Customer Identity and Access Management (CIAM) Architect

Cloud Security Services is currently looking for an experienced Consumer/ Customer Identity and Access Management Architect for our client. Our client requires an experienced Consumer / Customer Identity and Access Management (CIAM) Architect to develop patterns (up to 35) for lines of business to onboard to new CIAM platform (Okta/MS B2C). Candidate must have a strong background in designing CIAM architecture for large, complex CIAM environments. This is a 6-month remote project.

Responsibilities:

• Development of omni-channel (Digital, Voice, Paper) standard patterns based on leading practices 

• Includes identification of and recommendations for leading digital experiences to serve as benchmarks for clients CIAM future state 
• Includes anticipated emerging digital experience trends 
• Includes customer experience workflow target state 
• Covers the following user groups. 

• Patterns will cover the following user groups: 
• Individuals (Personal Insurance customers, workers compensation claimant) 
• Businesses employees (Large corporation employees, small business owners, 3rd Party participants like auto body shop, doctor's offices) 
• Brokers & Agents (Large & Small independent agents) 
• 3rd Party Systems accessing Travelers APIs and Self-Service portals 

• Covers the following pattern categories for CIAM; 

• Registration / Onboarding 
• Authentication 
• Authorization 
• Third-party Service/API Access & Authorization 
• Invitation-Based User Registration 
• Multi-Branded User Registration & Authentication 
• User Access Delegation 
• User De-provisioning 
• Helpdesk Processes 
• Omnichannel Services "Overlay" 

• Evaluation of current processes against the defined industry and leading practices including industry standards such as the National Institute for Standards and Technology (NIST) Special Publication (SP) 800-63; Digital Authentication, NIST Cybersecurity Framework (CSF) and NIST SP 800-53; Security and Privacy Controls. 
• Development of findings and gaps based on analysis of current processes against the defined industry and leading practices. 

Required Skills:

• Senior and experienced CIAM Architect (5-7 years) in creating reference and solution architecture (design pattern diagrams) 
• Good understanding of CIAM 
• Intimately familiar with IAM related protocols such as SAML, SPML, XACML, SCIM, OpenID and OAuth 
• Strong experience with Directories, SSO, Federation, Delegated administration, API gateways, SOA services 
• Experience with App Gateways, App Proxies, Live Chat, Chat Bots, Contact Centers, IVRs and Web Portals for CIAM 
• Good understanding of MFA, PAM and Risk Based Authentication 
• Deep technical understanding of IAM solutions across multiple vendors. Like Microsoft and Okta 
• Experience with NIST SP800-63 Digital Authentication Standard 
• Ability to work across teams

Preferred Skills:  

• Business outcomes mindset 
• Excellent interpersonal communication skills with strong spoken and written English 
• Collaborative team worker 
• Flexibility to accommodate working across different time-zones

Preferred Education:

Bachelor’s in Computer Science