IAM Expert

Req ID:478161 

At Alstom, we understand transport networks and what moves people. From high-speed trains, metros, monorails, and trams, to turnkey systems, services, infrastructure, signalling and digital mobility, we offer our diverse customers the broadest portfolio in the industry. Every day, more than 80 000 colleagues lead the way to greener and smarter mobility worldwide, connecting cities as we reduce carbon and replace cars.

Job Title: IAM Expert

OVERALL PURPOSE OF THE ROLE:

We are seeking an experienced resource who has expertise on Identity and Access Management topic  for Alstom IS&T. IAM Expert is the Subject Matter Expert (SME) in terms of identity and access management global topic.

The resource would be in charge of developing and provide strong expertise on identities and accesses operations and governance topic, in compliance with the IAM security policy. This includes the definition of global processes to manage the lifecycle of users’ accounts and identity in the IT landscape. The resource should coordinate and work with relevant stakeholders around IAM topics, including but not limited to HR, Sourcing, Master Data managers, IS&T, business representatives.

He or she designs the contribute to the IAM mechanisms design and implementation on tools and architectures to be implemented within the Alstom Information System. He or she will be also in charge of participate strongly on the functional and technical roadmap.

He or she could leads the external resources team supporting Alstom IAM program and ensure the relation with external partners with the support of sourcing and legal teams.

Organisation structure (job belongs to..)

Digital Services

 Reports directly to:

IAM Operations & Governance Leader

Roles and Responsibility:

• The IAM Expert has under his responsibility:
  • Lead the IAM workshops on both functional and technical design.
  • Maintain and Improve IAM SOP, documentation and process.
  • Contribute on IAM standards and Security Policy
  • Work actively on Governance of identities and accesses
  • Perform Technical review and Impact assessment for all changes and new requirement.
  • Managing dashboards and reporting for leadership.
  • Support level 5 – expertise – for IAM platforms and topics
  • Support to drive Critical Incidents towards resolution engaging relevant stakeholders
  • Ensure critical applications are well integrated with the good level of IAM control and governance ( access review, good approval workflow) based on policy and instruction.
  • Leading upcoming new security solutions like B2B Operations and B2B SSO in IAM.
  • PAM Operations expertise
  • Serve as a subject matter expert (SME) for Saviynt
  • Responsible for troubleshooting and manage issues related to identities, authentication/authorization and access permissions. 
  • Lead IAM operations and BAU activities
  • Implementing the solutions for complex operational problems

• The IAM Expert contribute actively to the security aspects related to IAM in Alstom’s IT projects
  • ISSCQ – produce all Information System Security and Compliance Questionnaire at the initial phase of all projects
  • Risk analysis – perform risk analysis and identify mitigation plan when relevant
  • Security Insurance Plan –make sure that all IT partners/providers respect the IAM policy when they deliver services (e.g. Cloud or SaaS provider)
  • Security Acceptance –make the right decision considering the residual risk and the asset value
  • ISS Run Q&A and industrialization

Experience

• Bachelor’s/Master’s degree in Engineering/Technology or related field
• Minimum 8-10 years of relevant IAM Security Operation and governance experience
• Professional industry standard certifications like CISSP, CISA, CEH, GIAC, CISM, etc. will be an added advantage
• Experience on IAM solutions within Saviynt AAG, Microsoft Azure or other IAG solution
• Experience on PAM (Privilege Access Management) solutions (eg Cyberark, BeyondTrust)
• Exposure and understanding of IAM Architecture
• Able to analyse risks and to design an appropriate IAM security pattern (provisioning, habitation workflow, authentication, master data authorities, segregation of duty, Privileged Access Management, federation)
• Subject-matter expertise across all IAM topics as it relates to both cloud and on-premises enterprise technology, and the relationship between the architectures.
• Contribute to the adoption of Authentication and Authorization reference architectures for existing, new and emerging IAM technologies.
• Lead effective design solutions that not only satisfy immediate project requirements but also deliver a coherent, reusable, reliable to help the business grow and change while aligning IAM security policy.
• Knowledge of ISO 27002 and ISO 27005
• Demonstrated drive for continuous learning, results-orientation, and teamwork
• Professional & concise communication (written & verbal)
• Ability and flexibility to adapt to change, including shifting and competing priorities
• Ability to work with functional as technical teams in a dynamic environment:

Technical Competencies:

• Experience on operations IAM solutions: Level 3                                         
• Experience on IAM solutions within Saviynt AAG, Microsoft Azure or other IAG solution: Level 3
• Very Good understanding of Identity & access governance, Multi-Factor authentication and Privileged Access Management: Level 4                                                                             
• Good understanding on technologies related to Identity and access management, such as e.g. API ,AD,LDAP,SQL : Level 4
• Intimately familiar with IAM functional process and design (SOD, Workflow approval, MFA,..) : Level 4
• Good understanding on functional concept of Identity and access management (workflows, SOD, recertification access, provisioning, auto-correlation access, …): Level 4
• Very good understanding on security IAM principals and design (e.g network, ) Level 4
• 2-3 years of IAM Saviynt software experience is appreciated: Level 2

Behavioural Attributes

• Ability to work global with functional as well as technical teams in a dynamic environment
• Eye for details, structured and process oriented
• Influence stakeholders for improving and sustaining performance
• Demonstrate a positive mindset, high levels of character and integrity, and a keen awareness of continuous improvement
• Advise and collaborate with others to develop strong, positive working relationships across all levels of the organization to drive success of projects and efforts
• Offer creative, innovative, data-based solutions by focusing on forward progress and creativity, even when working through complex, often competing needs.

You don’t need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family, you’ll be proud. If you’re up for the challenge, we’d love to hear from you!

Important to note

As a global business, we’re an equal-opportunity employer that celebrates diversity across the 63  countries we operate in. We’re committed to creating an inclusive workplace for everyone.