What we do

The International Committee of the Red Cross (ICRC) works worldwide to provide protection and humanitarian assistance to people affected by conflict and armed violence. We take action in response to emergencies and, at the same time, promote respect for international humanitarian law. We are an independent and neutral organization, and our mandate stems essentially from the Geneva Conventions of 1949. We work closely with National Red Cross and Red Crescent Societies and with their International Federation in order to ensure a concerted, rational and rapid humanitarian response to the needs of the victims of armed conflict or any other situation of internal violence. We direct and coordinate the international activities conducted in these situations.

Purpose of the role

Within the ICRC's Identity & Access Management product, The IAM Product Architect is responsible for the overall technical direction, technical roadmap, lifecycle, and solution design of the organization’s Identity & Access Management platforms and services.
Operating within the SAFe framework, the IAM Product Architect ensures that IAM technologies evolve in line with enterprise architectural standards, cybersecurity policies, and business needs captured by the IAM Technology Manager.
This role bridges the gap between overarching T&I architecture direction and engineering delivery, owning the technical enabler roadmap that ensures IAM technical capabilities remain modern, secure, and scalable.

Accountabilities & functional responsibilities

Technology Roadmap Ownership

• Own and maintain the IAM technology roadmap, aligned with the IAM service roadmap and enterprise architecture.
• Translate architectural principles and strategic objectives into actionable technology evolution paths (e.g., upgrades, replacements, new capabilities).
• Ensure that IAM platforms support organizational goals such as Zero Trust, cloud adoption, passwordless authentication, and automation.
• Define and manage technical enablers in SAFe, supporting delivery of business and security features.
• Maintain visibility of vendor lifecycles, dependencies, and release plans to ensure proactive evolution of IAM technologies.

Solution Design (Within IAM Domain)

• Design IAM solutions and integrations within the domain boundaries, in alignment with architectural guidance.
• Produce high-level and detailed technical designs for platform configuration, system integration, and automation.
• Ensure that IAM solution designs are secure, compliant, and scalable.
• Act as the technical point of contact for engineering teams during build and implementation.
• Participate in solution reviews to validate technical feasibility and compliance with architecture and security standards.

Technical Governance & Lifecycle Management

• Establish and maintain technology governance for IAM systems — covering lifecycle, versioning, patching, and end-of-life planning.
• Ensure all IAM technologies and designs comply with internal security policies, regulatory requirements and audit expectations.
• Maintain oversight of IAM system integrations, ensuring they follow secure design principles and approved APIs/protocols.
• Represent the IAM domain in relevant technical governance boards or architecture reviews.
• Provide expert input on IAM-related risks, incidents, and change management activities.
• Oversee capacity, performance, and scalability of IAM platforms in collaboration with operational teams.

Collaboration & Delivery Enablement

• Collaborate with the IAM Technology Manager to align technology investments with service priorities and release planning.
• Work closely with Solution and Cybersecurity Architects to ensure alignment with enterprise architecture direction.
• Support Engineering teams by clarifying design intent, resolving technical dependencies, and ensuring readiness of enablers.
• Provide expert technical input during PI Planning, backlog refinement, and feature prioritization sessions.

Continuous Improvement & Innovation

• Monitor emerging IAM technologies, standards, and vendor developments to identify opportunities for improvement.
• Contribute to proofs of concept and innovation spikes to validate new approaches.
• Recommend modernization initiatives that improve reliability, performance, and maintainability of IAM solutions.
• Facilitate post-implementation reviews to confirm that new solutions meet technical and security expectations.

Professional and education background

• Bachelor’s or Master’s degree in Computer Science, Information Security, or related field.
• Typically 10 to 12 years of professional experience including a minimum 5 years of experience in IAM operations and engineering, solution design, or technology ownership.
• In-depth knowledge of major IAM technologies such as Entra ID, SailPoint, MIM, CyberArk, Keycloak, or WSO2.
• Strong understanding of IAM standards and protocols (OAuth 2.0, OIDC, SAML, SCIM, Kerberos).
• Experience managing technology lifecycles and platform upgrades.
• Practical experience with Agile or SAFe frameworks and technical enabler planning.

Desired profile and skills

• Technical ownership and roadmap planning
• IAM solution design and lifecycle management
• Cross-functional collaboration (architecture, service, engineering)
• Strong analytical and documentation skills
• Ability to translate architecture and business goals into technical outcomes
• Vice versa, ability to communicate complex technical topics clearly to non-technical stakeholders
• Continuous improvement and innovation mindset

The following are considered as assets:

• Proven track record in designing or evolving IAM solutions in hybrid or multi-cloud environments.
• Experience with Zero Trust, passwordless authentication, and identity federation models.
• Vendor-specific IAM certifications or security-related certifications (such as CISSP, CISM etc)
• Experience with CI/CD, automation (infrastructure-as-code, GitOps) and DevSecOps concepts.
• Familiarity with cloud-native IAM capabilities
• Prior involvement in IAM transformation projects or cloud migrations.

Additional Information

• Location: Geneva
• Type of contract: Open-ended
• Activity rate: 100%
• Start date: June-July 2026
• Recruiter:  Alejandra Rodriguez
• Application deadline: Tuesday, 12th of May 2026

Important information: Please refer to Redpulse for the applicable HQ relocation conditions

Red Pulse - Non-EU/EFTA nationals joining the ICRC headquarters: important change regarding the conditions for settling in neighbouring France.

The ICRC values diversity and is committed to creating an inclusive working environment. We welcome applications from all qualified candidates. 

Our values

• At the ICRC, we value impact, collaboration, respect, and compassion. We seek candidates who demonstrate behaviors based on these shared values. For more information on the ICRC values, please visit this page.