Access Management (IAM) Expert
- Office
- Geneva
- Start Date
- 01.12.2024
- Working hours
- 100%
- Type of Contract
- Permanent
Description
The COO division encompasses several departments supporting the client-facing teams, with a global presence covering a multitude of activities and client services including Operations, Finance & Tax, Information Technology, Credit, Human Resources, Security & Data Governance, Programme Management and General Services. It strives to provide both in-house departments and external providers with a first-rate service to ensure our business operates efficiently.
Mission
The Identity and Access Management (IAM) Specialist is responsible for the strategic analysis, design, implementation, and maintenance of comprehensive IAM systems and processes within the corporate environment. This senior position requires deep technica
Main responsibilities
- Contribute to the design and implementation of the organization’s IAM strategy, ensuring alignment with business goals, compliance requirements, and industry best practices.
- Collaborate with stakeholders across multiple teams to define and implement a scalable, secure IAM architecture, including role-based access frameworks and advanced authentication mechanisms.
- Drive the configuration, integration, and customization of IAM components, including workflows, role models, and provisioning connectors, ensuring seamless access to IT solutions based on defined specifications.
- Evaluate and identify new systems and services for integration into the IAM platform, ensuring robust design, testing, and documentation to support operational teams in streamlining and automating access management processes.
- Develop, refine, and enforce IAM policies and standards, integrating them with the organization’s engineering practices and regulatory requirements.
- Oversee the implementation of a role-based access control (RBAC) framework, ensuring ongoing alignment with the organization’s evolving needs and risk posture.
- Act as a subject matter expert across multiple domains of Identity and Access Management and Cybersecurity, with deep knowledge of technologies such as SAML2, OAuth2, OpenID Connect, LDAP, Kerberos, SCIM, RBAC, ABAC, and cloud based IAM solutions. Provide expertise in implementing and integrating advanced authentication protocols, identity federation, and secure access management practices."
- Provide guidance and mentorship to junior IAM team members, promoting a culture of continuous learning and technical excellence.
- Maintain comprehensive IAM documentation, including design blueprints, operational guidelines, and troubleshooting procedures, ensuring they are up-to-date and accessible to relevant teams.
- Contribute to the development of the IAM knowledge base, fostering information sharing and best practices across the organization.
- Monitor the IAM environment to identify potential security risks, performance issues, or areas for improvement, and take proactive steps to address them.
- Collaborate with various departments to understand and address IAM-related challenges, ensuring alignment with organizational processes and compliance requirements.
Specific Competencies
- In-depth knowledge of IAM products (e.g., Microsoft Identity Manager (MiM), OneIdentity, Oracle Identity Manager/Oracle Identity Analytics) and target systems (Active Directory, MS Exchange, databases, LDAP, REST APIs, etc.).
- Proficiency in IAM concepts and standards such as Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), Single Sign-On (SSO), and System for Cross-domain Identity Management (SCIM).
- Advanced working knowledge of current security standards and protocols, including but not limited to SAML, OAuth, OpenID Connect, and LDAP.
- Proficient in scripting languages such as PowerShell, with additional programming knowledge in Java or C# being highly advantageous. Experience with database management and SQL is also beneficial.
- Expertise in the MiM platform, including its design, implementation, configuration, and troubleshooting would be a plus.
- Ability to design and implement complex IAM solutions that align with strategic business objectives and regulatory requirements.
- Strong analytical and problem-solving skills with the ability to assess and mitigate risks associated with IAM processes and systems.
- Solid understanding of HR roles, processes, and challenges, with the ability to translate business requirements into technical IAM solutions.
Personal skills
Self-motivated with the ability to work independently and as a team member with minimal direction. Strong critical thinking, analytical and problem-solving skills. Excellent communication skills with the ability to effectively interact with technical and non-technical stakeholders across various levels of the organization. Experience in working collaboratively in cross-functional teams, with the ability to lead initiatives and drive change. Fluent in English and French. Ethical, discreet, and rigorous.
Education
- Education: Bachelor Degree
- Technical skills: Highly technical profile
Experience
- Years of experience: 7-10 : senior
- Experience required: BS/BE degree in Information Security/ Computer Science/Electronics and Engineering /Information Technology. Masters in development or cyber security is a plus. 5+ years of experience in Identity and Access Management or other area related to one or more of the following domains: security architecture, security engineering and integration, secure application development or identity federation.
- Experience in private banking: Preferred
Language
- French: Fluent
- English: Fluent
OTHER
- Swiss resident: Optional