Maplesoft Group is currently seeking a Solutions Architect for our Federal Government client.

Tasks and Responsibilities include, but are not limited to the following:
 
Under the direction of the Assistant Director, Cyber Access Control
• Serve as the lead technical expert and oversee planning activities to drive the development of solution 
architecture for the client's External Partners Access platform; Advanced Risk-Based Authentication & 
Authorization and adjusting initiatives.
• Develop architectural framework and design for solution components within Identity and Access 
Management (IAM) portfolio to support both new project delivery, or maintenance and enhancement 
efforts identified by the client, ensuring that data, infrastructure, and application architectures are aligned
• Assist in the development of solutions that meet the needs of the project(s) and the client's security teams
• Participate in all phases of the project/ DevOps life cycle to implement the required information 
technology, adding technical know-how, creativity and a seasoned perspective to IAM initiatives
• Support client employees in developing solutions
• Define and document the solution architecture structure, connections and relationships with security 
interfaces, business applications, data, and user interfaces
• Identify technical issues and risks and define mitigation approach
• Work closely with Subject Matter Experts to confirm the detail design of each solution component and 
integration among components; as well as coordinate the implementation of the detail design
• Work with the client's Cyber Security group to apply client Cyber Security standards 
• Present and seek approval for proposed design from the client's different governing bodies 
• Prepare knowledge transfer materials and complete knowledge transfer sessions with Client employees
• Provide on-the-job training, coaching, guidance and support to more junior colleagues.
• Other related activities and deliverables, as required

Required Qualifications & Skills 
The Consultant should have the following qualifications and skills:
• University degree or college diploma in information technology management, information technology 
engineering, or a related field
• A minimum of five (5) years working with enterprise mission critical/high availability solution 
Architecture/technologies
• A minimum of five (5) years of hands-on working experience in designing and deploying scalable, highly 
available, and fault-tolerant systems solutions in Microsoft Azure
• A minimum five (5) years of demonstrated expertise in managing, configuring, and troubleshooting Active 
Directory environments including hybrid architectures.
• In-depth knowledge and demonstrated experience in designing and implementing Azure Entra ID 
Services, including User and Group Management, Application Integration, Single Sign-On (SSO), and 
Multi-Factor Authentication (MFA) to ensure secure access to cloud and on-premises resources. 
• Demonstrated knowledge of different security implementations including Single Sign-On and delegated 
access technologies (SAML, Kerberos, OAuth and Open ID Connect)
• Demonstrated knowledge of Akamai services and products (GTM, Site Shield etc.)
• Demonstrated knowledge of various Web Application Platform technologies (F5, Akamai, Azure etc.) and 
application proxy solutions (F5, NGINX, Zscaler, Netskope etc.)
• Demonstrated knowledge of SSL termination, including its role in securing traffic for on-premise 
applications, and familiarity with components commonly used for its implementation.
• Demonstrated experience in migrating existing on-premises applications and services to the cloud.
• Demonstrated understanding of Gartner best practices and industry leading solutions
• Demonstrated ability to write clear and concise documents for a technical and non-technical audience 
• Demonstrated ability to analyze, assess and problem-solve, making sound decisions and 
recommendations

Additional Qualifications 
The following will also be considered:
• Demonstrated experience with Broadcom API Gateway (formally known as Layer 7 or CA API Gateway)
• Demonstrated experience with Broadcom LDAP Services and Access Policy Management Application 
(Broadcom LDAP Directory and SSO, formerly known as Site Manager
• Demonstrated knowledge of leading vendor platforms, such as Azure Entra ID and Okta
• Demonstrated experience in coordinating efforts with multiple technical resources to build solutions and 
properly pilot the solutions
• Demonstrated ability to work independently and within a team environment
• Recognized IT industry certification such as TOGAF, Zachman, ITIL and project management certification 
• Relevant Cyber Security certifications (CISSP, GIAC, etc.) and Microsoft certifications (Azure Solutions Architect 
Expert)


Maplesoft Group prides itself on its distinct corporate culture and recognizes that success is a direct reflection of our most valuable asset - our people.  Therefore, attitude and ambition are key personality traits we seek out, along with skill and aptitude, in potential employees.

Maplesoft Group is committed to having a diverse, representative workforce and continuing to build an inclusive environment. We encourage applications from all qualified individuals. Maplesoft Group is an equal opportunity employer committed to diversity and inclusion. We are pleased to consider all qualified applicants irrespective of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veterans’ status, Aboriginal peoples or any other legally protected factors. 

All employment decisions are made based on business needs, job requirements, and individual qualifications. 

We are committed to developing inclusive, barrier-free recruitment and selection processes, and a work environment that supports our diverse workforce. Please let us know if you require accommodations at any stage of the recruitment process. We can be reached at Maplesoft Info at info@maplesoftgroup.com.

We thank you for your interest in Maplesoft Group and wish to advise you, that only candidates under consideration will be contacted.