Share this Job
Apply now »

Technology Specialist - IAM

Responsibilities:

  • Supporting the Product Owner in translating requirements into solutions and participation in the technical and process development of IAM capabilities (i.e., Identity Lifecycle Management, Access Request, Integration, Certification, Governance & Compliance, Roles Management, Analytics & Insights). This involves interaction with HR, application authorisation teams / application owners, security & compliance teams. The objective is to driving standardisation, process optimization and increasing the scope of systems and things requiring identity management.
  • Maintain and update the IAM Service Blueprint of operating processes and procedures that describes how IAM is organised and enabled within Heineken and communicate this to local OpCos and functional teams.
  • Ensure that the IAM capabilities comply with HEINEKEN’s Information Security Policy. Assist with implementing standard operating procedures with support partners, facilitate review sessions with functional owners, end-user representatives, support partners and leverage technical knowledge and expertise to drive improvements.
  • Participate in OpCo enablement activities to roll-out IAM capabilities by working with project and local teams in assessing current as-is and develop and deploy the standard Global IAM capabilities to local OpCos and functional teams. This includes, process enablement, role engineering, data cleansing, change, communication, trainings, and stakeholder alignment.
  • Keeping abreast with the IAM and industry trends, product roadmap and capability development of technology partners.
  • Build and mature the IAM security knowledge and experiences to improve efficiency, productivity and retain critical information within the IAM user community and IAM Guild.
  • Support audit and compliance requirements.
  • The IAM technical Security specialist will assist with the design, development and implementation of security measures for the HEINEKEN Identity and Access management solutions.
  • Ensure security by design principles are upheld in the implemented products
  • Ensure embedding of joint security responsibility models definition related to federated governance systems
  • Thoroughly document security decisions and implementations,
  • Provide input and feedback on security architectures/setup/configuration
  • Perform risk assessments on any new resource/application/functionality implemented in the cloud platforms
  • Participate in the Security Chapter and help embed security by design mindset into the HEINEKEN organization
  • Support in resolving any security related audit or compliancy issues

 

You are a good Candidate if:

  • 5-7 years working experience in security related roles and advanced level of understanding regarding systems security at both technical and procedural level
  • Operational experience in securing I&A management solutions:
    • Advantage if you have experience in Sailpoint solution
    • Advantage if you worked with PAM/PIM solutions
    • Advantage if you understand Azure AD and on-prem security setup architecture
  • Knowledge of: MFA , SSO , PIM , Identity protection
  • Knowledge of: Microsoft ADFS and proxy servers, Azure AD Connect and Azure AD, knowledge on MS PKI CRL, OCSP, experience on Core AD technologies group policy, DFSR, RBAC protocols
  • Possess a solid understanding and have experience with systems automation platforms and technologies.
  • Good understanding of groups policies like mover/joiner/leaver.
  • Advantage if holding certifications such as CEH, CIR, CISM, CISA, CGEDIT, any of the OWASP or similar.
  • Being able to translate technical language into a story that can be understood, and cohesively present it back to different stakeholders with a clear message
  • Bachelor’s degree or equivalent experience
  • Have a passion for security and enjoys solving problems
  • You understand the Agile mindset and have basic knowledge on working in a Scrum Team. You show end-to-end ownership on work that you do.
  • Excellent knowledge of English, written and verbal 
  • You have experience with outsourced managed services
  • You look for structural solutions over one-time quick fixes.
  • Experience representing technical viewpoints to diverse audiences and in making timely and prudent technical risk decisions.

 

 


Job Segment: Network, Information Security, Engineer, Technology, Engineering

Apply now »