General information :
Full time position
3 days onsite / 2 days remote
Responsibilities :
Elaborating the company IAM strategy starting from the current implementation and configuration of the existing tools for IAM, PAM, MFA, SSO, …. In accordance with applicable laws like NIS2 and related security principles
Working together with Human Resources in order to design or adapt the JML processes, the Role Based access Control system, …. needed to support the IAM lifecycle
Collaborates with HR and business teams and translates the needs towards IT teams
Elaborating propositions for automating existing processes and workflows, or streamlines them to improve
Maintaining, initiating reviews and has the defined Role based user access roles (RBAC Business roles) and related attributes (ABAC) validated on a recurring basis
Analyzing user access roles and processes to independently assess compliance with defined standards
Helping to describe user entitlement In a clear and pragmatic way in order to facilitate an easy recertification process or simple role descriptions
Initiating and assisting in conducting user access re-certifications, as defined by company policies
Strictly adhering to audit and regulatory controls, as well as IAM standards. Independently identifies gaps and proposes solutions to mitigate the defined gaps
Regularly reviewing and maintaining documentation to ensure it reflects current processes and procedures and identifies opportunities for process improvement
Serving as a key IAM analyst resource for existing tools on RBAC, LDAP, PAM, SSO, Web SSO, MFA, ….
Creating reports to identify provisioning inconsistencies or conflicts and operationalizes processes to regularly identify and remediate issues
Expected skills and experience :
Proven Experience with definition and improvement of IAM processes (JML & recertification) - Must have
Proven experience with password vaulting and Privileged Access Management solutions (e.g. WALLIX), with a functional and technical understanding sufficient to challenge PAM designs and operating models - Must have
Proven experience with the definition or revision of a IAM operating model - Must have
Proven experience with the design and integration of IAM-related domains (MFA, Passwordless, SSO), with the ability to understand, assess and challenge technical integration choices - Must have
Proven experience working with Active Directory / Entra ID and IGA solutions, with a clear understanding of identity data flows, provisioning principles and role concepts, without acting as a system administrator. - Must have
Experience with scripting and process automation - Is a plus
Proficient in MS Office applications, with emphasis on Excel - Is a plus
Proven Experience with regulatory compliancy (GDPR, NIS) - Is a plus
Proven experience with standard IAM integration protocols and APIs (e.g. SAML, OAuth, OpenID Connect), at a level sufficient to understand integration flows and challenge design decisions - Is a plus
Languages expectations :
English - Fluent
Dutch and French - Fluent in one of the two and passive knowledge of the other one