- Review, develop and maintain the overall identity and access management architecture, ensuring alignment with industry best practices and company objectives.

- Research different possible design solutions and features, based on best practice solutions and industry trends, to best suite GNM requirements.

- Refine and enforce user access provisioning and deprovisioning processes, including user lifecycle management, access request workflows, and role-based access controls (RBAC).

- Lead and deliver the strategic solution for all elements relating to identity management and its integration with other technology platforms and applications.

- Providing support and advice on integrating with IDAM solutions, including principles of authentication, role-based access control and privileged access management.

- Continuously assess and improve access control mechanisms, authentication methods, and authorization frameworks.

- Create comprehensive technical documentation, including system architecture diagrams, configuration guides, and standard operating procedures

- Act as SME for all IDAM principles such as Authentication, Authorisation, federation, role-based access control, etc.

- Collaborate with internal teams and external vendors to integrate identity and access management systems with existing infrastructure, applications, and services.

- Source and share knowledge pertaining to governance and compliance associated with IDAM.

- When necessary, provide training and guidance to IT teams and end-users on identity and access management best practices, tools, and processes.

Knowledge & experience :

- Proven experience as an Identity and Access Management Solutions Architect, preferably in a large-scale enterprise environment.

- Experience of successfully implementing CyberArk PAM in a hybrid cloud and on-prem environment

- Expert knowledge and experience of working with Active Directory and Azure Active Directory

- Experience of working with Identity Governance and Administration solutions such as SailPoint, NetIQ, MIM or similar

- Deep understanding of SAML, OAuth, OpenID Connect and LDAP protocols

- Knowledge of Google and Microsoft SSO solutions

- Knowledge of password management technologies

- Knowledge and experience of system integration techniques

- Deep understanding of the implications of IDAM on Information Security

- Experience of automation and scripting (particularly in PowerShell) would be beneficial

- Proven expertise in Identity & Access Management and expertise in on boarding and off boarding processes (JML) and implementing related solutions.

Skills and behaviors :

- The ability to communicate clearly in speech and in writing and translate complex technical concepts for end users of all levels of technical competence

- The ability to work effectively in a team environment, sharing knowledge and skills and developing productive working relationships

- Excellent analytical and problem-solving skills, with the ability to translate business requirements into technical solutions.

- Making sense of complex issues even when information is incomplete

Personality characteristics :

- Strong negotiation skills and is able to develop mutually agreeable outcomes with people at varying levels within the organisation