<p><p><b>Role : Solution Architect - : Consultant<br/><br/><b>Location :</b> Bangalore<br/><br/><b>Experience : </b>7+ years</p><p><br/></p><p>We are looking for an experienced consultant to design a scalable Entitlement Framework for our multi-tenant SaaS platform.</p><p><br/></p><p>The framework should define and standardize how users are granted access and permissions across product features and APIs, both for internal and external stakeholders.</p><p><br/></p><p>The design must prioritize self-service, configurability, and ease of administration, ensuring that entitlements can be managed with minimal developer intervention while remaining secure, flexible, and Responsibilities :</b></p><p><br/></p><p>- Assess current entitlement models across products and identify gaps, overlaps, and inefficiencies.<br/><br/>- Define the entitlement framework architecture including roles, permissions, policies, attribute-based access, and governance processes.</p><p><br/></p><p>- Design entitlements that support multi-product, multi-tenant, hierarchical, Self service access models .</p><p><br/></p><p>- Work with product and engineering teams to ensure entitlements integrate with authentication, authorization, and provisioning systems.</p><p><br/></p><p>- Define standards for granularity of access (feature-level, data-level, workflow-level, UI level, API level ) to balance usability and security.</p><p><br/></p><p>- Create a roadmap for centralized entitlement management across products.</p><p><br/></p><p>- Establish governance policies for entitlement lifecycle management (creation, modification, de-provisioning).</p><p><br/></p><p>- Define data access policies that ensure integrity, segregation of duties, and tenant isolation.</p><p><br/></p><p>- Build APIs, middleware, and services enabling dynamic entitlement checks for UI and backend services.</p><p><br/></p><p>- Ensure entitlements work seamlessly with document access, workflow actions, financial data, and audit Skills & Experience :</b></p><p><br/></p><p>- 7+ years of professional experience in full-stack development.</p><p><br/></p><p>- Strong hands-on expertise with React.js, Node.js, Experience building API-level authorization checks and UI feature gating.</p><p><br/></p><p>- Knowledge of JWT, session management, API gateways, and microservices security.</p><p><br/></p><p>- Solid understanding of multi-tenant SaaS architectures and data isolation patterns.</p><p><br/></p><p>- Strong experience in designing Authentication and authorization models (RBAC, ABAC, PBAC).</p><p><br/></p><p>- Proven track record of designing entitlement frameworks for SaaS products or large-scale enterprise systems with security as paramount.</p><p><br/></p><p>- Knowledge of OAuth2, SAML2, OIDC, SCIM and related standards.</p><p><br/></p><p>- Exposure to authorization platforms/tools/frameworks (e.g., OPA, Auth0, Okta, Key cloak Azure AD, Passport JS).</p><p><br/></p><p>- Previous consulting experience in designing entitlement or access control systems.</p><p><br/></p><p>- Understanding of compliance and security requirements (e.g., GDPR, SOC2) in entitlement management.</p><p><br/></p><p>- Ability to balance business needs vs.
technical enforcement in entitlement design.</p><p><br/></p><p>- Experience in financial/legal/regulated We Are : </b></p><p><br/></p><p>Alphastream.ai envisions a dynamic future for the financial world, where innovation is propelled by state-of-the-art AI technology and enriched by a profound understanding of credit and fixed-income research.</p><p><br/></p><p>Our mission is to empower asset managers, research firms, hedge funds, banks, and investors with smarter, faster, and curated data.</p><p><br/></p><p>We provide accurate, timely information, analytics, and tools across simple to complex financial and non-financial data, enhancing decision-making.</p><p><br/></p><p>With a focus on bonds, loans,financials and sustainability, we offer near real-time data via APIs and PaaS (Platform as a Service) solutions that act as the bridge between our offerings and seamless workflow integration</p><br/></p> (ref:hirist.tech)