Iam Assessment Lead (Hybrid)

IAM ASSESSMENT LEAD (HYBRID SINTRA PORTUGAL)

Portuguesecompany hires for hybrid work
Location:Sintra Portugal
Candidatesmust already live in Portugal
Work Model: Hybrid(2 days per week onsite)
LanguageRequirements: English & Portuguese (both required)
Seniority: Senior Level
Instructions:Please send your CVs in English and make sure to include all skills andexperience that match the requirements of the opportunity. This willsignificantly increase your chances of success

Objective

We are seeking an experienced IAM Assessment Lead toconduct a comprehensive assessment and fitgapanalysis between current and target identity and accessmanagement (IAM) roles. The professional will lead efforts to align accessgovernance models with business needs regulatory standards and modern IAMframeworks.

Key Responsibilities

Lead the fit-gapanalysis between existing (legacy) and target IAM systems.

Assess and document identity roles access paths andgovernance processes.

Map legacyidentity models to modern platforms identifying overlapsgaps and remediation steps.

Evaluate and refine Segregation of Duties (SoD)rules privileged access frameworks and emergency access policies.

Collaborate with business and IT stakeholders todefine role ownershiprecertification processes and approval flows.

Ensure IAM processes align with audit compliance and regulatorystandards (SOX GxP etc.).

Produce clear and actionable documentation fortechnical and non-technical audiences.

Required Experience

Deep expertise in modern Identity Governance & Administration(IGA) platforms (e.g. SaviyntSailPoint).
Proven experience with:

Rolemodeling recertification and SoD management.

Privilegedaccess governance and PAM integration.

Rolecatalog migration and accessmodel design in large enterprises.
Strong understanding of Finance Access Modelsparticularly across PlanningBudget Consolidation and Management Reporting domains.
Demonstrated experience in audit and compliance-driven IAMenvironments.
Ability to communicategovernance frameworks and access documentation clearly to mixedaudiences.

Desirable Qualifications

Experience with SAP GRC Azure AD / Entra ID and group-based provisioning.
Familiarity with IAM implementations in finance orregulated industries.
Background in security architecture access riskmanagement or data governance.

Project Scope

This position supports a multi-year IAM transformation programaimed at standardizing and automating identity and access management processesacross the organization. Key objectives include:

Ensuring securecompliant and efficient access to all enterprise systems.

Reducingoperational risk through stronger access control and lifecyclemanagement.

Aligningthe IAM framework with industrybest practices and regulatory standards.

Methodology &Deliverables

Assessment & FitGapActivities

Conduct discovery sessions to inventory allexisting roles entitlements and access paths.

Map legacy IAM data to target systemsidentifying gaps redundancies andunmapped permissions.

Define and validate SoD matrices and privileged access frameworks.

Align role ownership and establish recertification cadences and escalationpaths.

Deliverables

Role Mapping Workbook Comprehensive mapping between legacy and target roles including SoD and PAMstatus.
AccessModel Documentation Standardized per-application models withrole definitions SoD matrices and approval workflows.
SoDRuleset & Validation Evidence Documented compliancechecks and test results.
PrivilegedAccess Blueprint Recommendations for emergency access and PAMintegration.
RemediationRoadmap Prioritized plan for role optimization and phasedmigration.

Keywords for Your CV

IAMIGA Saviynt SailPoint SoD PAM Role Mapping Governance Compliance AuditAccess Management Azure AD SAP GRC Security Architecture FitGap AnalysisFinance Access Models Sintra Hybrid.

#