FICO (NYSE: FICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential!
The Opportunity
"As an Identity Security Architect on the Identity & Access Management (IAM) Architecture team you will help define strategy and technical implementation of IAM. You will collaborate closely with development teams, business units, and the Cybersecurity Trust organization to grow and develop IAM strategy and governance." - Cyber Security-Senior Director
What You'll Contribute
Partner with the IAM architecture team to develop and grow the organization’s IAM strategy and identity governance, aligning with enterprise security and business goals.
Partner with IT, HR, compliance, product developers and business units to ensure and enhance seamless onboarding, access provisioning, and role-based access controls (RBAC).
Partner with engineering and operations teams within the broader IAM function to ensure smooth execution of architecture solutions.
Identity opportunities for automation and reporting across IDP estate to enhance and mature identity governance, identity hygiene, increase self-service options, and decrease friction for our stakeholders.
Work with the team to define IAM Architecture roadmap, and goals.
Define IAM policies, standards, and controls to ensure compliance with internal security policies and external regulatory requirements (e.g., PCI-DSS, ISO 27001, NIST).
Develop architecture diagrams and presentations for audiences ranging from internal team to product developers to management.
Stay current with emerging trends and technologies in identity governance and identity threat protection and evaluate their potential impact on the organization (e.g., emerging threats, cloud-native PAM, JIT access, SSF (Shared Signals Framework), CAEP (Continuous Access Evaluation Protocol), Zero Trust).
Participate and collaborate with IAM and security tools vendors to understand new features, new products, and shape future identity security and governance tools selections.
What We’re Seeking
Hands-on experience with cloud IAM and IDPs (Entra ID, AWS IAM, GCP IAM, Okta, Ping, Active Directory, RHIM).
In-depth experience with SailPoint – Identity Security Cloud preferred.
Strong knowledge of IAM processes: provisioning, de-provisioning, certifications, RBAC, ABAC, MFA, SSO, PAM.
Experience with Federated Identity Management (SAML, OAuth, OpenID Connect).
Experience designing solutions to effectively manage privileged access (shared credentials and personal) using PAM solutions like CyberArk or Thycotic.
Strong understanding of modern authentication and authorization standards (SAML, OIDC) including when to apply them and how to perform high-level troubleshooting.
Familiarity with software development practices and experience working with Rest APIs.
Knowledge of Private Key Infrastructure (PKI), mTLS machine authentication, and FIDO2/WebAuthn.
Knowledge of Non-Human Identity (NHI) concepts and threat detections.
Knowledge of Zero Trust architecture and NIST cybersecurity frameworks.
Knowledge of AI and LLMs and use cases for identity governance is a plus.
Comfortable working with cross-functional teams.
Excellent communication and leadership skills.
Strong problem-solving and analytical skills.
Ability to prioritize and manage multiple tasks and projects simultaneously.
Relevant certifications are a plus (e.g., CISSP, CIDPRO, CCSP, GIAC, AWS Certified Security, Microsoft SC-100, SC-300)
Our Offer to You
An inclusive culture strongly reflecting our core values: Act Like an Owner, Delight Our Customers and Earn the Respect of Others.
The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences.
Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so.
An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie.
The targeted base pay range for this role is: $133,000 to $209,000 with this range reflecting differences in candidate knowledge, skills and experience.
#LI-RR1
#LI-remote
Why Make a Move to FICO?
At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today – Big Data analytics. You’ll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more.
FICO makes a real difference in the way businesses operate worldwide:
• Credit Scoring — FICO® Scores are used by 90 of the top 100 US lenders.
• Fraud Detection and Security — 4 billion payment cards globally are protected by FICO fraud systems.
• Lending — 3/4 of US mortgages are approved using the FICO Score.
Global trends toward digital transformation have created tremendous demand for FICO’s solutions, placing us among the world’s top 100 software companies by revenue. We help many of the world’s largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people – just like you – who thrive on the collaboration and innovation that’s nurtured by a diverse and inclusive environment. We’ll provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks!
Learn more about how you can fulfil your potential at www.fico.com/Careers
FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and we’re proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they don’t meet all stated qualifications. While our qualifications are clearly related to role success, each candidate’s profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply.
Information submitted with your application is subject to the FICO Privacy policy at https://www.fico.com/en/privacy-policy