▷ 3 Days Left: Senior Architect
4 weeks ago
About Position:
We are hiring for Senior Architect in IAM (Keycloak & Microsoft Entra ID) with hands on experience in IAM, 3+ in Keycloak, 3+ in Entra ID).
- Role: Senior Architect
- Location: All Persistent Locations
- Experience: 12-16 Years
- Job Type: Full Time Employment
What You'll Do:
- Must to have: IAM Architecture (SAML, OIDC, OAuth2, SCIM, MFA, Conditional Access) Keycloak realm design, custom providers (SPI), themes, LDAP/AD, clustering, HA Microsoft Entra ID app registrations, External ID (B2C), IEF/custom policies, Graph API Identity governance & lifecycle (joiner–mover–leaver), JustInTime & SCIM provisioning Cloud security patterns, Zero Trust, secrets, certificates, Terraform/GitOps, Kubernetes
- Nice-to-have: Azure, Kubernetes/containers, CI/CD, SOC2/ISO 27001/NIST experience, PAM Detailed Job Description Role: Senior Architect – Identity & Access Management (Keycloak & Microsoft Entra ID) About the Role We are seeking a seasoned IAM Architect to own the strategy, architecture, and delivery of our identity platform spanning Keycloak and Microsoft Entra ID. You'll define reference architectures, lead solution design for SSO/federation, govern access and lifecycle, and partner with product, security, and platform teams to deliver a secure, scalable, developerfriendly identity fabric.
- Architecture & Strategy Define and evolve the enterprise identity reference architecture (workforce, B2B, B2C).
- Establish standards for SSO, federation, token lifecycles, secrets, certificates, and Zero Trust enforcement.
- Create roadmaps for modernization (onprem cloud/hybrid), legacy deprecation, and consolidation.
- Keycloak Ownership Design realms, clients, roles, groups, and fine-grained authorization models. Implement custom Service Provider Interfaces (SPIs), authentication flows, and identity brokering.
- Build themes/branding for B2C; integrate LDAP/AD; configure JDBC storage, session policies, and crossrealm flows.
- Productionize Keycloak: clustering, HA, backup/DR, observability (Prometheus/Grafana), performance tuning. Automate realm/client configuration via Terraform/Helm; manage GitOps pipelines.
- Microsoft Entra ID (Azure AD) Architect app registrations, enterprise apps, Conditional Access, MFA, Identity Protection. Lead External ID (formerly B2C) designs using custom policies (IEF), user journeys, social logins, and OIDC/OAuth2 flows.
- Implement SCIM and JIT provisioning; manage entitlement models with groups/roles and access packages (if using Entra ID Governance).
- Integrate with workloads using MSAL, Graph API, and Managed Identities. Identity Governance & Lifecycle Design joiner–mover–leaver processes, RBAC/ABAC, SoD controls, and periodic access reviews.
- Define target operating model for identity operations, auditability, and evidence collection.
- Security & Compliance Apply best practices aligned to NIST, ISO 27001, CIS, SOC2, and data protection obligations.
- Drive threat modeling for identity flows (phishing-resistant MFA, replay protection, token hardening).
- Delivery & Leadership Lead solutioning, estimations, and architecture governance; create HLD/LLD, sequence diagrams, and decision records.
- Mentor engineers; collaborate with app teams to onboard apps to Keycloak/Entra ID using OIDC/SAML patterns. Manage vendor/partner engagements and cost optimization for identity platforms.
Expertise You'll Bring:
- 12+ years of overall experience, with 5+ years dedicated to IAM architecture/engineering.
- 3+ years hands-on with Keycloak in production (including recent Quarkus versions).
- 3+ years with Microsoft Entra ID (Azure AD), including Conditional Access/MFA and External ID (B2C).
- Expert in OIDC, OAuth2, SAML 2.0, SCIM, token handling (JWT, refresh token lifecycles), and PKCE.
- Experience with hybrid identity (onprem AD, Azure AD Connect/Cloud Sync) and identity federation.
- Strong with Terraform, Kubernetes/Containers, CI/CD, GitOps, REST/Graph APIs.
- Proven track record producing HLD/LLD, architecture decision records (ADRs), and reference implementations.
- Preferred / Nice to Have Azure: Azure AD Domain Services, Key Vault, Azure Monitor, Application Gateway/WAF, API Management.
- PAM (e.g., CyberArk), secrets management, certificate automation (ACME, EST).
- Performance tuning of auth services; cache strategies (e.g., Infinispan), sticky sessions, session replication. Knowledge of WebAuthn/FIDO2, device trust, and phishing-resistant MFA.
- Regulatory experience: PCI DSS, SOX, HIPAA, GDPR (customize per industry).
- Tools & Technologies IAM: Keycloak (Quarkus), Microsoft Entra ID (Azure AD), Entra External ID, Entra ID Governance Standards: OIDC, OAuth2, SAML, SCIM, JWT/JWS/JWE, WebAuthn/FIDO2 Integration: MSAL, Microsoft Graph API, Keycloak Admin API Infra/DevOps: Terraform, Helm, Kubernetes, Docker, GitHub/GitLab, Azure DevOps, ArgoCD Observability: Prometheus, Grafana, ELK/EFK, Azure Monitor, App Insights
- Education & Certifications Bachelor's/Master's in Computer Science, Information Security, or equivalent experience.
- Nice to have: Microsoft Identity & Access Administrator (SC-300), Azure Solutions Architect (AZ305), CISSP/CCSP, Okta/Forgerock (for comparative architecture).
Benefits:
- Competitive salary and benefits package
- Culture focused on talent development with quarterly growth opportunities and company-sponsored higher education and certifications
- Opportunity to work with cutting-edge technologies
- Employee engagement initiatives such as project parties, flexible work hours, and Long Service awards
- Annual health check-ups
- Insurance coverage: group term life, personal accident, and Mediclaim hospitalization for self, spouse, two children, and parents
Values-Driven, People-Centric & Inclusive Work Environment:
Persistent Ltd. is dedicated to fostering diversity and inclusion in the workplace. We invite applications from all qualified individuals, including those with disabilities, and regardless of gender or gender preference. We welcome diverse candidates from all backgrounds.
- We support hybrid work and flexible hours to fit diverse lifestyles.
- Our office is accessibility-friendly, with ergonomic setups and assistive technologies to support employees with physical disabilities.
- If you are a person with disabilities and have specific requirements, please inform us during the application process or at any time during your employment
Let’s unleash your full potential at Persistent - persistent.com/careers
“Persistent is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind.”
-
▷ 3 Days Left: Senior Copywriter
5 days ago
Pune, India 3 Dots Design Full timeJob Description Company Description 3 Dots Design is an Integrated Communications Specialist, providing comprehensive communication solutions across Advertising, Design, and Digital domains. As a media-neutral agency, we ensure optimal use of advertising resources to enhance the agility of clients marketing communications. Serving brands in India and Canada,...
-
▷ [3 Days Left] Solutions Architect
3 weeks ago
Pune, India T&N Business Services Full timeJob Title: Solution Architect – Banking Designation: Program Director / Senior Program Director Experience: 12+ years Location: Pune / Gurgaon Position Type: Full-Time Job Summary: We are seeking an experienced Solution Architect for the Banking domain, responsible for leading and executing complex RFI/RFP/RFQ/VDD/Proactive Proposals across Retail &...
-
Pune, India QBrainX Inc Full timeJob Description Job Title : ServiceNow Senior Developer / Lead / Architect Experience : 5+ to 13 years Location : Remote (India) Job Type : Full-Time Job Description We are looking for a ServiceNow Senior Developer / Lead / Architect with strong hands-on experience in ITSM and at least one of the following ServiceNow modules : GRC / SecOps / ITOM is...
-
Quality Assurance Associate
1 day ago
Pune, Maharashtra, India Left Right Mind Full timeWe are looking for a Quality Assurance (QA) associate - Automation to develop and execute automated test solutions to ensure product quality. QA Associate responsibilities include designing and implementing tests, debugging and defining corrective actions. You will be looking after creating detailed, comprehensive and well-structured test plans and test...
-
Architect Intern
3 days ago
Pune, India Urbane Architect Full timeWe Are Looking for Architect Intern with Knowledge of Autocad,Sketch-up,Photoshop,V ray, etc Architecture or interior student **Job Types**: Full-time, Internship Schedule: - Day shift Supplemental pay types: - Overtime pay Ability to commute/relocate: - Punawale, Pune - 411033, Maharashtra: Reliably commute or planning to relocate before starting...
-
▷ 3 Days Left: Solutions Architect
3 weeks ago
Pune, India HCLTech Full timeWe are seeking a highly experienced Teamcenter Solution Architect to lead the design, implementation, and optimization of our PLM (Product Lifecycle Management) environment using Siemens Teamcenter. You will play a critical role in aligning technology with business goals, driving innovation, and ensuring scalable, high-performance solutions. Key...
-
3 Days Left! Rulestream Architect
2 days ago
Pune, India Jobted IN C2 Full timeAt Capgemini Engineering, the world leader in engineering services, we bring together a global team of engineers, scientists, and architects to help the world’s most innovative companies unleash their potential. From autonomous cars to life-saving robots, our digital and software technology experts think outside the box as they provide unique R&D and...
-
Senior Automation Architect
2 weeks ago
INDIA - PUNE - BIRLASOFT OFFICE - HINJAWADI, IN Birlasoft Limited Full time ₹ 15,00,000 - ₹ 25,00,000 per yearLead Architect Area(s) of responsibility Job Summary: As a Senior Automation Architect with GenAI/AI/ML background, you will play a pivotal role in designing, developing, and implementing advanced automation frameworks. You will leverage your expertise in Java, Selenium, Playwright, and Python to create robust, scalable, and efficient automation...
-
▷ (3 Days Left) Structural Design Engineer
2 days ago
Pune, India JW CONSULTANTS LLP Full timeRole Description This is a full-time on-site role for a Structural Design Engineer at JW Consultants LLP in Pune. As a Structural Design Engineer, your day-to-day tasks will involve conducting structural analysis, designing structures, and / or collaborating with architects, and other stakeholders. Qualifications - Strong background in Structural Analysis...
-
▷ 3 Days Left: Pega Senior System Architect-VOIS
3 weeks ago
Pune, India VOIS Full timeJob Description Who we are VOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value for customers by delivering intelligent solutions through Talent, Technology & Transformation. As the largest shared services organisation in the global telco industry with 30,000 FTE, our portfolio of next-generation solutions and...