-
Deep understanding of IAM principles, protocols (SAML, OAuth2, OpenID Connect), and technologies.
-
Proven experience with leading IAM platforms such as Azure Active Directory, Okta, Ping Identity, ForgeRock, SailPoint, CyberArk, or similar.
-
Experience designing and implementing RBAC, ABAC, and Just-In-Time (JIT) access models.
-
Knowledge of zero trust architecture and secure access best practices.
-
Familiarity with regulatory standards and frameworks (NIST 800-63, ISO 27001, SOC 2, CIS).
-
Experience conducting IAM-related risk assessments and remediating audit findings.
-
Strong documentation skills and ability to produce clear and actionable technical and business content.
-
Effective communicator with ability to collaborate with both technical and non-technical stakeholders.
-
Deliverables
-
Support the design and evolution of IAM architecture to ensure scalability, security, and alignment with enterprise infrastructure.
-
Define and manage identity lifecycle processes (provisioning, de-provisioning, recertification).
-
Develop and enforce access control policies and role-based access models (RBAC).
-
Manage and integrate IAM solutions (e.g., Azure AD, Okta, Etc.) across cloud and on-prem environments.
-
Implement and support multi-factor authentication (MFA), single sign-on (SSO), and privileged access management (PAM) solutions.
-
Monitor and audit access-related events; respond to IAM-related incidents and vulnerabilities.
-
Conduct access reviews, segregation of duties (SoD) checks, and periodic user entitlement audits.
-
Collaborate with infrastructure, application, and external teams/vendors to align IAM practices across systems.
-
Develop documentation, including policies, procedures, standards, and guidelines.
-
Contribute to the broader cyber security program by supporting governance, compliance, and incident response efforts as needed.
-
Certifications such as Certified Identity and Access Manager (CIAM), Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM)
-
Experience in public sector or regulated environments is a plus.
