We deliver our customers peace of mind every day by helping them protect what they value most. Our passion for placing the customer at the center of everything we do is driving a transformational shift at Liberty Mutual. Operating as a tech startup within a Fortune 100 company, we are leading a digital disruption that will redefine how people experience insurance. At the core of our values is the belief that putting people first and building trust through empathy and openness are essential to success in the evolving digital landscape.

We are currently seeking an Architect who shares our values and is passionate about applying DevSecOps to deliver superior Identity & Access Management (IAM) solutions. IAM is part of our Global Cybersecurity (GCS) organization, responsible for securing and protecting Liberty Mutuals customer and enterprise information and technology.

About the role:

You will be a member of the IAM leadership team, comprising the business, engineering, product management, and architecture disciplines all aligned to deliver secure, frictionless, and responsive IAM services. Your focus will be developing and implementing the strategic technical architecture and engineering practices to build a global, integrated, and optimized IAM technology portfolio.

You will collaborate with business leads, product owners, the broader architecture community and our vendor partners to align technology capabilities with product roadmaps. You will work closely with engineering teams to define and apply development frameworks, patterns, and best practices that enable high-performance delivery using best-in-class IAM products such as Sailpoint, Ping, Azure AD, CyberArk, and HashiCorp Vault as well as in-house developed solutions.

Leveraging your development and delivery experience, you will lead efforts to modernize legacy applications and explore leading-edge technology to deliver new solutions, while ensuring security, performance, maintainability, scalability, usability, reliability, and compliance of critical cybersecurity controls.

You will communicate extensively, presenting architecture concepts and designs, both verbally and in writing, to executive staff, business partners and technical staff to ensure that all stakeholders understand and support the architecture direction.

Responsibilities include:

• Collaboration: Cultivate and maintain close working relationships within the IAM team, with the cybersecurity community, and with customer stakeholders including internal technology partners, application teams, and the business units. Maintain regular contact with professional organizations, user groups, and trade groups to stay current with technology and industry trends.
• Technical Leadership: Lead the development and documentation of conceptual, logical and solution architectures across application, data and technology domains; define and vet current and future state architecture blueprints and roadmaps to support business and technology goals.
• Investment Optimization: Maximize technology investment by: performing effective buy/build assessments; maintaining an understanding of vendor product features and roadmaps to fully utilize out-of-the-box capabilities; and factoring total cost of ownership for customizations, homegrown code, and integrations.
• Security Assurance: Continuously monitor risks and maintain a proactive security posture for the IAM portfolio with regular threat modeling and by keeping environments appropriately upgraded, patched, and securely configured.
• Engineering Practices: Continuously improve effectiveness by leading the definition and adoption of secure engineering and quality standards, and mentoring engineering teams in the use of Agile. DevSecOps best practices and design standards such as the AWS well-architected framework.

This role might be fore you if you have:

• A commitment to diversity, equity, and inclusion, a personal growth mindset, and customer centricity.
• Deep experience with the end-to-end lifecycle of 3rd party enterprise platforms including evaluation, selection, deployment, configuration, integration, customization, and operation. Prior experience with IAM products such as Sailpoint Identity IQ, Ping Identity, and Azure AD a plus.
• Excellent leadership, planning and negotiation skills and the ability to make well-informed recommendations that balance the need to deliver with maintaining architectural standards.
• Strong interpersonal and collaboration skills, the ability to assess and reach your audience, and prior success developing others to build architecture capability across an organization.
• Hands-on Agile and DevSecOps engineering and development experience across security, network, infrastructure, data, and cloud domains, and a track record of high quality delivery.
• Experience developing with cloud native technologies, modernizing legacy applications to the cloud, and an understanding of data strategies, data lakes, and AI/ML.