatives including platform rationalization, cloud-native identity, passwordless authentication, and identity orchestration
Operate as the Identity Domain counterpart to Central Enterprise Architecture, ensuring alignment while defending domain-specific architectural needs
Escalate and arbitrate design decisions that have enterprise-wide risk, cost, or precedent implications
Contribute identity expertise to Architecture Review Boards (ARB) and Technology Review Boards (TRB)
Ensure Identity architectures align with financial-services regulatory expectations and internal risk frameworks
Embed security-by-design, least privilege, strong authentication, and auditability across all identity patterns
Act as a trusted architectural partner in regulatory discussions where identity design is material to outcomes
Provide architectural leadership for non-human identity, service accounts, secrets management, and agentic / AI identity patterns
Continuously assess emerging identity standards, protocols, and industry practices, incorporating them where strategically appropriate
Mentor and develop senior and principal-level identity architects
Influence senior stakeholders across technology, cybersecurity, and the business without direct authority
Represent the Identity architecture function with credibility at managing director, executive, and board-adjacent levels

Requirements

What you’ll need

15+ years of experience in Identity & Access Management, security architecture, or enterprise architecture in large, regulated environments
Deep hands-on architectural expertise across IAM, PAM, CIAM, federation, directories, authorization, and cloud identity
Demonstrated experience defining and governing domain architectures at enterprise scale
Strong understanding of regulatory, audit, and risk considerations in financial services

Benefits

Comp & perks

our retirement savings plan (401K) with company match
insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages
paid-time off including vacation, sick leave, short term disability, and family care responsibilities
access to our Employee Assistance Program
incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans)
eligibility for certain tax advantaged savings plans

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

Identity & Access Managementsecurity architectureenterprise architecturePrivileged Access ManagementCustomer Identity and Access Managementfederationauthorizationcloud identityidentity orchestrationpasswordless authentication

Soft Skills

architectural leadershipmentoringstakeholder influencecommunicationcollaborationdecision arbitrationstrategic assessmenttrusted partnershipguidancealignment