the client is seeking a VP Threat & Identity Architect to lead the strategy and architecture for identity access controls and identity threat detection and response capabilities within an information and cyber security organization focused on identity and access management. This role defines and drives the roadmap for protecting identities, platforms, and critical applications from identity-based attacks, addressing emerging risks such as non-human identities, artificial intelligence, and digital assets while aligning capabilities with business priorities and cybersecurity and regulatory requirements. The architect works closely with cybersecurity, engineering, architecture, and risk teams and provides strategic technical direction for identity threat architecture and controls.
Responsibilities include defining the strategy, roadmap, and architecture for identity threat detection and response; leveraging relevant threat and defense frameworks along with cyber threat intelligence to design detection and response controls; serving as a subject matter expert for identity threats and identity security controls; and establishing capability metrics, KPIs, and reporting frameworks. The role also maintains identity security standards, policies, and control documentation, evaluates and supports selection of identity security technologies, and ensures cybersecurity capabilities are translated into technology solutions and business outcomes. The architect will provide technical leadership to engineering and architecture teams and collaborate with vendors and external partners as needed.
The role designs and enhances identity access control and threat detection capabilities, supports automation and process optimization, and helps operationalize agile delivery practices. It includes developing identity threat response runbooks with cyber operations teams, ensuring alignment with cybersecurity standards, regulatory requirements, and internal governance, and maintaining audit readiness through centralized audit trails for identity security controls. Qualifications include 15+ years of cybersecurity experience with 8+ years in cyber threat detection, response, or threat intelligence, strong expertise in threat and defense frameworks, experience designing threat detection and response solutions, and knowledge of enterprise identity platforms. Familiarity with cloud platforms and enterprise infrastructure security, understanding of AI-related threats and non-human identity risks, strong stakeholder management and strategic delivery skills, and experience in banking or other regulated industries are preferred; a bachelor’s degree in a related field and relevant security certifications are also expected.