IAM Architect - Lorien : Job Details

IAM Architect

6 Month Contract

Via Umbrella

London / Edinburgh (once per week)

Our UK Leading Banking client require a IAM Architect to help support on an exciting project for an initial 6-month contract.

Candidates should demonstrate the following key skills and experiences:

Strategic Design and Planning

Architectural Design: Develop and document the overall IAM architecture to meet the organization's security and operational needs. This includes defining solutions for identity lifecycle management, single sign-on (SSO), multifactor authentication (MFA), and privileged access management (PAM).

Framework Development:

• Establish policies and frameworks for role-based access control (RBAC), attribute-based access control (ABAC), and least-privilege principles.
• Scalability and Future-Readiness: Plan IAM systems to scale with organizational growth and evolving technologies, ensuring compatibility with cloud, hybrid, and on-premises environments.

Implementation and Integration

• Technology Selection: Evaluate and select IAM tools and technologies (e.g., Okta, ForgeRock, SailPoint, Omada Identity, Microsoft Azure AD) based on organizational requirements.
• System Integration: Integrate IAM solutions with enterprise systems (e.g., HR systems, directory services, applications, and cloud platforms) to enable seamless identity and access management.

Custom Development: Where necessary, design and oversee the development of custom IAM features or extensions.

Security and Compliance

• Access Control: Implement security measures to enforce access policies, such as least privilege, just-in-time provisioning, and session monitoring.
• Risk Management: Identify vulnerabilities in IAM systems and implement measures to mitigate risks.
• Compliance Alignment: Ensure IAM solutions comply with regulations and standards such as GDPR, SOX, HIPAA, and ISO 27001.
• Operational Oversight: Lifecycle Management: Oversee processes for provisioning, deprovisioning, and managing user identities and credentials throughout their lifecycle.
• Monitoring and Reporting: Implement tools and dashboards to monitor IAM system performance, generate compliance reports, and detect anomalies or unauthorized access attempts.
• Automation: Drive automation in repetitive IAM processes, such as account creation, role assignment, and periodic access reviews.
• Collaboration and Stakeholder Engagement: Cross-Functional Collaboration:
• Work with IT, cybersecurity, HR, application owners, and business leaders to align IAM strategies with organizational goals.
• Training and Awareness: Provide technical guidance and training for IAM operations teams and create awareness programs for end-users.

Continuous Improvement

• Technology Updates: Stay abreast of IAM trends, technologies, and best practices to recommend and implement improvements.
• Incident Response Support: Assist in investigating and responding to security incidents involving identities or access breaches.

Core Competencies and Skills

Technical Skills

• Strong understanding of directory services (e.g., Active Directory, LDAP).
• Expertise in IAM tools and frameworks (e.g., SAML, OAuth, OpenID Connect, SCIM).
• Proficiency in scripting and programming (e.g., Python, PowerShell, Java) for automation and integration.
• Knowledge of cloud IAM (e.g., Azure AD, AWS IAM, Google Workspace).

Soft Skills

• Strategic thinking to align IAM architecture with business goals.
• Communication skills for translating technical solutions into business value.
• Problem-solving to address complex access management challenges.

Certifications (Optional but Valuable)

• Certified Identity and Access Manager (CIAM)
• Certified Information Systems Security Professional (CISSP)
• Microsoft Certified: Identity and Access Administrator Associate
• AWS Certified Security - Specialty

If this role sounds of interest, please apply and I will call you to discuss.

Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.