Talent.com
This job offer is not available in your country.
Senior Architect

Senior Architect

Persistent SystemsPune, Pune (division), India
4 days ago
Job description

About Position :

We are hiring for Senior Architect in IAM (Keycloak & Microsoft Entra ID) with hands on experience in IAM, 3+ in Keycloak, 3+ in Entra ID).

  • Role : Senior Architect
  • Location : All Persistent Locations
  • Experience : 12-16 Years
  • Job Type : Full Time Employment

What You'll Do :

  • Must to have : IAM Architecture (SAML, OIDC, OAuth2, SCIM, MFA, Conditional Access) Keycloak realm design, custom providers (SPI), themes, LDAP / AD, clustering, HA Microsoft Entra ID app registrations, External ID (B2C), IEF / custom policies, Graph API Identity governance & lifecycle (joiner–mover–leaver), JustInTime & SCIM provisioning Cloud security patterns, Zero Trust, secrets, certificates, Terraform / GitOps, Kubernetes
  • Nice-to-have : Azure, Kubernetes / containers, CI / CD, SOC2 / ISO 27001 / NIST experience, PAM Detailed Job Description Role : Senior Architect – Identity & Access Management (Keycloak & Microsoft Entra ID) About the Role We are seeking a seasoned IAM Architect to own the strategy, architecture, and delivery of our identity platform spanning Keycloak and Microsoft Entra ID. You'll define reference architectures, lead solution design for SSO / federation, govern access and lifecycle, and partner with product, security, and platform teams to deliver a secure, scalable, developerfriendly identity fabric.
  • Architecture & Strategy Define and evolve the enterprise identity reference architecture (workforce, B2B, B2C).
  • Establish standards for SSO, federation, token lifecycles, secrets, certificates, and Zero Trust enforcement.
  • Create roadmaps for modernization (onprem cloud / hybrid), legacy deprecation, and consolidation.
  • Keycloak Ownership Design realms, clients, roles, groups, and fine-grained authorization models. Implement custom Service Provider Interfaces (SPIs), authentication flows, and identity brokering.
  • Build themes / branding for B2C; integrate LDAP / AD; configure JDBC storage, session policies, and crossrealm flows.
  • Productionize Keycloak : clustering, HA, backup / DR, observability (Prometheus / Grafana), performance tuning. Automate realm / client configuration via Terraform / Helm; manage GitOps pipelines.
  • Microsoft Entra ID (Azure AD) Architect app registrations, enterprise apps, Conditional Access, MFA, Identity Protection. Lead External ID (formerly B2C) designs using custom policies (IEF), user journeys, social logins, and OIDC / OAuth2 flows.
  • Implement SCIM and JIT provisioning; manage entitlement models with groups / roles and access packages (if using Entra ID Governance).
  • Integrate with workloads using MSAL, Graph API, and Managed Identities. Identity Governance & Lifecycle Design joiner–mover–leaver processes, RBAC / ABAC, SoD controls, and periodic access reviews.
  • Define target operating model for identity operations, auditability, and evidence collection.
  • Security & Compliance Apply best practices aligned to NIST, ISO 27001, CIS, SOC2, and data protection obligations.
  • Drive threat modeling for identity flows (phishing-resistant MFA, replay protection, token hardening).
  • Delivery & Leadership Lead solutioning, estimations, and architecture governance; create HLD / LLD, sequence diagrams, and decision records.
  • Mentor engineers; collaborate with app teams to onboard apps to Keycloak / Entra ID using OIDC / SAML patterns. Manage vendor / partner engagements and cost optimization for identity platforms.

    • Expertise You'll Bring :

  • 12+ years of overall experience, with 5+ years dedicated to IAM architecture / engineering.
  • 3+ years hands-on with Keycloak in production (including recent Quarkus versions).
  • 3+ years with Microsoft Entra ID (Azure AD), including Conditional Access / MFA and External ID (B2C).
  • Expert in OIDC, OAuth2, SAML 2.0, SCIM, token handling (JWT, refresh token lifecycles), and PKCE.
  • Experience with hybrid identity (onprem AD, Azure AD Connect / Cloud Sync) and identity federation.
  • Strong with Terraform, Kubernetes / Containers, CI / CD, GitOps, REST / Graph APIs.
  • Proven track record producing HLD / LLD, architecture decision records (ADRs), and reference implementations.
  • Preferred / Nice to Have Azure : Azure AD Domain Services, Key Vault, Azure Monitor, Application Gateway / WAF, API Management.
  • PAM (e.g., CyberArk), secrets management, certificate automation (ACME, EST).
  • Performance tuning of auth services; cache strategies (e.g., Infinispan), sticky sessions, session replication. Knowledge of WebAuthn / FIDO2, device trust, and phishing-resistant MFA.
  • Regulatory experience : PCI DSS, SOX, HIPAA, GDPR (customize per industry).
  • Tools & Technologies IAM : Keycloak (Quarkus), Microsoft Entra ID (Azure AD), Entra External ID, Entra ID Governance Standards : OIDC, OAuth2, SAML, SCIM, JWT / JWS / JWE, WebAuthn / FIDO2 Integration : MSAL, Microsoft Graph API, Keycloak Admin API Infra / DevOps : Terraform, Helm, Kubernetes, Docker, GitHub / GitLab, Azure DevOps, ArgoCD Observability : Prometheus, Grafana, ELK / EFK, Azure Monitor, App Insights
  • Education & Certifications Bachelor's / Master's in Computer Science, Information Security, or equivalent experience.
  • Nice to have : Microsoft Identity & Access Administrator (SC-300), Azure Solutions Architect (AZ305), CISSP / CCSP, Okta / Forgerock (for comparative architecture).

    • Benefits :

  • Competitive salary and benefits package
  • Culture focused on talent development with quarterly growth opportunities and company-sponsored higher education and certifications
  • Opportunity to work with cutting-edge technologies
  • Employee engagement initiatives such as project parties, flexible work hours, and Long Service awards
  • Annual health check-ups
  • Insurance coverage : group term life, personal accident, and Mediclaim hospitalization for self, spouse, two children, and parents

    • Values-Driven, People-Centric & Inclusive Work Environment :

    Persistent Ltd. is dedicated to fostering diversity and inclusion in the workplace. We invite applications from all qualified individuals, including those with disabilities, and regardless of gender or gender preference. We welcome diverse candidates from all backgrounds.

  • We support hybrid work and flexible hours to fit diverse lifestyles.
  • Our office is accessibility-friendly, with ergonomic setups and assistive technologies to support employees with physical disabilities.
  • If you are a person with disabilities and have specific requirements, please inform us during the application process or at any time during your employment

    • Let’s unleash your full potential at Persistent - persistent.com / careers

    “Persistent is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind.”

    Create a job alert for this search

    Senior Architect • Pune, Pune (division), India

    Related jobs
    • Promoted
    Senior Architect

    Senior Architect

    Latinem Private Limitedpune, maharashtra, in
    The Senior Architect for the US Back Office will be responsible for overseeing and leading architectural projects, providing technical expertise, and ensuring that design standards and client requi...Show moreLast updated: 18 days ago
    • Promoted
    Senior Landscape Architect / Lead Landscape Architect

    Senior Landscape Architect / Lead Landscape Architect

    Darpune, maharashtra, in
    Dar Landscape is dedicated to providing the opportunity to create sustainable, resilient landscapes that tackle climate change's issues, rebuilding ecosystems, and promote sustainable living.Being ...Show moreLast updated: 30+ days ago
    • Promoted
    Data Architect

    Data Architect

    MGrowpune, maharashtra, in
    We are proud to say we’re enjoying skyrocketing growth.Our broad range of data-driven solutions in data consulting and digital marketing are designed to meet our clients’ specific needs, always con...Show moreLast updated: 30+ days ago
    • Promoted
    Emergy - Senior SAP Architect

    Emergy - Senior SAP Architect

    Emergys Software Private Limited Innovation for AgPune
    We are seeking a Senior SAP Architect to lead the design and implementation of enterprise-grade SAP solutions across business domains. This role demands a deep understanding of SAP technologies (on-...Show moreLast updated: 30+ days ago
    • Promoted
    Lead Enterprise Architect

    Lead Enterprise Architect

    MMCPune
    Job Description : Let me tell you about the role As a Lead Enterprise Architects, we work with a collaborat...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Data Architect- SNOWFLAKE

    Senior Data Architect- SNOWFLAKE

    ComfNet Solutions GmbHPune, IN
    PM to 9 PM (with a few hours overlap in EST time zone – mandatory).A minimum of 8–10 years of experience in data engineering, encompassing the development and scaling of data warehouse and data lak...Show moreLast updated: 6 days ago
    Enterprise Architect

    Enterprise Architect

    ScaleneWorksPune, Maharashtra, India
    Quick Apply
    An Enterprise Architect is a practitioner of enterprise architecture which is a business management discipline that operates within large enterprises. Enterprise architects work with stakeholders, b...Show moreLast updated: 30+ days ago
    • Promoted
    Fujitsu - Senior Solution Architect - Azure

    Fujitsu - Senior Solution Architect - Azure

    Fujitsu TechnologyPune
    Position : Senior Solution Architect Experience : 9+ Years Job Summary : We are see...Show moreLast updated: 19 days ago
    • Promoted
    Principal / Senior Data Architect

    Principal / Senior Data Architect

    AaysPune, IN
    Position : Principal / Senior Data Architect.You will act as a key member of the consulting team helping Clients to re-invent their corporate finance function by leveraging advanced analytics.You wil...Show moreLast updated: 15 days ago
    • Promoted
    Senior Architect– Project Lead

    Senior Architect– Project Lead

    Landmarkz Projectspune, maharashtra, in
    Senior Architect – Project Lead.Are you an experienced architect ready to take ownership and lead impactful consultancy projects?. Landmarkz Architectural Consultancy.Lead large-scale consultancy pr...Show moreLast updated: 23 days ago
    • Promoted
    Senior Hybrid Cloud Architect - IaaS / PaaS

    Senior Hybrid Cloud Architect - IaaS / PaaS

    MNR SolutionsPune
    Are you a hands-on architect who thrives at the intersection of cloud and on-prem infrastructure? Join us as a Senior Hybrid Cloud Architect to design, implement, and lead enterprise solutions acro...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Architect

    Senior Architect

    Design Lyricpune, maharashtra, in
    Design Lyric is a leading Architecture and Design firm specializing in innovative and sustainable solutions for residential, commercial, and landscape projects. Founded in 2005, we are a Redmond-bas...Show moreLast updated: 8 days ago
    • Promoted
    Senior Hybrid Cloud Architect - IaaS / PaaS

    Senior Hybrid Cloud Architect - IaaS / PaaS

    Fujitsu TechnologyPune
    Job Title : Senior Hybrid Cloud Architect Experience Required : 11+ Years Work Mode : Hybrid <...Show moreLast updated: 30+ days ago
    • Promoted
    Zensar Technologies - Solution Architect - Cards & Payments

    Zensar Technologies - Solution Architect - Cards & Payments

    Zensar TechnologiesPune
    What's this role about ? We are seeking a highly skilled and experienced Solution Architect to join our Cards & Payments (C&P) team.This role requires a ...Show moreLast updated: 30+ days ago
    • Promoted
    Enterprise Architect - Solution Design & Implementation

    Enterprise Architect - Solution Design & Implementation

    Techno WisePune
    Enterprise Architect : We are seeking a highly skilled Enterprise Architect to join our dynamic team and help us manage our Azure infrastructure and products develope...Show moreLast updated: 15 days ago
    • Promoted
    Lead Platform Architect

    Lead Platform Architect

    MastercardPune, Maharashtra, India
    Infrastructure Design Services is a team of Technology Architects and Engineers responsible for the analysis and design of the infrastructure framework to fit the application, platform or system ne...Show moreLast updated: 26 days ago
    • Promoted
    APIGEE X Architect

    APIGEE X Architect

    LUSSOTECH PRIVATE LIMITEDChennai,Pune
    Role Summary : An Apigee X Architect is responsible for designing and implementing API management solutions using the Apigee platform. This role involves working close...Show moreLast updated: 30+ days ago
    • Promoted
    Senior CG Generalist (1 Positions) - Balewadi Pune

    Senior CG Generalist (1 Positions) - Balewadi Pune

    Vedarth Animation Studio Pvt LtdBalewadi, maharashtra, in
    Senior CG Generalist (1 Positions).Balewadi Highstreet Pune, India.Pune, specializing in original content (IP) development and full-dome video production for digital dome theatres.With experience i...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Architect

    Senior Architect

    Persistent SystemsPune, Maharashtra, India
    We are hiring for Senior Architect in IAM (Keycloak & Microsoft Entra ID) with hands on experience in IAM, 3+ in Keycloak, 3+ in Entra ID). Location : All Persistent Locations.Job Type : Full Time Emp...Show moreLast updated: 3 days ago
    • Promoted
    Sr Storage Automation QA

    Sr Storage Automation QA

    ACL DigitalBalewadi, maharashtra, in
    Experience in the storage / backup / virtualization domain is mandatory.Technical skills and competencies.Hands-on experience of testing backup and recovery solutions. Expertise in domain backup and sto...Show moreLast updated: 25 days ago