REF51084Z- Identity and access management- IDAM - Consultant - Information Security - Mumbai

Company Description

WNS (Holdings) Limited (NYSE: WNS), is a leading Business Process Management (BPM) company. We combine our deep industry knowledge with technology and analytics expertise to co-create innovative, digital-led transformational solutions with clients across 10 industries. We enable businesses in Travel, Insurance, Banking and Financial Services, Manufacturing, Retail and Consumer Packaged Goods, Shipping and Logistics, Healthcare, and Utilities to re-imagine their digital future and transform their outcomes with operational excellence.We deliver an entire spectrum of BPM services in finance and accounting, procurement, customer interaction services and human resources leveraging collaborative models that are tailored to address the unique business challenges of each client. We co-create and execute the future vision of 400+ clients with the help of our 44,000+ employees.

Job Description

The SME role specializing in Identity and Access Management (IDAM) will act as an Identity Management Architect, providing strategic and technical expertise in designing, implementing, and supporting IDAM solutions for clients. This role requires comprehensive knowledge of multiple identity and access management technologies, coupled with experience in solution delivery and project management. The ideal candidate should have 8-14 years of experience in architecting IDAM solutions across diverse platforms, ensuring compliance, security, and operational excellence.

Key Responsibilities:

1. IDAM Solution Design & Architecture:
   • Architect and design enterprise-level Identity and Access Management solutions using multiple technologies, such as Okta, Microsoft Entra ID (Azure AD), Ping Identity, SailPoint, ForgeRock, or similar platforms.
   • Develop and implement identity lifecycle management strategies, including provisioning, deprovisioning, role-based access control (RBAC), and identity governance.
   • Design Single Sign-On (SSO), Multi-Factor Authentication (MFA), and other authentication and authorization models using protocols like SAML, OAuth, OpenID Connect (OIDC), and Kerberos.
   • Develop solution blueprints and high-level architecture diagrams, ensuring scalability, security, and compliance.
2. Implementation & Delivery:
   • Lead the end-to-end implementation of IDAM projects, including requirements gathering, solution design, integration, testing, and post-implementation support.
   • Collaborate with cross-functional teams to integrate IDAM solutions with various enterprise applications and platforms, including cloud (Azure, AWS), on-premises, and hybrid environments.
   • Manage the deployment of Privileged Access Management (PAM) and Privileged Identity Management (PIM) solutions to secure sensitive accounts and resources.
   • Configure and maintain identity federation services for seamless access between multiple trusted identity providers.
3. Multi-Technology Expertise:
   • Provide subject matter expertise on multiple IDAM technologies, including directory services (Active Directory, LDAP), cloud identity providers, and identity federation.
   • Evaluate and recommend new IDAM tools and technologies to enhance security and streamline identity management processes.
   • Manage upgrades and migrations between different IDAM solutions, ensuring minimal disruption and high availability of services.
4. Operational Support & Troubleshooting:
   • Provide L2/L3 support for complex identity-related incidents and service requests, working closely with IT operations and support teams.
   • Monitor, analyze, and troubleshoot authentication issues, access control failures, and policy misconfigurations across multiple platforms.
   • Optimize performance and functionality of IDAM solutions by regularly reviewing system logs, implementing best practices, and fine-tuning configurations.
5. Compliance & Security Management:
   • Ensure IDAM solutions comply with regulatory requirements and industry standards such as GDPR, HIPAA, and ISO 27001 as per the requirement.
   • Implement identity governance frameworks to enforce access policies, conduct periodic access reviews, and ensure least privilege principles.
6. Collaboration & Stakeholder Engagement:
   • Act as a trusted advisor to clients and internal stakeholders, providing technical guidance and expertise on identity management strategies.
   • Work closely with the sales and presales teams to provide input on proposals, client presentations, and RFP responses.
   • Communicate effectively with business owners to understand access needs, propose solutions, and resolve identity-related issues.
7. Training & Knowledge Sharing:
   • Mentor junior engineers and provide training on IDAM best practices, tools, and technologies.
   • Develop and maintain comprehensive documentation, including solution designs, user guides, and SOPs.
8. Continuous Improvement:
   • Stay current with industry trends, emerging technologies, and security threats related to identity and access management.
   • Participate in community forums, attend training sessions, and pursue relevant certifications to enhance expertise in the IDAM domain.

Skills & Competencies:

• Deep technical knowledge of multiple IDAM solutions and integration strategies.
• Expertise in architecting and delivering complex IDAM projects.
• Strong troubleshooting and analytical skills for resolving identity-related issues.
• Excellent communication skills with the ability to convey technical concepts to non-technical stakeholders.
• Ability to manage multiple priorities and projects in a fast-paced environment.

Experience:

• 8-14 years of progressive experience in identity and access management, with a focus on architecture, solution delivery, and operations.
• Experience in managing multi-platform IDAM environments, integrating cloud and on-premises identity solutions.

Qualifications

Qualifications:

• Bachelor’s degree in computer science, Information Technology, or a related field.
• Relevant certifications such as Okta Certified Professional, Azure Security Engineer, AWS Certified Security - Specialty, SailPoint IdentityNow Certified Implementation Engineer, or similar.
• Proficiency in IDAM protocols (SAML, OAuth, OIDC) and technologies (Okta, Azure AD, PingFederate, ForgeRock).
• Experience with Privileged Access Management (PAM) and Identity Governance and Administration (IGA) tools.
• Strong understanding of Active Directory, LDAP, and directory synchronization tools.