IAM ASSESSMENT LEAD (HYBRID –
SINTRA, PORTUGAL)
Portuguese
company hires for hybrid work
Location:
Sintra, Portugal
Candidates
must already live in Portugal
Work Model: Hybrid
(2 days per week onsite)
Language
Requirements: English & Portuguese (both required)
Seniority: Senior Level
Instructions:
Please send your CVs in English and make sure to include all skills and
experience that match the requirements of the opportunity. This will
significantly increase your chances of success
_______________________________________________________________
Objective
We are seeking an experienced IAM Assessment Lead to
conduct a comprehensive assessment and fit–gap
analysis between current and target identity and access
management (IAM) roles. The professional will lead efforts to align access
governance models with business needs, regulatory standards, and modern IAM
frameworks.
Key Responsibilities
·
Lead the fit-gap
analysis between existing (legacy) and target IAM systems.
·
Assess and document identity roles, access paths, and
governance processes.
·
Map legacy
identity models to modern platforms, identifying overlaps,
gaps, and remediation steps.
·
Evaluate and refine Segregation of Duties (SoD)
rules, privileged access frameworks, and emergency access policies.
·
Collaborate with business and IT stakeholders to
define role ownership,
recertification processes, and approval flows.
·
Ensure IAM processes align with audit, compliance, and regulatory
standards (SOX, GxP, etc.).
·
Produce clear and actionable documentation for
technical and non-technical audiences.
Required Experience
Deep expertise in modern Identity Governance & Administration
(IGA) platforms (e.g., Saviynt,
SailPoint).
Proven experience with:
·
Role
modeling, recertification, and SoD management.
·
Privileged
access governance and PAM integration.
·
Role
catalog migration and access
model design in large enterprises.
Strong understanding of Finance Access Models,
particularly across Planning,
Budget, Consolidation, and Management Reporting domains.
Demonstrated experience in audit and compliance-driven IAM
environments.
Ability to communicate
governance frameworks and access documentation clearly to mixed
audiences.
Desirable Qualifications
Experience with SAP GRC, Azure AD / Entra ID, and group-based provisioning.
Familiarity with IAM implementations in finance or
regulated industries.
Background in security architecture, access risk
management, or data governance.
Project Scope
This position supports a multi-year IAM transformation program
aimed at standardizing and automating identity and access management processes
across the organization. Key objectives include:
·
Ensuring secure,
compliant, and efficient access to all enterprise systems.
·
Reducing
operational risk through stronger access control and lifecycle
management.
·
Aligning
the IAM framework with industry
best practices and regulatory standards.
Methodology &
Deliverables
Assessment & Fit–Gap
Activities
·
Conduct discovery sessions to inventory all
existing roles, entitlements, and access paths.
·
Map legacy IAM data to target systems,
identifying gaps, redundancies, and
unmapped permissions.
·
Define and validate SoD matrices and privileged access frameworks.
·
Align role ownership and establish recertification cadences and escalation
paths.
Deliverables
Role Mapping Workbook –
Comprehensive mapping between legacy and target roles, including SoD and PAM
status.
Access
Model Documentation – Standardized per-application models with
role definitions, SoD matrices, and approval workflows.
SoD
Ruleset & Validation Evidence – Documented compliance
checks and test results.
Privileged
Access Blueprint – Recommendations for emergency access and PAM
integration.
Remediation
Roadmap – Prioritized plan for role optimization and phased
migration.
Keywords for Your CV
IAM,
IGA, Saviynt, SailPoint, SoD, PAM, Role Mapping, Governance, Compliance, Audit,
Access Management, Azure AD, SAP GRC, Security Architecture, Fit–Gap Analysis,
Finance Access Models, Sintra, Hybrid.
#00315819