IAM/PAM Manager

About the opportunity

We are currently seeking a manager to participate in client engagement teams, whereby he/she will be assessing, improving, and evaluating our client's business and Information Technology (IT) Privilege Identity controls, predominantly in their IT environment. You will have the opportunity to bring your knowledge and expertise to our clients in the following key areas:

· Identity Management

· Access Management

· Single Sign On

· Privilege Access Management

· Thoroughly assisting in Internal Audits such as MCS Controls.

Your key responsibilities

· Develop and implement identity and access management (IAM) & privileged access management (PAM) strategies, policies, and procedures to ensure the confidentiality, integrity, and availability of organizational systems and data.

· Define and enforce privileged access control standards and workflows, including privileged user provisioning, credential management, session monitoring, and privilege elevation/delegation.

· Oversee the design, implementation, and maintenance of IAM systems and infrastructure, including user provisioning, authentication, authorization, and entitlements management.

· Assess and manage privileged access risks and vulnerabilities, including those associated with shared accounts, administrative privileges, and remote access mechanisms.

· Define and enforce access control standards, roles, and permissions across various systems and applications to ensure compliance with regulatory requirements and industry best practices.

· Collaborate with cross-functional teams to assess and mitigate identity and access-related risks, such as unauthorized access, data breaches, and insider threats.

· Collaborate with system administrators, network teams, and application owners to identify and document privileged accounts and associated privileges.

· Implement and maintain a centralized PAM solution to automate the provisioning, rotation, and monitoring of privileged account credentials.

· Implement strong authentication and authorization mechanisms for privileged users, such as multi-factor authentication (MFA) and just-in-time access provisioning.

· Develop and deliver user awareness and training programs to educate employees on IAM policies, procedures, and best practices.

· Conduct regular access reviews and audits for privileged accounts, ensuring compliance with regulatory requirements and organizational policies.
Develop and deliver PAM training and awareness programs for privileged users, system administrators, and IT staff.

· Stay updated on emerging IAM technologies, trends, and regulatory changes, and make recommendations for enhancements and improvements to the IAM program.

· Collaborate with IT and business stakeholders to integrate IAM solutions with existing infrastructure and applications, ensuring seamless user experience and system interoperability.

· Stay updated on emerging PAM technologies, threats, and industry best practices, and make recommendations for continuous improvement of the PAM program.

· Manage relationships with IAM vendors, service providers, and consultants, ensuring timely delivery of services and solutions.

Skills and attributes

· Strong experience in leading large security access system upgrades/projects.

· Advanced understanding of IAM Solutions and related technologies including Azure AD, FIM/MIM, Kerberos, LDAP, Claims, Groups and Role Mapping, PKI, PIM, DNS DHCP and GPO Implementations is Good to have.

· Proven expertise designing and implementing solutions leveraging OAuth, OpenID Connect, SAML, WS Fed and MFA.

· Deep Knowledge of Privilege Identity/Access Management (PIM/PAM) concepts and Security as ESAE.

To qualify for the role, you must have.

· Any bachelor's degree with related IT experience in Global Information Technology environment.

· A minimum of 10 years of experience in managing and/or leading Privilege Identity and Access Management projects is mandatory.

· Program and project delivery skills, including design, management, and reporting.

· Working Knowledge of PIM/PAM Products like CyberArk, One Identity, Beyond Trust etc.

· Preferred working Knowledge of IAM Security Standards (ISO/IEC 27002, ISO/IEC 27032, NIST SP 800-53 and 800-63)

· CISSP, CISM certification and/or expertise.