Principal Identity Services Architect - PR/575029_1768336652

Principal Identity Services Architect

Chicago

USD180000 - USD260000

PR/575029_1768336652

Environment: Hybrid (3 days/week onsite)

Glocomms is partnered with an industry‑leading post‑trade financial services organization to appoint a Principal Identity Services Architect to drive Microsoft 365-centric architectural solutions and cross‑platform identity integration for a complex, global enterprise. The role will lead end‑to‑end technical plan design across heterogeneous environments, optimizing Microsoft cloud services with a strong focus on Microsoft Entra ID (formerly Azure AD), modern authentication protocols, and enterprise systems integration.

The successful candidate will shape comprehensive IAM strategies, ensure compatibility and integration across the enterprise ecosystem, and champion best practices that align with organizational policies, procedures, and controls.

Primary Responsibilities

Define and own IAM architecture for the enterprise ecosystem, emphasizing Microsoft identity solutions and vendor-neutral approaches.
Design and implement hybrid identity solutions (e.g., Azure AD Connect, federation technologies) ensuring compatibility and integration across platforms.
Optimize Microsoft cloud services and identity interaction patterns across enterprise systems and virtual desktop environments.
Establish configuration and release management standards for identity components, including governance and change control.
Partner with infrastructure and development teams to integrate identity services using APIs and modern authentication protocols (SAML, OAuth, OIDC).
Develop automation and scripting (PowerShell, Python) to streamline identity lifecycle processes and licensing optimization strategies.
Provide Level 2 issue management and Root Cause Analysis (RCA), delivering both workarounds and permanent fixes for identity-related incidents.
Create and maintain documentation for architecture, standards, operational runbooks, and support models; deliver training and transition plans to operational teams.
Monitor industry trends in identity management technologies and translate them into actionable roadmaps and best practices.

Key Qualifications

10+ years of experience in identity management technologies with deep expertise in Microsoft 365 and Microsoft Entra ID (Azure AD).
Proven leadership designing enterprise identity management architectures and implementations in heterogeneous environments.
Hands-on experience with Azure AD Connect, federation technologies, and hybrid identity solutions.
Strong knowledge of Microsoft identity solutions, information protection, and rights management within large, regulated enterprises.
Proficiency with automation and scripting (PowerShell, Python) and identity administration tools; experience with API-based identity management.
Deep understanding of modern authentication protocols (SAML, OAuth, OIDC) and enterprise ecosystem integration.
Experience instituting configuration management, release management, and documentation standards for identity components.
Track record of partnering effectively with cross-functional teams (infrastructure, security, engineering, and application owners).
Relevant certifications preferred: Microsoft Certified Identity and Access Administrator Associate, Microsoft Certified Azure Solutions Architect Expert, Microsoft 365 Certified Enterprise Administrator Expert, CIMP, IDPro, ITIL.

This position is hybrid with three days per week onsite in Chicago; at this time, visa sponsorship is not available.

Please note: CVs must include candidate name (first & last) and contact information in order to be considered.

FAQs

I have applied for a role, what happens next?

Congratulations, we understand that taking the time to apply is a big step. When you apply, your details go directly to the consultant who is sourcing talent. Due to demand, we may not get back to all applicants that have applied. However, we always keep your resume and details on file so when we see similar roles or see skillsets that drive growth in organizations, we will always reach out to discuss opportunities.

This role doesn’t 100% suit my next professional move, can you help?

Yes. Even if this role isn’t a perfect match, applying allows us to understand your expertise and ambitions, ensuring you're on our radar for the right opportunity when it arises.

We also work in several ways, firstly we advertise our roles available on our site, however, often due to confidentiality we may not post all. We also work with clients who are more focused on skills and understanding what is required to future-proof their business.

That's why we recommend registering your resume so you can be considered for roles that have yet to be created.

Can you help with resume preparation, interviews, and offer negotiation?

Yes, we help with resume and interview preparation. From customized support on how to optimize your resume to interview preparation and compensation negotiations, we advocate for you throughout your next career move.