IDAM Architect

DEPARTMENT: Cybersecurity Technology Operations
REPORTS TO: Senior Manager, Cybersecurity Technology Operations

Your Role

• Responsible for designing, implementing, and maintaining a robust and secure identity and access management framework for the organization.
• Creates and oversees the architecture, policies, procedures, and technologies related to user identities, authentication, authorization, and access controls across various systems and applications.
• Collaborates with cross-functional teams, including security, infrastructure, application, compliance, and business units, to ensure the organization's digital assets and data are protected while enabling efficient and seamless user access.

Why You Belong Here

At Victoria’s Secret & Co, we acknowledge your value. We recognize that every associate has something unique to add to our brand and business. We strive to recruit, retain, and advance diverse talent that reflects the customers we serve and the communities where we live and work. We foster a culture where everyone belongs because we know our business thrives most when we look for, listen to, and amplify diversity, equity, and inclusion.

We place the customer at the heart of everything we do. We dream big, embrace curiosity and creativity while always learning from our mistakes. We lead with integrity, trust, and respect to achieve the best outcomes as one team.

Your Impact

• Develop and maintain a comprehensive IAM strategy aligned with business goals and security requirements.
• Design IAM architecture that accommodates scalability, flexibility, and interoperability across diverse platforms and technologies.
• Evaluate and recommend IAM solutions, tools, and technologies to meet evolving business needs and security challenges.
• Define and mature user provisioning, de-provisioning, and account lifecycle management processes.
• Design and manage workflows for user onboarding, offboarding, and role changes, ensuring compliance with company policies and industry regulations.
• Design authentication mechanisms, including multi-factor authentication (MFA), single sign-on (SSO), and adaptive authentication.
• Establish authorization frameworks, role-based access controls (RBAC), and fine-grained access policies for different user roles and data classifications.
• Mature access governance processes to ensure proper access certifications, entitlement reviews, and compliance audits.
• Identify and assess IAM-related risks and vulnerabilities and develop mitigation strategies.
• Collaborate with the security team to monitor and respond to IAM-related security incidents and breaches.
• Integrate IAM solutions with existing and new applications, directories, databases, and cloud services.
• Collaborate with development teams to ensure IAM considerations are incorporated into application design and development processes.
• Create and maintain comprehensive documentation of IAM architecture, processes, and configurations.
• Provide training and guidance to IT teams, administrators, and end-users on IAM best practices, procedures, and tools.
• Stay up-to-date with emerging IAM trends, technologies, and industry best practices.
• Evaluate and recommend innovative IAM solutions to enhance security and user experience.

Click here for benefit details related to this position.