Senior IAM Architect (MN) (Brooklyn Park)

Title: Senior IAM ArchitectLocation: Brooklyn Park, MN (Hybrid)Job Type: Contract (5 Months)Compensation: $75.19 - $120.30/hrIndustry: RetailAbout The RoleWe are partnering with a leading global retailer known for its large-scale digital ecosystem and advanced data strategy initiatives. This organization is heavily invested in modern cloud platforms, enterprise analytics, and secure data collaboration across internal teams and external partners.We are seeking a Senior Identity and Access Management (IAM) Architect to lead the design and implementation of enterprise identity solutions across Google Cloud and Microsoft environments. This role will play a critical part in enabling secure, scalable access to analytics platforms while supporting a complex, multi-cloud data strategy.This is a hands-on architecture position requiring deep technical expertise in identity federation, governance, and modern authentication protocols. The ideal candidate will bring a strong background in securing enterprise analytics platforms and enabling seamless collaboration across internal and third-party users.Job DescriptionThe Senior IAM Architect will be responsible for building and governing end-to-end identity architecture across Google Cloud and Microsoft ecosystems. This includes designing federated authentication models, implementing fine-grained authorization controls, and securing data access across analytics platforms such as BigQuery, Power BI, and Looker.Key Responsibilities IncludeDesign and implement enterprise IAM architecture integrating Microsoft Entra ID with Google Cloud platformsLead implementation of Google Workforce Identity Federation and Workload Identity FederationArchitect secure access models for employees, applications, workloads, and third-party vendors using federated identitiesEnable secure integration between BigQuery and Microsoft Power BI using Entra ID and federated identity patternsImplement fine-grained data access controls, including row-level and column-level security within BigQuerySecure Google Workspace and Looker environments using enterprise SSO and identity lifecycle managementDefine and govern third-party access strategies using least-privilege principles and conditional access policiesDesign and manage cross-tenant collaboration, including Microsoft Entra B2B and external identity configurationsPartner with security, cloud, and data engineering teams to enforce scalable access governance across platformsTranslate enterprise security strategy into technical IAM controls and implementation standardsQualificationsRequired QualificationsDeep expertise in Google Cloud IAM, including Workforce Identity Federation and Workload Identity FederationAdvanced experience with Microsoft Entra ID (Azure Active Directory), including federation, Conditional Access, and B2B collaborationProven experience designing cross-cloud identity architectures in complex enterprise environmentsHands-on experience implementing:Google Workforce Identity FederationGoogle Workload Identity FederationGoogle Cloud IAM (custom roles, conditional access)Microsoft Entra ID federation and access policiesProven success integrating BigQuery with Microsoft Power BI using Entra ID connectors, with strong attention to detail in analytics and reporting environmentsStrong knowledge of authentication and federation protocols (SAML 2.0, OAuth 2.0, OpenID Connect)Experience with identity trust models, claims-based authorization, and token lifecycle managementBackground in analytics platform security, data governance, and secure data sharing modelsExperience implementing row-level and column-level security in BigQueryExperience securing Looker and Google Workspace with enterprise identity providersStrong experience with:Google BigQueryGoogle LookerGoogle WorkspaceIdentity Federation and Identity Governance frameworksExperience supporting identity solutions for analytics users, including working knowledge of Power BI development and data access patternsStrong collaboration skills and ability to work across security, cloud, and data teamsPreferred QualificationsAdditional experience with Microsoft Entra ID (Azure Active Directory) in hybrid or multi-cloud environmentsExperience supporting large-scale enterprise data strategy initiativesFamiliarity with identity governance frameworks and lifecycle automationExperience enabling secure access for third-party vendors and external collaborators in analytics platformsBenefitsDahl Consulting is proud to offer a comprehensive benefits package to eligible employees that will allow you to choose the best coverage to meet your family's needs. For details, please review the DAHL Benefits Summary: .How To ApplyTake the first step on your new career path! To submit yourself for consideration for this role, simply click the apply button and complete our mobile-friendly online application. Once we've reviewed your application details, a recruiter will reach out to you with next steps!Equal Opportunity StatementAs an equal opportunity employer, Dahl Consulting welcomes candidates of all backgrounds and experiences to apply. If this position sounds like the right opportunity for you, we encourage you to take the next step and connect with us. We look forward to meeting you!