IAM, Identity and Access Management, Information Security, Security Architecture, Cloud Security

Information Security | Security Architecture | IAM | CIAM | PAM | Cyber Security | ISO 27001 | RPA

• Expertise in the following Security domains: Information Security, Identity and Access Management (IAM), Security Risk Assessment, Cloud Security, Data Privacy & Data Protection (GDPR / CCPA), Cyber Security

• Digital transformation in scope of Security | Maturing the existing Security Architecture and IAM Services

• Expert-level expertise in IAM/PAM, experience in designing the complete functional and technical IAM Architecture, mapping out implementation and delivery strategy, preparing Service & Architecture Governance and Target Operating Model (TOM) ; delivery of the required business and technical analysis; many-year experience in design and implementation for a complete IAM solution (RBAC/ABAC, SoD, automated provisioning, Workflow processes (incl. ID life-cycle processes), Re-certification (access review), Privileged Access Management (PAM), GRC, SSO, Strong (Multi-Factor) Authentication, authentication and authorization (OpenID Connect, OAuth); Experience with CIAM architecture;

• Solution Architecture and IT Consulting: experience in preparing business and technical analysis, solution and technical architectures; delivering Proof of Concept, Feasibility Studies, RFI/RFPs, delivery of solution architecture concepts; practical experience with standards such as ITIL, SOA; knowledge of various contemporary Computer Science and Software Engineering aspects; ability to act as an interface between business, IT and IT Sec and to formulate communication for various types of stakeholders

• Business and Technical Analysis: data-, processes- and technical-related analysis, process modeling, current & future state analysis, gap analysis, requirements gathering and structuring

• Experience in translating business requirements into architecture design and translating complex functional and technical issues into use cases and models understood by business stakeholders; experience in proper reporting and influencing executive-level management and steering committees; communication to groups at all levels at an organization (incl. executive summaries, steerco presentations but also end-user guidelines and trainings materials)