Directory Services and Privileged Access Architect at Sanlam Group

What will you do?

• Responsible for the Design, Architecture and integration of the Directory Services and Privileged Access technology stack. (Active Directory, Privileged Access Management, Digital Secrets Management (machine to machine)).

What will make you successful in this role?

• Own the Design, Architecture and integration of the Directory Services and Privileged Access technology stack. (Active Directory, Privileged Access Management, Digital Secrets Management (machine to machine)). 
• Own the Design, Architecture and integration of Azure and AWS Directory integration (Azure AD/Microsoft Entra ID, Azure AD Domain Service/Microsoft Entra Domain Services, Azure AD Connect/Microsoft Entra Connect Sync, AWS Managed Microsoft AD and similar technologies) 
• Maintain Roadmaps for all relevant technologies in the Directory Services and Privileged Access stack.
• Stay up to date with regards to the organization's strategy and industry trends and.
• Plan for technology refresh and replacement as applicable.
• Responsible for monitoring downstream OLAs and agreements with support departments.
• Mature End-to-end observability for Directory Services and Privileged Access technology stack
• Responsible to plan and direct continuous improvement and drive and measure maturity across the Directory Services and Privileged Access technology stack
• Providing input into all downstream a service level agreements, managed service agreements and contracts.
• Drive and adopt the organization's repeatable operations as code and IaC strategies as applicable to the technology stack.
• Collaborate with stakeholders, including business leaders, project managers, developers and architects to understand requirements and constraints.
• Active engagement with technology partners to deliver an integrated solution across platforms.
• Ensure appropriate standards, patterns, best practices and operational maturity models are in place and monitored.
• Collaborate with Security Architecture as is applicable in the development of roadmaps, patterns and standards.

Knowledge and Experience

Minimum:

• Experience working in a hybrid- and multi-cloud environment (AWS preferred) and cloud technologies (AWS & Azure technologies preferred).
• Minimum 7 years of experience in Active Directory Architecture in medium/large Enterprise environments.
• Minimum 5 years experience in security and infrastructure architecture and systems design.
• Proven experience delivering and managing Azure and AWS Directory Integration (Azure AD/Microsoft Entra ID, Azure AD Domain Service/Microsoft Entra Domain Services, Azure AD Connect/Microsoft Entra Connect Sync, AWS Managed Microsoft AD and similar technologies)
• Experience in working in an Agile environment.
• Experience in cloud security concepts.
• Knowledge and understanding of Cloud technologies and best practices, Networking in Public and Hybrid Cloud environments, Network protocols, network architecture and security.
• Experience with operating and engineering solutions in a Cloud-focussed organization.
• Understanding of Security Architecture concepts including encryption, authentication, database security, Identity Providers, Enterprise single sign-on (SSO), Federated SSO, multi-factor authentication, API security.
• Scripting skills in at least one interpreted language (Bash/PowerShell/Python)
• Expertise with PAM solutions (BeyondTrust preferred; StrongDM, Hashicorp Boundary in addition would be ideal)

Preferable:

• Understanding of virtualization technologies, such as VMWare, Docker, and Kubernetes.
• Experience with PAM in a multi-cloud environment (AWS, Azure)
• Working in a DevOps environment (including proven CI/CD experience with technologies such as GitLab or Github, Nexus and others).
• Proven experience delivering long-term, repeatable IaC solutions into an overall CI/CD process.
• Proven experience deploying and configuring Cloud Services using Terraform.

Qualifications

• Matric
• A relevant tertiary qualification
• AWS Certified Solutions Architect (preferred) or Microsoft Azure Solutions Architect Expert

Skills

• Strong leadership and influencing skills
• Analytical in nature
• Ability to negotiate and positively influence others
• Ability to effectively deal with conflict situations and complexity 
• High level of emotional intelligence
• Excellent verbal and written communication skills
• Excellent facilitations skills
• Networking skills
• Applying technologies
• Conceptual thinker
• Risk management
• Change management
• Develop and implement strategy
• Interpersonal skills, ability to engage with senior business stakeholders
• Ability to accept accountability for actions and decisions
• Problem solving skills
• Interpersonal & Relationship management skills
• Planning, organizing and coordination skills