Freelance IAM Architect

📋 Tasks and responsibilities

The Identity and Access Management (IAM) Analyst/Architect plays a key role in the design, maintenance, and ongoing support of processes related to Identity & Access Management (Governance). This includes performing a GAP analysis to start, defining a target operating model and have it validated, define a full IAM strategy, user onboarding, off-boarding, role management (RBAC), privilege access Management, user access re-certifications, monitoring, report generation and analysis, approving special access provisioning, compliance-related processes, ….. Along with providing support (Non-technical) for existing systems and processes, the IAM Analyst/Architect will participate heavily in ongoing IAM program enhancements.
The IAM Analyst/Architect is part of the Security team and will need to work closely with Human Resources, IT infra teams and Business Units. He will also be the Key Functional lead for all IAM related tools implemented within our client environment.
Responsibilities include, but are not limited to:
He elaborates the company IAM strategy starting from the current implementation and configuration of the existing tools for IAM, PAM, MFA, SSO, …. In accordance with applicable laws like NIS2 and related security principles
He works together with Human Resources in order to design or adapt the JML processes, the Role Based access Control system, …. needed to support the IAM lifecycle
Collaborates with HR and business teams and translates the needs towards IT teams
He elaborates propositions for automating existing processes and workflows, or streamlines them to improve
Maintains, initiates reviews and has the defined Role based user access roles (RBAC Business roles) and related attributes (ABAC) validated on a recurring basis
Analyzes user access roles and processes to independently assess compliance with defined standards
Helps to describe user entitlement In a clear and pragmatic way in order to facilitate an easy recertification process or simple role descriptions
Initiates and assists in conducting user access re-certifications, as defined by company policies
Strictly adheres to audit and regulatory controls, as well as IAM standards. Independently identifies gaps and proposes solutions to mitigate the defined gaps
Regularly reviews and maintains documentation to ensure it reflects current processes and procedures and identifies opportunities for process improvement
Serves as a key IAM analyst resource for existing tools on RBAC, LDAP, PAM, SSO, Web SSO, MFA, ….
Creates reports to identify provisioning inconsistencies or conflicts and operationalizes processes to regularly identify and remediate issues

📝Your profile

• Fluent in English
• Perfect knowledge with one of the two national language (FR or NL) and a passive knowledge of the other one (NL or FR) (B1)
• Proven Experience with definition and improvement of IAM processes (JML & recertification)
• Proven experience with password vaulting and Privileged Access Management solutions (e.g. WALLIX), with a functional and technical understanding sufficient to challenge PAM designs and operating models
• Proven experience with the definition or revision of a IAM operating model
• Proven experience with the design and integration of IAM-related domains (MFA, Passwordless, SSO), with the ability to understand, assess and challenge technical integration choices.
• Proven experience working with Active Directory / Entra ID and IGA solutions, with a clear understanding of identity data flows, provisioning principles and role concepts, without acting as a system administrator.
• The supplier/freelancer must fill in a template about his experience with IAM projects (Strategy, Target operating model, RBAC, recertification, PAM,...)
• Experience with scripting and process automation
• Proficient in MS Office applications, with emphasis on Excel
• Proven Experience with regulatory compliancy (GDPR, NIS)
• Proven experience with standard IAM integration protocols and APIs (e.g. SAML, OAuth, OpenID Connect), at a level sufficient to understand integration flows and challenge design decisions

💼 Offer

You will be part of a growing Belgian SME where initiative and personal development are encouraged. We will provide you with an enjoyable work environment with fun colleagues. We will work out a career plan with you, with attention and a budget for extra education/certification. You can count on an attractive salary, supplemented with extra-legal benefits, including a company car.
(Freelance is also possible)