IAM Operations & Governance Leader

Req ID:478162 

At Alstom, we understand transport networks and what moves people. From high-speed trains, metros, monorails, and trams, to turnkey systems, services, infrastructure, signalling and digital mobility, we offer our diverse customers the broadest portfolio in the industry. Every day, more than 80 000 colleagues lead the way to greener and smarter mobility worldwide, connecting cities as we reduce carbon and replace cars.

Job Title: IAM Operations & Governance Leader

OVERALL PURPOSE OF THE ROLE:

We are seeking an experienced resource who has expertise on Identity and Access Management topic  for Alstom IS&T. The candidate should have expertise in People management, Operations, Governance, Compliance of Security Policy for Alstom. The candidate will drive the end to operations & oversee the control and definition of Identity and access management policy and instructions within the company.

He or She will have to collaborate with teams, working on Incident & request management, processes, policy , instruction and control on different activity Domain such as projects, run, awareness within the global organization.

The resource would be in charge of developing and provide strong expertise on identities and accesses operations and governance topic, in compliance with the IAM security policy. This includes the definition of global processes to manage the lifecycle of users’ accounts and identity in the IT landscape. The resource should coordinate and work with relevant stakeholders around IAM topics, including but not limited to Security Operations, AD, HR, Sourcing, Master Data managers, IS&T, business representatives.

He or she designs the contribute to the IAM mechanisms design and implementation on tools and architectures to be implemented within the Alstom Information System. He or she will be also in charge of participate strongly on the functional and technical roadmap.

He or she could lead the external resources team supporting Alstom IAM program and ensure the relation with external partners with the support of sourcing and legal teams.

Organisation structure (job belongs to..)

Digital Services

 Reports directly to:

Head of IAM (Identity Access Management)

Roles and Responsibility:

• Manage and lead a cross-functional team of IAM resources providing guidance, mentorship, and support in achieving organizational goals, coordinate recruitment and team engagement efforts
• Responsible for ensuring that the Identity and Access Management (IAM) service is operational.
• Ensure business, IT and Security teams are compliant to applicable IAM policy, IAM .standards and instructions.
• Improve the quality of IAM service provided by service partners; ensure compliance with Quality Assurance plans and Service Agreements linked to contracts
• Responsible for making sure Incidents, requests, problem are processed efficiently.
• Responsible for making sure all changes are handled efficiently without any impact to operations and Business.
• Efficient change management & communication for adoption of IAM tools & process.
• Leading upcoming new security solutions like B2B Operations and B2B SSO in IAM. Establish process and governance.
• Responsible for providing risk oversight by ensuring proper insight is given to the security leadership team for taking informed decisions on matters related to information security
• Ensure critical applications are well integrated with the good level of IAM control and governance ( access review, good approval workflow) based on policy and instruction.
• Develop and drive measurable IAM security metrics; ensure metrics provide actionable insights to the applicable stakeholders.
• Maintain IAM policy & instruction awareness of business, technical, architecture, infrastructure, and end user support
• Analyse internal and external threats and recommend remediation actions based on IAM capability.
• Perform IAM audit / gap assessments of internal systems and processes and provide recommendations to mitigate the same

Experience

• Bachelor’s/Master’s degree in Engineering/Technology or related field
• Minimum 10+ years of relevant IAM Security Operation and governance experience
• Exposure to people management, handling, building a team.
• Good understanding of IAM (SSO, IGA , PAM ) domains.
• Professional industry standard certifications like CISSP, CISA, CEH, GIAC, CISM, etc. will be an added advantage
• Experience on IAM solutions within Saviynt AAG, Microsoft Azure or other IAG solution
• Exposure and understanding of IAM Architecture
• Able to analyse risks and to design an appropriate IAM security pattern (provisioning, habitation workflow, authentication, master data authorities, segregation of duty, Privileged Access Management, federation)
• Contribute to the adoption of Authentication and Authorization reference architectures for existing, new and emerging IAM technologies.
• Lead effective design solutions that not only satisfy immediate project requirements but also deliver a coherent, reusable, reliable to help the business grow and change while aligning IAM security policy.
• Knowledge of ISO 27002 and ISO 27005
• Demonstrated drive for continuous learning, results-orientation, and teamwork
• Professional & concise communication (written & verbal)
• Ability and flexibility to adapt to change, including shifting and competing priorities
• Ability to work with functional as technical teams in a dynamic environment:

Technical Competencies:

• Experience on operations IAM solutions: Level 3                                         
• Experience on IAM solutions within Saviynt AAG, Microsoft Azure or other IAG solution: Level 3
• Very Good understanding of Identity & access governance, Multi-Factor authentication and Privileged Access Management: Level 4                                                                             
• Good understanding on technologies related to Identity and access management, such as e.g. API ,AD,LDAP,SQL : Level 3
• Intimately familiar with IAM functional process and design (SOD, Workflow approval, MFA,..) : Level 4
• Good understanding on functional concept of Identity and access management (workflows, SOD, recertification access, provisioning, auto-correlation access, …): Level 4
• Very good understanding on security IAM principals and design (e.g network, ) Level 4

Behavioural Attributes

• Ability to work global with functional as well as technical teams in a dynamic environment: 
• Eye for details, structured and process oriented
• Influence stakeholders for improving and sustaining performance
• Provide amazing experiences to both operations and governance by seeing the big picture, understanding needs and tying them to results, and driving value
• Demonstrate a positive mindset, high levels of character and integrity, and a keen awareness of continuous improvement
• Advise and collaborate with others to develop strong, positive working relationships across all levels of the organization to drive success of projects and efforts
• Offer creative, innovative, data-based solutions by focusing on forward progress and creativity, even when working through complex, often competing needs.

You don’t need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family, you’ll be proud. If you’re up for the challenge, we’d love to hear from you!

Important to note

As a global business, we’re an equal-opportunity employer that celebrates diversity across the 63  countries we operate in. We’re committed to creating an inclusive workplace for everyone.