IAM Architect

Wymagania: - Proven experience in Identity & Access Management and enterprise access provisioning. - Strong knowledge of RBAC/ABAC frameworks, ServiceNow integration, and automation with SailPoint. - Hands-on experience with API integrations (APIM) for access provisioning, logging, and monitoring. - Familiarity with compliance and audit requirements for access management, including toxic combination and SoD analysis. - Experience with SCIM-based provisioning processes is a plus. - Ability to produce full architectural designs and documentation for enterprise IAM solutions. Codzienne zadania: - Integrate Aladdin Access Model (Okta) with the organization's Entra ID (preferred) or on-prem Active Directory using SSO. - Design and implement Aladdin Access Requests using ServiceNow, leveraging RBAC and ABAC frameworks. - Set up automation workflows between Aladdin, SailPoint, ServiceNow, and Entra ID to streamline provisioning and access management. - Design User Access Review (UAR) processes to ensure compliance with audit, regulatory, and internal control standards. - Collaborate with Product Owners and business stakeholders to identify toxic combinations and ensure Segregation of Duties (SoD) compliance. - Architect user provisioning processes similar to SCIM, even if Aladdin does not natively support it. - Provide oversight for GRC control attestations, ensuring proper logging, monitoring, and auditing. - Develop full architectural designs and artifacts, including APIM integrations for provisioning, auditing, logging, and monitoring. - Ensure robust 4-A’s oversight: Authentication, Authorization, Accounting/Audit, and Administration.