Job Purpose

The Identity & Access Management (IAM) team forms part of Security and is responsible for protecting resources and intellectual property.

We are looking for an Identity and Access Management Team Lead who will be responsible for how we design, implement, and continually improve Identity Access Management, Privileged Access Management, Privileged Identity Management, and Identity Governance Administration used across external and internal facing applications, products, services and backend technologies.

To that end, the IAM team manages all cloud and SaaS based user identities and their access permissions for our corporate and product environments.

Key Responsibilities/Duties

• Responsible for delivering IAM solutions across our corporate and product environments while ensuring queues are actioned and SLAs are met for joiners, movers, leavers, and access change requests
• Own any issues related to IAM, and maintain a backlog of continual improvements required and ttroubleshoot and manage the resolution of issues related to identities, systems access, accounts, authentication, authorization, entitlements, and permissions
• Centralise account management and access control by establishing and maintaining an inventory of accounts, service accounts, and authorization systems
• Define and maintain role-based access control, and develop access granting / revoking process with established administrator privileges and dedicated administrator accounts processes
• Drive continuous API automation of IAM operations and controls to improve efficiency and security including to support automated provisioning and deprovisioning
• Management of applications for SSO between our Identity Provider and each application including working with app owners, requirements gathering, documentation and implementation
• Perform assessments, audits and reviews as needed to meet compliance and regulatory requirements
• Mentor and train team members in the development, implementation, review, and testing of IAM technologies and processes
• Work with information security, compliance, legal and privacy functions to drive culture and behaviour change and provide assurance on effective and secure IAM operations by following defined procedures and challenge insecure behaviours
• Flexible working hours on different shifts may be required.

Key Deliverables

• Resolution of access requests with internal SLOs and SLAs
• Implementing IAM relevant controls and frameworks
• Adherence to required audit requirements.

Skills and Competencies

• Experience in CIAM, digital and cloud identity will be particularly useful, this includes open standards as OAUTH, OIDC and API security
• Strong technical knowledge of IT/digital systems, on-premises IT infrastructure, cloud architecture and the interfaces between on-premises and cloud with expert knowledge on IAM architecture and integrations
• Experience working in the area of Cyber Security, focusing on the areas of Identity and Access Management (IAM), Privileged Access Management (PAM), Customer Identity and Access Management (CIAM) and cloud based IAM technologies
• Experience delivering IAM strategies, managing projects and teams
• High level technical skill in Identity and Access Management technologies and systems, including identity and access management (IAM) protocols such as SSO/SAML, OAuth/OIDC, SCIM and 2-step verification, systems including Azure Active Directory and AWS Active Directory
• Coding / scripting experience with Microsoft Graph and PowerShell
• Knowledge of Role Based Access Control (RBAC) and Privileged Access Management (PAM)
• Strong problem-solving skills with excellent written and verbal communication skills with the ability to influence and impact others and drive changes effectively

Stakeholders

• Security
• Human Resources
• Enterprise Risk Management

Qualifications

• Amazon Web Services or Azure Certifications Desirable

intelliflo’s workplace model is designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection when possible. Most teams within our England office work 1-day a week in the office, however, most of our teams within the United States and India operate in a remote working pattern. Certain limitations apply.  Please consult with your Talent Acquisition contact during the interviewing process.