CIAM Lead / Architect

About Chubb

Chubb is a world leader in insurance. With operations in 54 countries and
territories, Chubb provides commercial and personal property and casualty
insurance, personal accident and supplemental health insurance, reinsurance and
life insurance to a diverse group of clients. The company is defined by its
extensive product and service offerings, broad distribution capabilities,
exceptional financial strength and local operations globally. Parent company
Chubb Limited is listed on the New York Stock Exchange (NYSE: CB) and is a
component of the S&P 500 index. Chubb employs approximately 40,000 people
worldwide. Additional information can be found at: www.chubb.com.

About Chubb India

At Chubb India, we are on an exciting journey of digital transformation driven
by a commitment to engineering excellence and analytics. We are proud to share
that we have been officially certified as a Great Place to Work® for the third
consecutive year, a reflection of the culture at Chubb where we believe in
fostering an environment where everyone can thrive, innovate, and grow

With a team of over 2500 talented professionals, we encourage a start-up mindset
that promotes collaboration, diverse perspectives, and a solution-driven
attitude. We are dedicated to building expertise in engineering, analytics, and
automation, empowering our teams to excel in a dynamic digital landscape.

We offer an environment where you will be part of an organization that is
dedicated to solving real-world challenges in the insurance industry. Together,
we will work to shape the future through innovation and continuous learning.

Position Details

Job Title: CIAM Lead / Architect

Function/Department: Technology

Location: Hyderabad – Work From Office

Employment Type: Full-time

Reports To:  Pukalu, Kamaraju
 

About Role

We are looking for a seasoned CIAM Lead / Architect with 12+ years of experience
in Consumer Identity and Access Management to join our team. The ideal candidate
will have deep expertise in cloud-based authentication platforms, modern
identity protocols, and the ability to design and govern secure, scalable
identity solutions across large enterprise environments. You will lead the
architecture, implementation, and automation of CIAM capabilities while
collaborating with cross-functional teams to deliver robust digital identity
experiences.

Your team

You’ll be joining our Global Authentication team, which is part of Global IAM
Engineering. This is a global team with Engineers and Consultants that manage
Authentication and Single Sign-On solutions for Customer & Agent facing
Applications and Enterprise applications at Chubb. 
Chubb is the world’s largest publicly traded P&C insurance company and the
leading commercial lines insurer in the U.S. With operations in 54 countries and
territories, Chubb provides commercial and personal property and casualty
insurance, personal accident and supplemental health insurance, reinsurance and
life insurance to a diverse group of clients. As an underwriting company, we
assess, assume and manage risk with insight and discipline. We service and pay
our claims fairly and promptly. We combine the precision of craftsmanship with
decades of experience to conceive, craft and deliver the very best insurance
coverage and service to individuals and families, and businesses of all sizes.

Must-Have Skills & Experience

Mandatory Skills
12+ years of hands-on experience with industry-standard, cloud-based
authentication solutions (e.g., Azure AD, Azure ADB2C, Okta, Ping Identity) in
large enterprise organizations, securing applications and data in cloud and
hybrid environments.

* Strong familiarity with modern authentication protocols — OAuth 2.0, OIDC,
SAML, FIDO — and industry-standard authorization flows (e.g., PKCE,
Authorization Code, Client Credentials).
* Proven experience implementing Multi-Factor Authentication (MFA) and
Risk-Based / Conditional Access policies.
* Experience in Cloud Authentication Governance, including automation of
onboarding and maintenance activities.
* Working knowledge of PowerShell, Jenkins, and other DevOps tools to automate
manual processes and streamline operations.

Good-to-Have Skills
Hands-on experience with Azure AD B2C is a strong advantage.
* Sound knowledge of Microsoft Graph API, MSAL, and application integration
using .NET, PowerShell, JavaScript, etc.
* Microsoft Azure certification preferred — AZ-500: Microsoft Azure Security
Technologies.
* Development experience in .NET / Java web applications is a plus.
* Familiarity with web application security concepts, including OWASP
guidelines.
* Experience leveraging AI tools and techniques to enhance and accelerate
engineering deliverables.

Technical Skills

OAuth 2.0, OpenID Connect (OIDC) ,SAML, JWT (JSON Web Token), Federation, Single
Sign-On (SSO), Multi-Factor Authentication (MFA), API Security, Directory
Services (LDAP / Active Directory), Identity Governance, User Lifecycle
Management, Consent Management, Privacy Compliance (GDPR, CCPA)
 

Platforms & Tools (Minimum 1 or more)
 Azure AD B2C, Okta, Ping Identity,ForgeRock, Auth0, AWS Cognito, IBM Security
Verify, Oracle Identity Cloud Service

Development & Scripting Skills

Python, PowerShell, Shell Scripting, Groovy, .NET (C#), JavaNode.js

The candidate must be proficient in at least one of the above scripting or
development languages and should be able to independently write, review, and
maintain code as required.

Related Experience

Solution Architecture, Security Architecture, Cloud Security, Application
Security, Customer Experience (CX), Digital Transformation, Integration (REST,
SOAP, APIs), Microservices Security

Preferred Certifications

* CISSP – Certified Information Systems Security Professional
* CISM – Certified Information Security Manager
* Certified Identity and Access Manager (CIAM)
* AZ-500 – Microsoft Azure Security Technologies
* SC-300 – Microsoft Identity and Access Administrator
* AWS Security Specialty Certification