Information Security Architect

Denver, CO 80256

Employment Type: Contract Category: IT/Security/CyberSecurity Job Number: 13170

Job Description

Meridian Technology Group is seeking an Information Security Architect.


Our client seeks to upgrade and or replace the current identity management system through a technology upgrade that could include architectural changes where the authorization work is pushed to respective applications as opposed to a Delegated Administration model. The application support is both in-house and outsourced to vendor-supported systems that interface with the identity management system through SAML XML.

This requires an individual with strong knowledge of Identity Management Systems, and best practices, but also someone familiar with architecture and implementation of Identity Management systems.

In this role, you will:
  • Work closely and collaboratively with the Department’s Project Manager throughout the duration of the Purchase Order to discuss suggestions or issues and incorporate guidance from the Department while performing the work described within this Statement of Work.
  • Alert the Project Manager, when issues or potential risks are encountered that will affect the project.
  • Submit periodic status reports or participate in weekly status meetings as required by the Department during the engagement.
  • Coordinate and prioritize all work to ensure that all deliverables and deadlines are met.
  • Employ an internal quality control process to ensure that all deliverables are complete, accurate, easy to understand, and of high quality.
  • Provide deliverables that, at a minimum, are responsive to the specific requirements of this Statement of Work, organized into a logical order, contain no spelling or grammatical errors, formatted uniformly, and contain accurate information and correct calculations.
  • Submit each deliverable to the Department’s Project Manager for review and approval.
  • Retain all work papers generated for reference through the duration of the project and project acceptance.
  • Participate in the review and revision process until the Department provides written acceptance of the deliverable.
  • Research, document, and share any documentation as requested by the Department.
  • Provide copies of any supporting documentation to the Department upon request of the Department and without charge.
  • Assist the Department with planning, scheduling, and facilitating meetings; with other State of Colorado Agencies; and with other states, as needed.
  • Serve as a subject matter expert (SME) and mentor for designated employees.
  • Respond to all telephone calls, voice mails and e-mail inquiries from the Department within one business day.
  • Enable all Contractor staff to exchange documents and electronic files with the Department in formats compatible with the Department’s systems. The Department currently uses Microsoft Office 365.
  • Additional consulting projects as requested by the Department.

Project Requirements
  • Provide expert Identity management systems consulting services.
  • Join the SLDS project team and interview necessary subject matter experts to understand the current IDM system and how best to upgrade the system.
  • Review current architecture, business rules and application requirements.
  • Develop a new high-level architecture and design for the new identity management system, based on current industry direction, which shall include all changes to the base requirements.
  • Develop a roadmap that includes a timeline, milestones tasks and budget for the implementation of a new identity management system.
  • Assist in the development of an RFP using the information gathered in the discovery and design work to include requirements, timeline and budget.
  • Deliver a detailed report on the review of the current architecture and environment to the Grant Project Manager for review. Note that this report may be presented to the IMS team. This report should:
  • Provide details about the current architecture based on the communications with the IMS team and end-users (i.e. the districts) and other stakeholders.
  • Offer recommendations on how the existing identity management system can be improved based on the latest industry best practices and work done by other states.
Once report is review and IMS management provided feedback, the consultant shall submit a high-level architecture plan for the new environment to the Grant Project Manager for approval. At minimum the plan shall include the items listed below:
  • Recommendations on how to implement a new identity management system
  • All suggestions shall be accompanied by associated timeline recommendations.
  • Participate in project team meetings, workstream meetings and others as necessary to fully understand project approach and progress.
  • Participate in regular progress meetings as requested by the Department. These meetings may be held in-person or remotely.
  • Provide On the job training to Identity management workstream members
  • Provide identity management review services as needed throughout the remaining grant period.
  • Share knowledge of identity management system as required deliverables are developed and submitted. The identity management system workstream members may also contribute to the work required for these deliverables, as time allows and as negotiated with Project Manager.
The Department’s Identity management system workstream team consists of information security officer, infrastructure manager, identity management administrator, SLDS Grant Project Manager and the applications development manager. This team is well versed in maintaining the existing oracle identity management system. Consultant shall join this workstream group and work closely with these employees. For the identity management system roadmap, employees must understand how the conclusion has been and that implantation of the new system is feasible within a foreseeable timeline and how it shifts from the project implementation phase to an ongoing operational phase


IDM Replacement / Upgrade recommendations for RFP assistance project

The Information Security Architect shall assess the existing Identity Management system (IDM) in support of the Longitudinal Data Systems (SLDS) federal grant to assure that education data is protected appropriately.

The Identity Management process streamlines the user authentication and authorization process for the data systems and enhances the security to student-level data. It automates the user registration, approval, and password reset processes and provides districts and administrative units with the ability to maintain users via a Delegated Administration model.

The Identity management system was implemented in the Oracle Identity Management Suite. The software components include:

  • Oracle Internet Directory (OID)
  • Oracle Access Manager (OAM)
  • Oracle Identity Manager (OIM)
Current system is based on the following high-level specifications:
  • Implementation of multiple organizations (e.g. each school district) and user-ids
  • Integration of OAM/SSO and Key Applications:
    • Data Pipeline (District Data Collection System)
    • RITS (Record Integration Tracking System, Unique Student Identification application) EDIS (Educator Data Integration System) J2EE Application
  • Develop OIM Connectors
    • RITS / EDIS J2EE Application
    • Others, as needed for the key applications
  • Create a delegated administration environment for data custodians using Oracle Identity Manager to provision, de-provision, and manage the user accounts associated with the key applications
  • OAM Self-Service Password Reset Functionality
  • High Availability (HA) architecture

Location is Denver, CO. Position is Fully Remote. Consultants should reside in the area.

Any offer of employment will be conditional, based on successfully passing a Criminal Background Check.

Meridian Technology Group is committed to equal employment opportunity (EEO) and non-discrimination for all employees in all job classifications and for prospective employees without regard to race, color, religion, sex, age, sexual orientation, veteran status, physical or mental disability, national origin, or any other characteristic protected by applicable federal or state law. All hiring is contingent on eligibility to work in the United States. We are unable to sponsor applicants for work visas therefore, please do not apply if you are not  eligible to work without sponsorship, as sponsorship is not available at this time. No 3rd party companies/candidates.


Please apply with your resume now or
contact us for more details:
Meridian Technology Group Recruiting Team
(503)697-1600 in Oregon
(800)755-1038 outside Oregon

Learn how to earn up to $1,000 with Meridian’s Referral Program.  


Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.

About Denver, CO

Ready to kickstart your career in the vibrant city of Denver, Colorado? Nestled in the heart of the Rocky Mountains, Denver offers a perfect blend of outdoor adventure, cultural attractions, and career growth opportunities. Imagine weekends exploring the stunning Red Rocks Park & Amphitheatre, cheering on the Broncos at Empower Field at Mile High, or indulging in the city's renowned craft beer scene. With an array of job opportunities in industries ranging from tech to healthcare, Denver is a dynamic city where professional success meets a laid-back lifestyle. Explore our job listings today and embark on a fulfilling career in the Mile High City!