KGS - EWT Security - IAM Manager - Bengaluru

We are seeking an experienced IAM (Identity and Access Management) Manager to lead our internal IAM team, with a specific focus on SAP Cloud solutions, including SAP S/4HANA Public Cloud and SAP Business Technology Platform (BTP). The ideal candidate will have a strong background in IAM processes and tools, with a particular emphasis on managing access controls, designing IAM solutions, and implementing IT General Controls (ITGC) across both SAP and non-SAP applications.

• Oversee and guide the internal IAM team within the broader IAM function, with a strong focus on managing IAM activities in SAP Cloud environments, particularly SAP S/4HANA Public Cloud and BTP. Ensure effective management of IAM activities and alignment with best practices.
• Act as an escalation point for complex identity and access management issues, providing subject matter expertise, guidance, and resolution.
• Manage IAM capabilities, playbooks and documentation and work with business stakeholders to implement continuous improvements.
• Lead the design and implementation of Business roles, personas, and authorisations within SAP S/4HANA Public Cloud, ensuring compliance with best practices and regulatory requirements.
• Work with SAP, SailPoint and other relevant vendors to address additional IAM requirements. 
• Manage the user provisioning and de-provisioning processes, including onboarding, role assignment, access granting, and the secure removal of access for departing employees or role changes.
• Oversee design and configuration of IDAM solutions/processes around IAG/SailPoint/Okta to support SAP and non-SAP applications.
• Coordinate the administration and governance of SAP IAG for access management and compliance across SAP systems.
• Design and configure mitigating controls aligned with SOD & SA matrix rules in IAG/SailPoint.
• Conduct regular access reviews and audits to ensure compliance with internal policies and external regulations.
• Maintain and keep SoD rule sets up to date, incorporating changes in business processes, roles, and regulations.
• Own IAM processes to ensure they align with existing security controls and policies.
• Previous experience harmonising RACMs in alignment with FCM format.
• Collaborate with IT and business teams to define and implement Role-Based Access Control (RBAC).

You must:

• Minimum 5+ years of professional experience working in the IAM field and supporting services underneath:
  • An operational IAM security role; or
  • SAP IGA role
• Have extensive experience in SAP GRC PC/FCM implementation on the Functional side.
• Have extensive experience in SAP/Cloud SAP-IAG module.
• Understand Single Sign-On (SSO) and Multi-Factor Authentication (MFA) solutions and support requirements aligned with these solutions.
• Knowledge of security concepts and technologies in the wider Identity and Access management space (Logical Access Controls, LDAP ,RBAC, Authentication solutions, PKI concepts, etc.)
• Hands on experience and knowledge in enabling IAM controls securing digital products/solutions in the Cloud (e.g. in AWS, Azure and Google);
• Be able to demonstrate the ability to adapt communication style to explain technical concepts to different people within an organisation whether advising stakeholders, directing teams, or sharing experiences. 
• Experience of successfully working in a fast paced, customer service/regulated environments, delivering high quality information security services
• Be calm in challenging situations, able to navigate through complex security problems to find the root cause and a balanced outcome.

It would be advantageous if you can demonstrate some, or all of:

• Professional presentation with strong people skills at all levels across the firm.
• Able to gain credibility with senior staff and the trust of all staff.
• Any technical security certification (e.g. CISSP, CCSP, AWS, SAN GIAC, Azure, GCP).