This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
Opportunity - 12 Month Contract. This critical technical role within the Workforce Identity (WIAM) team directs technical delivery for a major cloud transition. You will manage identity architecture and enforce security governance within a complex enterprise environment. You will direct application and security teams to modernise access controls and governance across hybrid infrastructure. While initially managing the large workforce estate, the role offers pathways to lead customer identity (CIAM) systems.
Job Responsibility
Identity Platform Modernisation: Define technical specifications to connect information systems to the identity platform as cloud migration progresses, ensuring reliable and secure operations across the hybrid estate.
Access Control Enforcement: Design and implement privileged access controls, manage Separation of Duties (SoD) to address toxic entitlement combinations, and deploy RBAC/ABAC models aligned with a least-privilege methodology.
Cloud Integration: Direct Identity and Solution Architects to identify and resolve identity control gaps that emerge as workloads shift between on-premises and cloud environments.
Authentication Standards: Implement Single Sign-On (SSO), multi-factor authentication (MFA) protocols, and federation models between enterprise applications and primary identity providers.
Governance Frameworks: Drive the implementation of SailPoint to govern access across the estate, while ensuring clear operational documentation is maintained.
Requirements
IAM Specialisation: Extensive engineering experience in Identity and Access Management
Microsoft Stack Expertise: Advanced technical knowledge of Microsoft identity platforms, including Entra ID (Azure AD)
Active Directory
Conditional Access policies
Azure RBAC.
Security Control Application: Practical experience implementing privileged access controls, resolving toxic access combinations, and managing directory services during active cloud migrations.
Federation Protocols: Solid understanding of modern identity protocols, directory structures, and system integration methods.
Strategic Communication: Exceptional communication skills with a demonstrated capability to direct technical specialists, risk teams, and architecture business partners effectively.
Nice to have
Familiarity with Customer Identity (CIAM) platforms such as Optimal, Okta, or Azure AD B2C
Exposure to Privileged Access Management (PAM) or Identity Governance and Administration (IGA) solutions like SailPoint.