The Managing Director, Domain Architect – Identity is the senior-most architectural authority for the Identity domain, accountable for defining and driving the target-state architecture for Identity & Access Management across the enterprise. This role provides deep architectural leadership across workforce IAM, privileged access, customer and partner identity, machine and workload identity, and emerging agentic / AI-driven identity use cases.
The role is intentionally architecture-led rather than operations-led. The Managing Director acts as the design authority and strategic advisor to the Head of IAM, technology leadership, and cybersecurity executives—ensuring identity capabilities scale securely, consistently, and in line with enterprise and regulatory expectations.
Key Responsibilities
Domain Architecture Leadership
• Own the enterprise Identity domain target architecture, including IAM, IGA, PAM, CIAM, machine and non-human identities, federation, and authorization services.
• Define and maintain Identity reference architectures, design patterns, and architectural principles, ensuring alignment with enterprise standards and Zero Trust objectives.
• Serve as the final design authority for material identity solutions and major identity-related programs.
Strategy to Execution
• Translate business, regulatory, and cybersecurity strategy into a clear, sequenced Identity architecture roadmap.
• Partner with IAM product, engineering, and operations leaders to ensure architectural intent is realized consistently in delivery.
• Guide modernization initiatives including platform rationalization, cloud-native identity, passwordless authentication, and identity orchestration.
Enterprise & Central EA Collaboration
• Operate as the Identity Domain counterpart to Central Enterprise Architecture, ensuring alignment while defending domain-specific architectural needs.
• Escalate and arbitrate design decisions that have enterprise-wide risk, cost, or precedent implications.
• Contribute identity expertise to Architecture Review Boards (ARB) and Technology Review Boards (TRB).
Risk, Control, and Regulatory Alignment
• Ensure Identity architectures align with financial-services regulatory expectations and internal risk frameworks.
• Embed security-by-design, least privilege, strong authentication, and auditability across all identity patterns.
• Act as a trusted architectural partner in regulatory discussions where identity design is material to outcomes.
Emerging Identity Capabilities
• Provide architectural leadership for non-human identity, service accounts, secrets management, and agentic / AI identity patterns.
• Continuously assess emerging identity standards, protocols, and industry practices, incorporating them where strategically appropriate.
Leadership & Influence
• Mentor and develop senior and principal-level identity architects.
• Influence senior stakeholders across technology, cybersecurity, and the business without direct authority.
• Represent the Identity architecture function with credibility at managing director, executive, and board-adjacent levels.
Qualifications & Experience
• 15+ years of experience in Identity & Access Management, security architecture, or enterprise architecture in large, regulated environments.
• Deep hands-on architectural expertise across IAM, PAM, CIAM, federation, directories, authorization, and cloud identity.
• Demonstrated experience defining and governing domain architectures at enterprise scale.
• Strong understanding of regulatory, audit, and risk considerations in financial services.
Education & Certifications (preferred)
• Bachelor’s or Master’s degree in Computer Science, Engineering, or related field.
• CISSP, CISM, CCSP, TOGAF, or equivalent practical experience.
Salary Range:
$170,000 - $282,500 Annual
The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.
Employees are eligible to participate in State Street’s comprehensive benefits program, which includes: our retirement savings plan (401K) with company match; insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages; paid-time off including vacation, sick leave, short term disability, and family care responsibilities; access to our Employee Assistance Program; incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans); and, eligibility for certain tax advantaged savings plans.
For a full overview, visit .