Identity and Access Management Architect
Open Dealer Exchange
Identity and Access Management Architect Open Dealer Exchange (ODE), is seeking an Identity and Access Management (IAM) Architect to support its workforce in Southfield, MI . As an IAM Architect, you will own and mature our identity security posture across a complex, multi-platform environment, serving as the primary driver of a structured role based access control (RBAC) program and a trusted technical advisor across infrastructure, IT, and development teams. The ideal candidate will have deep experience with Entra ID, Active Directory, identity lifecycle automation, and governing access in regulated enterprise environments. Open Dealer Exchange is a dynamic, exciting place to work. Open Dealer Exchange offers a hybrid work model as well as an excellent compensation/benefit package. Responsibilities
- Design and implement enterprise RBAC: Build a cohesive role-based access control model across Entra ID, Active Directory, and Entra External ID, replacing ad hoc access grants with governed, role-aligned entitlements.
- Lead identity lifecycle automation: Integrate the HR system with Entra ID to automate provisioning and deprovisioning, ensuring access changes are event-driven and auditable at the point of hire, transfer, and termination.
- Govern directory structure and access hygiene: Define and enforce naming conventions, group structures, and access review cadences across all directory platforms.
- Manage non-human identities: Govern service accounts, including managed identities, service principals, and app registrations, enforcing least privilege and credential hygiene across all environments.
- Advise development teams on identity security: Provide architectural guidance on token handling, session management, and federation patterns for teams building or maintaining identity adjacent systems.
- Drive Conditional Access and PIM: Lead Conditional Access policy design and own Privileged Identity Management configuration and the privileged access model for admin roles across Azure and M365.
- Support Entra External ID governance: Advise teams on External ID tenant configuration, custom policy, user flows, and external identity federation.
- Produce compliance-ready documentation: Maintain IAM documentation including access control matrices, provisioning runbooks, and audit-ready entitlement inventories supporting FCRA and FTC Safeguards Rule obligations.
- Collaborate across the security program: Align IAM initiatives with the broader security roadmap and participate in change management and architecture review processes alongside security engineers and the Cybersecurity Manager.
- 5+ years of hands-on IAM engineering experience, with at least 3 years focused on Entra ID (Azure AD) in enterprise environments.
- Deep working knowledge of Active Directory, including group policy, OU design, domain trust models, and hybrid identity patterns.
- Demonstrated experience designing and implementing RBAC models at scale in complex or legacy environments.
- Hands-on experience with Entra ID Governance, including access reviews, entitlement management, lifecycle workflows, and Privileged Identity Management (PIM).
- Strong working knowledge of OAuth 2.0, OIDC, and SAML, sufficient to review developer implementations and identify security risk.
- Practical experience automating identity lifecycle events using Logic Apps, Azure Functions, PowerShell, or the Microsoft Graph API.
- Ability to communicate risk clearly to non-technical stakeholders and produce compliance-ready documentation.
- Will accept any suitable combination of education, training, or experience.
- Experience in regulated industries such as financial services, fintech, or automotive with access control obligations.
- Familiarity with FTC Safeguards Rule requirements or equivalent data security regulatory frameworks.
- Prior experience integrating an HRIS platform (Workday, BambooHR, UKG, or similar) with Entra ID via SCIM or custom connector.
- Exposure to IGA platforms such as SailPoint, Saviynt, or Omada.
- Experience advising development teams on token validation, scope design, role claims, and secure session management.
- Bachelor's degree in Computer Science, Information Systems, or a related field, or equivalent professional experience.
- Relevant certifications: SC-300 (Microsoft Identity and Access Administrator), AZ-500 (Microsoft Azure Security Technologies), or equivalent
Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Identity and Access Management Architect in Southfield, MI vacancy
- Conexess Group is seeking an experienced candidate with deep hands-on expertise in Enterprise Identity and Access Management (IAM) specifically within regulated industries like healthcare and financial services. This role emphasizes operational excellence and solution...Suggested
$124k - $280k
...At PwC, our people in data management focus on organising and maintaining... ...data to enable accuracy and accessibility for effective decision-... ...Data Management team, you architect and manage master data management... ...orientation, and gender identity); age; disability; genetic information...SuggestedFull timeH1b$142.6k - $261.5k
.... As a ServiceNow Consulting Manager you’ll play a leading role in... ...and experienced ServiceNow FSO Architect (Certified Technical... ...and data flows, Security and access controls, Ensure solutions align... ..., sexual orientation, gender identity/expression, pregnancy, genetic...SuggestedSummer holidayWorldwideFlexible hours- ...)What you'll doThe IT Architecture Lead Architect - AI is responsible for architecting and... ...strategic objectives.The Lead Architect manages medium to large work efforts as assigned... ...disability, 401K, tuition reimbursement, identity theft protection, and mental wellness...SuggestedFull timeWork at officeRemote workRelocation packageMonday to Friday
$80k - $100k
...currently seeking a Project Architect to join our team in the Metro... ...Architectural design, Project management, Construction drawings, Revit... ...science initiatives through access to specialized experts who drive... ..., sexual orientation, gender identity, genetic information or any...SuggestedPermanent employmentTemporary work- ...specifications. Ability to apply accessibility codes, applicable building... ...and completeness and manage team to meet project budget... ...field is required. Registered Architect is preferred. Minimum of five... ...sexual orientation, gender identity or gender expression. We prohibit...Full timeContract workTemporary workPart timeFor contractorsFor subcontractorCasual workWork at officeLocal areaFlexible hours
- ..., sexual orientation, gender identity/expression, age, genetic information... ...you need an accommodation to access the career page and/or job... ...want to be at.” Position: Architect III Location: Bingham Farms,... ...senior project architect/project manager and subject matter expert who...Contract workFor contractorsInternshipWork at officeAfternoon shift
$33.65 - $43 per hour
...Title: Landscape Architect **Interviewing ASAP!!** Hours: Hiring for first... ...and science initiatives through access to specialized experts who drive scale,... ...disability, sexual orientation, gender identity, genetic information or any characteristic...Temporary workImmediate startMonday to FridayFlexible hoursDay shift$121.5k - $227.2k
...Commercialization Architect, Assistant Director Location: Anywhere in Country The Commercialization... ...models across Audit, Transformations, Managed Services, SaaS, and other relevant... ..., age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information...Summer holidayFlexible hours$134k - $184.25k
Test Automation Architect - Automotive Software & Systems Validation At Bose Automotive, we... ...premium in-vehicle audio and sound management experiences for the world’s leading OEMs... ...religion, sex, sexual orientation, gender identity, genetic information, national origin, age...- ...Gresham Smith is a growing architectural, engineering, and program management firm with 26 offices throughout the US. Join us, and you’ll... ...Role We are looking for a talented and experienced Senior Architect to join our team in the Detroit Metropolitan area! The Senior...Temporary workWork at office
- ...Excellent Teamcenter UA Product Knowledge Workflow, Structure Manager, Access Manager, Preference Manager, MPP, BOM Management, Query, PLM... ...experience preferred Job Description: Teamcenter Sr. Solution Architect Define & execute Upgrade strategy Coordinate Functional...
- Architect Senior Associate - Atlassian Administrator / Developer Location: Dearborn, MI (Hybrid... ...expertise in Jira Cloud, Jira Service Management (JSM), Jira Product Discovery (JPD), and... ...Ford-ET Atlassian products. Oversee access management and lead audit compliance efforts...Long term contractWork at office
- The Chemico Group in Southfield, Michigan, is searching for a Management Systems Specialist. This role focuses on implementing and improving management systems to meet stringent aerospace and defense standards. Your responsibilities include conducting internal audits,...
- A leading architecture firm in Berkley is seeking an experienced architect to manage medium complexity design projects and collaborate with clients. You will be responsible for creating innovative solutions and coordinating project documentation. Candidates should have...
$142.6k - $261.5k
...decision-making. As a ServiceNow Consulting Manager you’ll play a leading role in that... ...also have ServiceNow Certified Master Architect (CMA) or Certified Technical Architect (... ...religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic...Summer holidayWorldwideFlexible hours- DiClemente Siegel Design Inc. is hiring a Michigan-Registered Architect for their Southfield office. This role involves managing design projects and delivering comprehensive documentation across various sectors like automotive and healthcare. Required qualifications include...Work at officeFlexible hours
$142.6k - $261.5k
Location: Anywhere in Country ServiceNow AI Architect Manager As a ServiceNow Consulting Manager, you will lead ServiceNow Transformation... ...race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin,...Summer holidayFlexible hours- Capgemini is seeking an experienced professional for a hybrid procurement role based in Southfield, Michigan. The successful candidate will focus on Direct Procurement and Strategic Sourcing, driving growth through innovative solutions. You will lead procurement transformation...
$94.25k - $215.05k
...They will also be involved in use case management, automation working collaboratively with... ...across Canada by promoting fairness, accessibility, inclusion and respect. We value the rich... ...to race, national origin, gender identity/expression, age, religion, disability,...Full timeLocal area$161.25k - $236.5k
...About the Role As the Lead Systems Architect for one of our premium brands in Car Audio... ...outside a HARMAN or customer location ~ Access to employee discounts on world-class... ...conditions), sexual orientation, gender identity, gender expression, age, status as a protected...Full timeTemporary workWork at officeImmediate startRemote workFlexible hours- ...Description: General Summary: The Architect, with some supervision from the Manager of Architecture, directs the... ...pregnancy, sexual orientation, and gender identity), national origin, age, disability... .... However, employees who have access to the compensation information of...For contractorsInternshipWork at officeLocal area
- ...sector is seeking a senior level architect to join a well-established... ...to support the Project Manager and Principal in Charge in the... ...construction meetings. Ability to access existing and new project... ..., sexual orientation, gender identity, national origin, age,...Work at officeLocal areaRemote workFlexible hours
- ..., Michigan is seeking an experienced Learning and Development Specialist to enhance organizational operations. This role involves managing LMS content and coordinating training initiatives across the company. The ideal candidate has a Bachelor's degree and at least three...
$50 - $70 per hour
...wide range of supply chain management business areas , including:... ...specifically seeking an EDI Architect Candidates submitted as... ..., sexual orientation, gender identity, national origin, ancestry, citizenship... ...and HELP for help. You can access our privacy policy at...Contract work- ...deliver engineering and architectural design services, construction management, surveying, right-of-way acquisition, and materials testing... ...meaningful impact. DLZ Corporation has a Registered Landscape Architect (RLA) opportunity in either Waterford Twp. or Detroit, MI ....Temporary workFor subcontractorLocal areaFlexible hoursNight shift
- ...Senior Architect / Project Manager We are supporting a growth-oriented architecture firm seeking a Senior Architect / Project Manager to lead projects and support their continued growth. This role is suited for an architect who can guide projects from concept through...For contractors
- ...IPS Technology Services is seeking an experienced Architect Senior Associate for a 12+ month role based in Dearborn, MI. This full-time position requires profound experience in EDI architecture to ensure quality solutions and facilitate electronic exchanges of business...Full time
$94.4k - $293.8k
...solutions. You Are: As a n Advanced AI Architect, you will be responsible for designing and... ...status, sexual orientation, gender identity or expression, genetic information, marital... ...applicant. Additionally, employees who have access to the compensation information of other...Work experience placementLive inWork at officeLocal area- Overview We are requesting candidates with deep, hands-on experience in Enterprise Identity and Access Management (IAM), ideally within regulated industries such as healthcare, financial services, or insurance. The ideal candidate will demonstrate both operational excellence...Remote jobWork at office
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Identity and Access Management Architect. Be the first to apply!
Related searches
- management jobs Southfield, MI
- director of managed care Southfield, MI
- emergency management director Southfield, MI
- director management consulting Southfield, MI
- entry level emergency management Southfield, MI
- logistics and supply chain management Southfield, MI
- director managed services Southfield, MI
- health information management work from home Southfield, MI
- music events management Southfield, MI
- managed care specialist Southfield, MI

