Principal Architect, Identity Governance and Administration

Broad Institute
United States, Massachusetts, Cambridge
Aug 06, 2025
Description & Requirements The Broad IT Services (BITS) group is dedicated to building an exceptional team to support the Institute's mission of "Accelerating the Understanding and Treatment of Disease." Our team of technical experts collaborates with researchers to develop, scale, and manage a wide range of technology solutions. We are seeking a driven and enthusiastic Principal Architect for Identity Governance and Administration to contribute to our community. In this role, you will be responsible for the platform strategy for identities, maturity, workflow automation, customer engagement, and quality within Identity Governance and Administration. You will work directly with technologies such as Okta, Active Directory, Entra ID, Google Workspace and Active Directory Federated Services. Key Responsibilities: This position encompasses both technical expertise and managerial responsibilities, requiring a unique blend of skills. The successful candidate will be expected to contribute directly to technical projects while also leading and guiding a team. Develop and implement the platform strategy for identity governance and administration. Drive the maturity of identity management processes and systems. Understanding the technology landscape and emerging innovations in order to build a long term roadmap for your products and services. Design and implement workflow automation for identity-related tasks. Engage with customers to understand their identity and access management needs and provide solutions. Setting clear priorities that allow a team of technical professionals to deliver the product and service features that will have the maximum impact for our customers. Ensure the quality and reliability of identity services. Work hands-on with Duo Mobile, Okta, Active Directory, Entra ID, Google Workspace and Active Directory Federated Services. Manage vendor relationships for core systems and collaborate with vendors on integration activities. Collaborate with team members to deliver an exceptional user experience, focusing on automated provisioning and deprovisioning of applications and services. Manage and improve 2FA within the Broad. Collaborate with IT and non-IT team members with the development of account strategies across the institution. Requirements: Minimum 10 years of experience working directly with identity technologies such as Okta, Active Directory, Entra ID, and Active Directory Federated Services. Minimum of 5 years managing a team of highly technical individuals. Proven experience in platform strategy, maturity, workflow automation, customer engagement, and quality within Identity Governance and Administration. Deep understanding of Single Sign-On (SSO) and other authentication protocols. A proven track record supporting the ongoing career development and manager responsibilities of individual contributors, including team staffing, performance feedback, and supporting ongoing development of individuals within the team. Familiarity with Identity Federation technologies for third-party partnerships and external institutions. Experience with managing Active Directory administration and maintenance both on-premise and in the cloud. Knowledge of different methods of digital certificate management. Familiarity with Dual/Multi Factor Authentication methods. Comfortable providing consultative experience to both technical and non-technical consumers of Identity and Access Management offerings. The Broad Institute will not offer visa sponsorship for this opportunity.