The Lead IAM Engineer/Architect leads enterprise IAM initiatives from planning through implementation, develops custom Java-based solutions within SailPoint IdentityIQ, and builds cloud access automation using Python/PowerShell. This role manages complex access provisioning and deprovisioning workflows and partners with security and compliance teams on governance frameworks. This position reports directly to a Director or Senior Director.Key ResponsibilitiesArchitectural Leadership & DesignLead enterprise IAM initiatives from planning through implementationDesign and develop custom Java-based solutions within SailPoint IdentityIQLead the architecture of robust, scalable IAM solutions across hybrid environmentsCollaborate on system architecture decisions and integration patternsDesign role modeling and certification campaignsEngineering Excellence & QualityWrite and modify Java code within SailPoint for custom business logic (not just scripting - actual application development)Develop custom connectors and perform connector customizationConfigure and optimize workflow configurationLead implementation of comprehensive testing strategies for IAM solutionsTroubleshoot complex identity issues across hybrid environmentsStrong SailPoint IdentityIQ administration/development and hands‑on Java programming experienceDevOps & InfrastructureBuild and maintain AWS/Azure cloud access automation using Python/PowerShellImplement AWS IAM with hands‑on policy creation and automationManage complex access provisioning/deprovisioning workflowsIntegrate Active Directory/Azure AD administration and integrationCreate and maintain technical documentation for audit purposesMentorship & Cultural LeadershipMentor junior engineers on SailPoint development, IAM architecture, and security best practicesCoach and train colleagues in best practices for IAM developmentLead cross‑functional teams on IAM transformation projectsChampion collaborative resolution of complex identity issuesProvide feedback on processes and recommend improvementsProduct & Stakeholder CollaborationPartner with security and compliance teams on governance frameworksCommunicate complex IAM concepts to non‑technical stakeholdersOpenly share progress and priorities with key stakeholdersLead projects using Agile/Scrum methodologiesWork under pressure and coordinate across multiple teams simultaneouslySecurity & ComplianceEnsure all work products meet enterprise security standardsLead secure coding practices for IAM componentsCreate and maintain technical documentation for audit purposesDesign solutions supporting governance and compliance requirementsEducation and Experience RequirementsBachelor's degree in Computer Science, Information Systems or related discipline with at least seven (7) years of related experience, or equivalent training and/or work experience;Master's degree and past Financial Services industry experience preferred.Experience must include direct experience in leading key areas such as: securing networks and systems architecture, design and implementation, secure software assurance, intrusion detection, defense and incident response, security configuration management, access controls design and implementation and security policy and standards development.In‑depth knowledge of more than one communications protocol.Experience managing several Cyber Security tools, including: Configuration Assessment, Log Aggregation, Integrity Verification, Web Application Security Testing, Network Access Control System, Network Intrusion prevention systems, and Endpoint Security Solutions.Strong written and verbal technical communication skills.Demonstrated ability to develop effective working relationships that improved the quality of work products.Should be well organized, thorough, and able to handle competing priorities.Ability to maintain focus and develop proficiency in new skills rapidly.Ability to work in a fast paced environment.Excellent planning skills.Willingness to accept new challenges and grasp new or changing concepts, technologies and procedures.In‑depth knowledge across all areas of Information Security.Work ConditionsHybrid work environment, with defined in‑person presence requirements.Occasional travel and extended hours may be required.Salary RangeFor work that is performed in CA, CO, FL, TX, IL, PA, MA, MD, VA, Washington, DC, NY and NJ, please refer to the chart below for the salary range for the corresponding location. In addition to location, actual compensation is based on various factors, including but not limited to, the candidate's skill set, level of experience, education, and internal peer compensation comparisons.CA: Minimum Salary $128,000, Maximum Salary $242,600CO/FL/TX: Minimum Salary $111,400, Maximum Salary $202,100IL* / PA: Minimum Salary $122,800, Maximum Salary $222,400MA/MD/VA/Washington, DC: Minimum Salary $128,000, Maximum Salary $232,500NY* / NJ: Minimum Salary $128,000, Maximum Salary $242,600*Including positions performed outside the state but reporting to an office or manager in that state.BenefitsEmployees may be eligible for a discretionary bonus in addition to base pay. Non‑exempt employees are also eligible for overtime pay in accordance with federal, state, or local law. As part of its dedication to employee wellness, FINRA provides comprehensive health, dental and vision insurance. Additional insurance includes basic life, accidental death and dismemberment, supplemental life, spouse/domestic partner and dependent life, and spouse/domestic partner and dependent accidental death and dismemberment, short‑ and long‑term disability, long‑term care, business travel accident, disability and legal. FINRA offers immediate participation and vesting in a 401(k) plan with company match and eligibility for participation in an additional FINRA‑funded retirement contribution, tuition reimbursement, commuter benefits, and other benefits that support employee wellness, such as adoption assistance, backup family care, surrogacy benefits, employee assistance, and wellness programs.Time Off and Paid Leave: FINRA encourages its employees to focus on their health and wellness in many ways, including through a generous time‑off program of 15 days of paid time off, 5 personal days and 9 sick days, unless otherwise required by law (all pro‑rated in the first year). Additionally, we are proud to support our communities by providing two volunteer service days (based on full‑time schedule). Other paid leave includes military leave, jury duty leave, bereavement leave, voting and election official leave for federal, state or local primary and general elections, care of a family member leave (available after 90 days of employment); and childbirth and parental leave (available after 90 days of employment). Full‑time employees receive nine paid holidays.If you need a disability‑related accommodation for completing the application process, please contact FINRA's Employee Relations team at 240.386.4865 or by email at EmployeeRelations@finra.org. Please note that this process is exclusively for inquiries regarding application accommodations.All qualified applicants will receive consideration for employment without regard to age, citizenship status, color, disability, marital status, national origin, race, religion, sex, veteran status or any other classification protected by federal, state, or local laws.FINRA abides by the requirements of 41 CFR 60-741.5(a). This regulation prohibits discrimination against qualified individuals on the basis of disability and requires affirmative action by covered prime contractors and subcontractors to employ and advance in employment qualified individuals with disabilities.FINRA abides by the requirements of 41 CFR 60-300.5(a). This regulation prohibits discrimination against qualified protected veterans and requires affirmative action by covered prime contractors and subcontractors to employ and advance in employment qualified protected veterans.#J-18808-Ljbffr