Operations Specialist - Identity and Access Management

Req ID:470932 

We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community of more than 75 000 people dedicated to solving real-world mobility challenges and achieving international projects with sustainable local impact.  

Reporting directly to the Identity and Access Operation Manager, Operations Specialist - Identity and Access Management is the expert in terms of identity and access management global topic.

Candidate is in charge of developing and provide strong expertise on identities and accesses related topic, in compliance with the IAM security policy at group level. This includes the definition of global processes to manage the lifecycle of users’ accounts and identity in the IT landscape.

Candidate coordinates and gather relevant stakeholders around IAM topics, including but not limited to HR, Sourcing, Master Data managers, IS&T, business representatives.

Candidate designs the contribute to the IAM mechanisms design and implementation on tools and architectures to be implemented within the Alstom Information System. Candidate will be also in charge of participate strongly on the functional and technical roadmap.

Candidate could manage and leads the external resources team supporting Alstom IAM program and ensure the relation with external parties with the support of sourcing and legal teams also drive Service and Continuous improvement plans in IAM process.

• The Operations specialist- IAM has under his responsibility:
  • • Lead the IAM workshops on both functional and technical design.
    • Support and manage Run operations
    • Maintain and Improve IAM documentation and process.
    • Contribute actively on IAM standards and control
    • Contribute on IAM Security Policy
    • Work actively on Governance of identities and accesses
    • Perform Technical review and Impact assessment for all changes and new requirement.
    • Managing dashboards and reporting for leadership.
    • Support level 3 – expertise – for IAM platforms and topics
    • Supporting upcoming new security solutions like B2b Operations and B2b SSO in IAM.
    • PAM Operations, Preferably CyberArk solution
    • Serve as a subject matter expert (SME) on IGA solution prefferrably Saviynt
    • Responsible for troubleshooting and manage issues related to identities, authentication/authorization and access permissions. 
    • Lead IAM operations and BAU activities
    • Implementing the solutions for complex operational problems
• The Operations specialist - IAM contribute actively to the security aspects related to IAM in Alstom’s IT projects
  • ISSCQ – produce all Information System Security and Compliance Questionnaire at the initial phase of all projects
  • Risk analysis – perform risk analysis and identify mitigation plan when relevant
  • Security Insurance Plan –make sure that all IT partners/providers respect the IAM policy when they deliver services (e.g. Cloud or SaaS provider)
  • Security Acceptance –make the right decision considering the residual risk and the asset value
  • ISS Run Q&A and industrialization

Initial Background: an Operations specialist- IAM or leader having 5 to 10 years of experience in IAM Security activities, ideally with an IT Security backgrounds.

Languages: English (mandatory), French (optional)

Mandatory experiences:

• IAM concepts
• IAM Architecture
• Security background
• Excellent written/verbal/communication, listening and facilitation skills
• Able to analyze risks and to design an appropriate IAM security pattern (provisioning, habilitation workflow, authentication, master data authorities, segregation of duty, Privileged Access Management, federation)
• Subject-matter expertise across all IAM topics as it relates to both cloud and on-premises enterprise technology, and the relationship between the architectures.
• Contribute to the adoption of Authentication and Authorization reference architectures for existing, new and emerging IAM technologies.
• Lead effective design solutions that not only satisfy immediate project requirements but also deliver a coherent, reusable, reliable to help the business grow and change while aligning IAM security policy.
• Risk analysis
• Knowledge of ISO 27002 and ISO 27005

Technical Competencies (max 20)

Experience architecting IAM solutions: Level 2                                          

Experience on IAM solutions within Saviynt AAG, Microsoft Azure or other IAG solution: Level 3

Very Good understanding of Identity & access governance, Multi-Factor authentication and Privileged Access Management: Level 4                                                                             

Good understanding on technologies related to Identity and access management, such as e.g. API ,AD,LDAP,SQL : Level 3

Intimately familiar with IAM functional process and design (SOD, Workflow approval, MFA,..) : Level 4

Good understanding on functional concept of Identity and access management (workflows, SOD, recertification access, provisioning, auto-correlation access, …): Level 4

Very good understanding on security IAM principals and design (e.g network, ) Level 4

2-3 years of IAM Saviynt software experience is appreciated:               Level 2

Leadership dimensions

Ability to work global with functional as well as technical teams in a dynamic environment:   Level 3

Ability to actively contribute on architecture topic related, to various stakeholders (Team, Architects, Head of, VP, Business): Level 3      

An agile, inclusive and responsible culture is the foundation of our company where diverse people are offered excellent opportunities to grow, learn and advance in their careers.  We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals.