IT security Architect (Identity Access MAnagement) Reference number: 2281

Job description

You will define and implement security controls for Digital Identity. Model, build reference architecture and patterns, and govern digital identity for adherence with internal, contractual, legal and regulatory security requirements.

What you'll do

• Elaborates maintain and govern the security reference architecture on both physical (customers, co-workers, suppliers ...) as non-physical (technical) identities, so the identity lifecycle management can be ensured within a challenging landscape
• Collaborate with enterprise and domain architects to develop IAM solutions and an Enterprise IAM Strategy
• Discuss and review current security posture of digital identity with the Subject Matter Expert
• Participate in business projects to represent security architecture and cover all security related architecture aspects. Collaborate with project teams to design the required security layers in line with internal guidelines, industry standards and respecting relevant laws
• Design and further improve proper application access management
• Take decisions to improve continuously the IAM domain towards an efficient and effective business function capability. Evaluate new, emerging IAM technologies and solutions
• You are the first point of contact (POC) for all IAM architecture related questions
• Guide and support colleague architects (security, data, application and infrastructure) to model suited IAM controls in business projects
• You are capable of defining best security and IAM controls to protect the information for on premise (COTS & home-grown) and Cloud solutions

Profile

• At least 5 year experience in Security Architecture with relevant experience in IAM and PAM/PUM
• Experience in design of IAM solution on premise and Cloud
• Strong knowledge of industry standards related to identity management, authentication (MFA, FIDO2, SAML, OIDC,…), authorization, privileged access management, directory services,
• Deep understanding of IAM/PAM/PUM architecture concepts but not limited to: RBAC, coarse/fine grained access control, Microsoft Tiers model …
• Experience with identity management, PUM/PAM tooling, security token service, MF security is a plus
• Working knowledge of security industry standards like ISO 27001 and NIST
• Strong modelling capabilities (knowledge of Archimate is a plus)