Universal Music Group · 2 months ago
Senior Identity Architect
Nashville, TN
Full-time
Onsite
Senior Level, Lead/Staff
$164K/yr - $200K/yr
10+ years expUniversal Music Group is the world’s leading music company, committed to artistry, innovation, and entrepreneurship. They are seeking an experienced Identity Architect to lead architectural design, strategic planning, and delivery across the full Identity & Access Management landscape.
Audio Recording and ProductionMedia and EntertainmentMusicPublishing
Responsibilities
Architect and design enterprise-wide IAM solutions aligned with business goals, security policies, and compliance requirements
Provide leadership and oversight for strategic IAM functions including PAM, IGA, SSO, MFA, Federation, PKI, Directory Services, and Secrets Management
Define technical direction for IAM tools and develop overall strategic framework for implementation across the company with an emphasis on standard configurations
Lead architecture planning and lifecycle designs for all personas including employees, partners, customers, and non-human identities
Establish the target-state identity architecture and effectively communicate and guide engineers to implementing that vision
Develop secure and scalable authentication, authorization, and account provisioning workflows
Partner with engineering teams to integrate identity services into applications and infrastructure using APIs and automation pipelines
Evaluate complex business requirements and effectively guide cross-functional teams to implement secure identity frameworks
Create and maintain architectural documentation, standards, and design patterns for IAM services
Contribute to solution development and code when needed, and review designs to ensure compliance with architecture and security standards
Engage with internal and external stakeholders to communicate strategy, resolve roadblocks, and champion IAM modernization initiatives
Qualification
Required
10+ years of experience in IAM or Security Architecture roles, with demonstrated success in designing enterprise-scale IAM platforms
Strong expertise with IAM protocols (SAML, OAuth2, OIDC, SCIM, LDAP, Kerberos, FIDO) and modern cloud identity models
Extensive hands-on experience with products like CyberArk, PingOne, Ping Davinci, EntraID, Saviynt, HashiCorp Vault, Digicert, Onfido, and Active Directory
Expert-level understanding of Authentication, Authorization, Directory Services, PKI, MFA, Federation, and PAM
Experience designing secure APIs and automating operational functions
Proven ability to lead architectural governance and collaborate across security, infrastructure, application, and compliance teams
Track record of implementing secure, scalable identity solutions in multi-cloud and hybrid environments
Excellent communication and leadership skills with the ability to influence at all levels of the organization
Experience working in Agile environments with cross-functional engineering teams
Preferred
Bachelor's or Master's Degree in Computer Science, Engineering, or related technical discipline
Professional certifications such as CISSP, CISM, Microsoft Certified: Identity and Access Administrator, or TOGAF
Background in risk-based authentication, adaptive access, and identity analytics
Experience in media, entertainment, or global enterprises
Experience in cloud application development and maintenance
Strong understanding of cloud security, container security, and zero trust architecture
Experience deploying passwordless technology in a hybrid environment
Knowledge of IAM-related compliance frameworks such as SOX, GDPR, NIST, ISO 27001
Benefits
Comprehensive medical, dental, and vision coverage
Including 100% coverage for out-patient in-network mental health services
Fertility coverage for eligible medical plan participants
Wellbeing reimbursements for fitness classes, spa treatments, meal services, travel, and so much more (up to $720/year)
Student Loan Repayment Assistance and Tuition Reimbursement
401(k) with 100% immediate vesting on the first 5% of your contributions, plus an additional UMG contribution
Flexible Paid Time Off (PTO) for exempt employees
3-weeks PTO for non-exempt employees
2-weeks paid Winter Break
10 Company Holidays (including Juneteenth and Wellbeing Day)
Summer Fridays (between Memorial Day and Labor Day)
Generous paid parental leave for every type of parent
Company
Universal Music Group
Universal Music Group is a music-based entertainment company that offers music recording, publishing, and merchandising services worldwide. It is a sub-organization of Leviy Publishing.
10001+ employees
H1B Sponsorship
Universal Music Group has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (19)
2024 (24)
2023 (14)
2022 (22)
2021 (18)
2020 (19)
Funding
Current Stage
Public CompanyTotal Funding
$8.65BKey Investors
William AckmanTencent
2023-06-06Post Ipo Debt· $802.31M
2021-09-21IPO
2021-06-21Secondary Market· $4.17B
Leadership Team
Devraj Sanyal
Chairman & CEO, Universal Music Group, India & South Asia; SVP Strategy "AMEA"
Timothy Xu
Chairman and CEO
Recent News
Digital Music News
2026-01-24
Digital Music News
2026-01-23
Company data provided by crunchbase