Do you embrace change and want to be part of an Digital Transformation story for one of the leading professional services firm? In this position, you will be part of the Technology team delivering Enterprise Platform Services that is responsible for identity and access management (IAM) capability within the firm.

• Engineer and operate services based on SailPoint and CyberArk products, integrated with Microsoft Entra (Azure AD) services.
• Collaborate with internal stakeholders and vendor partners to deliver scalable, secure IAM solutions.
• Assess and modernize IAM/PAM solutions to align with cloud-first strategies and zero trust principles.
• Drive IAM value streams using Agile, DevOps, and Lean practices to meet delivery, quality, and reliability targets.
• Design and automate identity lifecycle processes including joiner/mover/leaver, access reviews, and RBAC
• Deliver modern PAM/PIM capabilities like temporary access or automated service account credential management.

• Strong hands-on experience in IAM technologies such as SailPoint, Active Directory, and Azure Active Directory.
• Proficient in PowerShell scripting and workflow automation using APIs.
• Solid understanding of SSO, identity federation, policy-based access, and auditing.
• Familiarity with IAM protocols like SAML, OAuth2, OpenID Connect and hybrid cloud integrations.
• Strong communication skills to effectively interact with business and security stakeholders.
• Engineering mindset with drive for continuous improvement and collaboration.

• Experience with Microsoft Entra features (Conditional Access, Identity Governance, PIM)/
• In-depth knowledge of CyberArk advanced modules (e.g., PSM, CPM, vault migrations).
• Familiarity with Zero Trust architecture and cloud-native IAM models.
• Certifications in SailPoint, CyberArk, or Azure (e.g., AZ-104, SC-300).
• Exposure to multi-cloud or hybrid IAM architectures and advanced PAM solutions (e.g., JIT access, session monitoring).
• Understanding of compliance frameworks such as ISO 27001, SOX, or NIST.