AI Identity Architect

Job Title: AI Identity Architect
Location: Toronto, ON (Hybrid, 2 days onsite) open for remote as well
Duration: 6 months with high possibility of extension
 
Role Overview
We are seeking an experienced AI Identity Architect with deep expertise across Artificial Intelligence, Enterprise Architecture, and Identity & Access Management (IAM).
This role will define and lead the design of secure, scalable identity architectures for both human and machine (AI/agentic) identities, ensuring alignment with enterprise security, governance, and Zero Trust principles.
The ideal candidate is a hands-on architect and subject matter expert (SME) who understands how AI systems operate and can translate that into robust identity, authentication, authorization, and governance models.
 
Key Responsibilities
AI + Identity Architecture

• Design identity frameworks for AI and agentic systems, including:
  • Non-human identity lifecycle (AI agents, service identities, bots)
  • Authentication and authorization models for AI workloads
  • Secure delegation and impersonation controls
• Ensure traceability, auditability, and accountability of AI-driven actions

 
Enterprise IAM Architecture

• Define and evolve end-to-end IAM architecture across:
  • Active Directory
  • Cloud platforms (AWS, Microsoft Entra)
• Architect solutions for:
  • Identity lifecycle management
  • Access control models (RBAC/ABAC)
  • Federation and SSO
• Align designs with Zero Trust and least privilege principles

 
AI Security & Governance

• Establish governance frameworks for AI identity usage
• Define controls for:
  • Model access and data access boundaries
  • Privileged access to AI systems
  • Secure API and token-based access patterns
• Partner with security teams to mitigate emerging AI-related identity risks

 
Architecture & Integration

• Act as a lead architect for integrating AI platforms with enterprise IAM
• Develop reference architectures, standards, and patterns
• Ensure consistent identity enforcement across hybrid and multi-cloud environments

 
Advisory & Leadership

• Serve as SME across AI domains & IAM
• Provide guidance to engineering, security, and platform teams
• Lead architecture reviews, design decisions, and strategy alignment

 
Required Qualifications

• Strong understanding of AI/ML systems and architectures
• 10+ years of experience in IAM and enterprise security architecture
• Experience designing secure identity models for APIs, services, and automation
• Proven expertise in:
  • Identity protocols (SAML, OAuth2, OIDC)
  • Active Directory and cloud identity platforms (AWS, Entra ID)
• Deep knowledge of:
  • Privileged Access Management (PAM)
  • Identity governance and lifecycle management

 
Preferred Skills

• Experience with agentic AI or autonomous systems
• Knowledge of machine identity, secrets management, and tokenization
• Experience integrating IAM with modern AI/ML platforms and pipelines

 
Core Competencies

• Strong architecture and system design mindset
• Deep IAM subject matter expertise
• Solid understanding of AI risks and security implications
• Ability to bridge emerging technologies with enterprise controls
• Excellent communication and influence across technical and leadership stakeholders

 
Success Profile

• Establishes secure identity patterns for AI systems at scale
• Enables safe AI adoption without increasing enterprise risk
• Drives consistent identity architecture across AD, cloud, and AI ecosystems
• Serves as a trusted advisor and technical authority in IAM + AI

 
Positioning Statement
This role is critical to ensuring Bank adopts AI technologies, identity remains the control plane - secure, governed, and designed to scale with the next generation of digital capabilities.
 
 
  

At SPECTRAFORCE, we are committed to maintaining a workplace that ensures fair compensation and wage transparency in adherence with all applicable state and local laws. This position's starting pay is: $99.00/hr.