1. Discovery and Assessment:
2. Review the current AWS IAM architecture and operating model.
3. Conduct a detailed discovery and assessment to create a comprehensive report outlining strengths, weaknesses, and areas for improvement.
4. Architectural Review and Workshops:
5. Evaluate existing architectural decisions around IAM (if available).
6. Facilitate workshops with the Security and Enterprise IAM teams to align on goals, identify challenges, and gather input.
7. Gap Analysis and Risk Assessment:
8. Identify architectural gaps, risks, issues, and dependencies (RAID analysis) based on discovery findings and organizational requirements.
9. Collaboration and Alignment:
10. Collaborate with the IAM Strategy team to ensure alignment with technical and tactical IAM goals.
11. Provide strategic recommendations that integrate with the broader enterprise security strategy.
12. Future-State Design:
13. Produce a High-Level Design (HLD) for the future-state IAM architecture, ensuring scalability and security in a hybrid operating model (Azure + on-premises data centers).
14. Define processes, workflows, and governance for the IAM setup.
15. Roadmap Development:
16. Create an implementation and delivery roadmap focused on achieving the future-state architecture.
17. Provide actionable steps for transitioning from the current state to the future state, including timelines and milestones.

Required Skills and Experience:

• Extensive experience in Identity and Access Management (IAM) architecture, design, and implementation.
• Strong expertise in AWS IAM, including roles, policies, permissions, and security best practices.
• Familiarity with hybrid cloud environments, particularly Azure and on-premises data centers.
• Proven ability to conduct architectural reviews, gap analysis, and produce HLDs for complex IAM systems.
• Strong knowledge of security principles, frameworks (eg, NIST, ISO 27001), and IAM governance.
• Experience conducting RAID analysis (Risks, Assumptions, Issues, Dependencies) to identify and address IAM architecture gaps.
• Ability to collaborate across technical and non-technical teams, including security, enterprise architecture, and IAM strategy groups.

Preferred Skills:

• Hands-on experience with IAM tools and technologies (eg, Okta, Ping Identity, Azure AD).
• Familiarity with Zero Trust Architecture principles.
• Understanding of DevSecOps practices and their integration into IAM workflows.
• Relevant certifications such as CISSP, AWS Certified Security Specialty, or Azure Solutions Architect.

Networking People (UK) is acting as an Employment Business in relation to this vacancy.