Identity and Access Specialist (f/m/d)

Security is of very high priority for supporting DBG’s business. The department Group Security uses the ISO 27000 framework and fulfils the relevant requirements for financial service providers. In this way it is possible to protect the information assets in terms of confidentiality, integrity, authenticity, and availability. Identity and Access management plays an important role here ensuring only intended and authorized users have access to necessary IT resources, thereby maintaining least privileged principle. This is achieved using standard industry solutions and implemented for On-Premises and cloud applications. Automated processes ensure that this is maintained even when organizational adjustments are made.

Area of work:
The Identity Access management Specialist is responsible for developing, maintaining, and improving the Identity and Access management landscape within Deutsche Boerse Group. The candidate is responsible to ensure compliance with regards to external regulations, internal policies and corresponding IAM processes.

Your responsibilities:

• Deliver sprint tasks as per Cloud IAM domain’s strategic plan.
• Integrate CIEM capabilities with central IAM tool.
• Design lifecycle processes of service accounts/principals and establish corresponding governance.
• Ensure compliance with regulatory requirements and internal security standards through effective access policies.
• Coordinate with cross-functional teams to incorporate IAM/PAM solutions into existing infrastructure.
• Conduct regular access reviews & ensure enforcement of Least Privilege (LoP) principles.
• Create and maintain comprehensive documentations for IAM/PAM.
• Provide guidance to teams on IAM/PAM related matters and support in Audit activities.

Your profile:

• Bachelor/Master degree in Information Technology, or equivalent.
• Minimum of 5 years’ experience in Identity and Access management (IAM) projects, preferably in Cloud IAM.
• In-depth knowledge on atleast one commonly used (on-premises/SaaS) IAM and/or PAM solution eg. SailPoint IIQ, CyberArk, MS Entra ID etc.
• Hands-on experience with GCP and/or MS Azure IAM services is a must.
• Knowledge in Secrets Management, Cloud Infrastructure Entitlement Management (CIEM), Zero Trust would be an advantage.
• Experience in handling IAM/PAM related Audits is desired.
• Experience in CI/CD pipeline, Project management is desired.
• Knowledge on how to structure options and present proposal for next steps to senior management.
• Proactive thinking and self-paced work on solutions is desired.
• Fluent in English. German would be an added advantage.
• Good to have: CISSP, CISM, GCP/Azure certifications or IAM/PAM tool specific certifications.
• Strong, proven analytical and problem-solving skills.
• Good presentation and documentation skills.
   

Additionally, you need to be a team player with good communication skills, highly motivated and flexible regarding environment adaptability.