Identity and Access Management (IAM) Architect (all genders)

THE ROLE & THE TEAM

We are seeking a highly skilled IAM Architect with deep expertise in Identity Governance and Administration (IGA), authentication, and cloud identity security to drive the architecture and strategy for Okta, Saviynt, and AWS IAM. This role will focus on designing, implementing, and optimizing IAM frameworks, ensuring strong security, compliance, and operational efficiency.

As the IAM Architect, you will work closely with IT, security, and business stakeholders to define enterprise identity strategies, automate identity workflows, and enforce Zero Trust security principles. Your expertise in IGA, compliance-driven access management, and cloud identity architecture will be instrumental in securing our growing environment.

WHAT WE’D LOVE YOU TO DO (AND LOVE DOING)
 

• Define and maintain enterprise IAM architecture, focusing on Saviynt, Okta, Styra and related platforms like AWS IAM.

• Architect Saviynt-based identity lifecycle management, RBAC, access certifications, and compliance workflows.

• Design Okta authentication, SSO, MFA, and federated identity management (OAuth, SAML, OpenID Connect, SCIM).

• Enforce AWS IAM best practices, including fine-grained permissions, role modelling and federated access.

• Ensure IAM solutions meet NIS2, SOC2, DORA, SOX, GDPR, and other industry standards through auditable IAM controls.

• Develop identity automation workflows using APIs, Terraform, GitHub, Python, Go and other modern development frameworks. 

• Implement Zero Trust IAM models, enforce Just-in-Time (JIT) access, and integrate identity threat detection.

• Work with security, IT, DevOps, and business teams to align IAM solutions with organizational goals.

WE’D LOVE TO MEET YOU IF
 

• You are experienced in working on Identity Governance (IGA) and tools (like Saviynt, SailPoint or Okta OIG), ensuring organizations maintain secure, efficient, and compliant identity processes.

• You think automation-first and look for ways to streamline identity workflows, integrate IAM with DevOps tools, and reduce manual efforts.

• You have a strong understanding of IAM risk and compliance, ensuring identity security aligns with industry regulations and internal governance frameworks.

• You thrive in cross-functional collaboration, working effectively with security, IT, DevOps, and business teams to drive identity initiatives forward.

• You stay ahead of the curve, continuously learning about emerging IAM trends like Zero Trust, identity threat detection, and passwordless authentication.

• You bring a solution-oriented mindset, balancing security best practices with practical implementation strategies.
   

If you think you have what it takes, we encourage you to apply even if you don't meet every single requirement. You may just be the right candidate for this or other roles!

OUR OFFER
 

Zalando provides a range of benefits, here’s an overview of what you can expect. Ask your Talent Acquisition Partner to learn more about what we offer.

• Employee shares program

• 40% off fashion and beauty products sold and shipped by Zalando, 30% off Lounge by Zalando, discounts from external partners

• 2 paid volunteering days a year

• Hybrid working model with up to 60% remote per week, actual practice is up to each team to best support their collaboration

• Work from abroad for up to 30 working days a year

• 27 days of vacation a year to start for full-time employees

• Relocation assistance available (subject to prior agreement)

• Family services, including counseling and support

• Health and wellbeing options (including Wellhub)

• Mental health support and coaching available

• Drive your development through our training platform and biannual peer-to-peer review

INCLUSIVE BY DESIGN
 

At Zalando, our vision is to be the leading pan-European ecosystem for fashion and lifestyle e-commerce - one that is inclusive by design. We only assess candidates based on qualifications, merit, and business needs. We welcome applications from people of all gender identities, sexual orientations, personal expressions, racial identities, ethnicities, religious beliefs, and disability statuses. We only want to know why you’re great for this role, so please avoid including your picture, age, and marital status in your CV as well.

We want to provide you with a great candidate experience. Please feel free to inform us of any accommodations you may need, so we can best support and assist you throughout the hiring process.

do.BETTER - our diversity & inclusion strategy: https://jobs.zalando.com/en/our-culture/diversity-and-inclusion