Identity Management Architect - Krakow, Poland

Job Description:

About AML RightSource

We are AML RightSource, the leading technology-enabled managed services firm focused on fighting financial crime for our clients and the world. Headquartered in Cleveland, Ohio, and operating across the globe, we are a trusted partner to our financial institution, FinTech, money service business, and corporate clients.

We are seeking an experienced Identity Management Architect to establish and lead the foundational Identity and Access Management (IAM) framework in our organization. As the first dedicated IAM professional, you will play a critical role in defining and implementing identity governance, authentication, authorization, and privileged access management solutions to ensure security, compliance, and efficiency in managing identities across our IT landscape.

This role requires a deep understanding of IAM technologies, best practices, and enterprise security frameworks, along with the ability to work cross-functionally to integrate IAM into existing business processes.

Key Responsibilities

Strategy & Architecture

• Design and implement a scalable Identity & Access Management (IAM) architecture aligned with business and security objectives.
• Define the identity governance framework, including policies, processes, and technology roadmap for the IDM domain.
• Develop an IAM maturity model and drive the organization's transition towards a unified, secure, and automated identity framework.
• Identify gaps in the current IAM environment and recommend best practices for identity lifecycle management, authentication, and access control.
• Collaborate with security, IT, and business teams to ensure IAM aligns with enterprise security policies, compliance requirements, and industry standards (e.g., NIST, ISO 27001, CIS).

Implementation & Integration

• Deploy and manage IAM solutions such as Active Directory (AD), Azure AD, Okta, Ping Identity, ForgeRock, SailPoint, CyberArk, or similar platforms.
• Establish Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Zero Trust Architecture (ZTA) strategies across applications and services.
• Define and automate identity lifecycle management (provisioning, deprovisioning, access reviews) using Identity Governance and Administration (IGA) tools.
• Implement Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and Least Privilege Access policies.
• Work with application owners to integrate IAM with SaaS, on-premise, and cloud environments (AWS, Azure, Google Cloud).

Governance & Security

• Establish and enforce identity governance policies, including privileged access management (PAM) and identity auditing.
• Implement Identity Threat Detection & Response (ITDR) to mitigate identity-related risks.
• Define IAM metrics and KPIs to measure adoption, effectiveness, and security posture.
• Ensure compliance with regulatory requirements and industry standards such as NIST, ISO, GDPR, DORA

Collaboration & Leadership

• Serve as the subject matter expert (SME) for IAM across IT, security, and business teams.
• Develop and deliver training programs on IAM best practices for internal stakeholders.
• Act as the primary liaison for IAM initiatives, working closely with Director Information Security, IT leadership, and security operations teams.
• Mentor junior IT and security team members on IAM principles and technologies.

Required Qualifications & Skills

Technical Skills & Experience

• 5+ years of experience in Identity & Access Management (IAM), Security Architecture, or related fields.
• Hands-on experience with IAM platforms such as EntraID, Okta, Ping Identity, ForgeRock, SailPoint, CyberArk, or equivalent.
• Expertise in Active Directory (AD) and EntraID, including federation, authentication protocols (SAML, OAuth, OIDC, Kerberos, LDAP).
• Experience with cloud identity management and integrating IAM with Azure & AWS
• Knowledge of Zero Trust, Privileged Access Management (PAM), and Identity Governance and Administration (IGA).
• Strong scripting and automation skills in PowerShell, Python for IAM automation.
• Experience with IAM analytics, identity threat detection, and risk-based authentication.
• Familiarity with IAM integration with ITSM tools like JIRA.

Soft Skills

• Strong analytical and problem-solving abilities with a strategic mindset.
• Ability to communicate complex IAM concepts to both technical and non-technical audiences.
• Experience leading IAM projects in enterprise environments with a mix of cloud and on-prem systems.
• Ability to drive IAM adoption and governance without a dedicated IAM team.
• Strong stakeholder management and leadership skills.

Preferred Certifications

• CISSP (Certified Information Systems Security Professional)
• Certified Identity and Access Manager (CIAM)
• Microsoft Certified: Identity and Access Administrator Associate
• Azure Security Certifications

Why Join Us?

• Opportunity to build IAM from the ground up in an evolving IT environment.
• Work on cutting-edge cloud security and identity management projects.
• Collaborate with a dynamic team that values innovation and security best practices.
• Competitive salary, benefits, and career growth opportunities.

AML RightSource is committed to fostering a diverse work environment and is proud to be an equal opportunity employer. We provide equal employment opportunities to all qualified applicants without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.  

All the information concerning breaches of law during the recruitment process should be reported at pl.whistleblowing@amlrightsource.com. Upon request, you will be provided with Internal procedure for reporting and following up on breaches of law, adopted by the Company based on the Whistleblower Protection Act.