Pune, Maharashtra
Job Summary
This role will work as an interface between Enterprise Architect (HQ – COE) and IT SSC team to translate architecture requirements around IAM and PAM solutions into workable components to the IT SSC team of specialists. Also works with the HQ team to provide the support for design, implementation, and governance of enterprise IAM and PAM solutions, ensuring secure identity lifecycle management, privileged access control, and compliance across the organization using OKTA and BeyondTrust platforms.
Key Responsibilities
Engage with key users to understand business needs, challenges, and goals. Support in developing (technology) solutions on domain level aligned with organizational objectives. Define domain related processes and policies including complementary documentation. Support and consult in IT projects as well as lead domain initiatives including ensuring successful execution from planning to completion. Customize existing systems to meet specific user requirements (domain specific). Evaluate and recommend new processes/technologies for efficiency and effectiveness. Provide (technical) assistance to key users. Conduct training sessions on processes and potential software and hardware usage for domain specific topics. Analyse complex issues and propose effective solutions. Produce reports to guide decision-making.
Skill Requirements
- Define IAM and PAM architecture, strategy, and roadmap aligned with business and security requirements • Design and implement OKTA-based IAM solutions including SSO, MFA, federation, and lifecycle management • Design and implement BeyondTrust PAM solutions including privileged access workflows, vaulting, and session control • Define and enforce identity governance processes (JML, RBAC, access certification) • Integrate IAM/PAM solutions with AD, Entra ID, cloud platforms, and enterprise applications • Establish Zero Trust access models and least privilege principles across environments • Ensure compliance with regulatory frameworks (NIST, ISO 27001, CIS, NIS2) • Lead solution design reviews and oversee implementation by specialist teams • Implement automation and integration via APIs and identity workflows • Define monitoring, logging, and SIEM integration for identity events • Provide technical leadership, mentorship, and stakeholder engagement • Evaluate vendors, tools, and architectures for IAM/PAM improvements
Other Requirements
- Relevant Experience should be 7-10 years • OKTA Identity platform (SSO, MFA, Federation, Lifecycle Management) • BeyondTrust PAM (privileged access, vaulting, session monitoring) • Protocols: SAML, OAuth, OIDC, LDAP, Kerberos • Identity governance: RBAC, ABAC, JML processes • Integration: AD, Entra ID, Azure/AWS IAM, API integrations • Security concepts: Zero Trust, least privilege, identity protection • SIEM integration (Sentinel, Splunk)
Preferred Certifications\\\\r\\\\n• OKTA Certified Professional / Administrator / Consultant\\\\r\\\\n• BeyondTrust PAM Certification (or equivalent)\\\\r\\\\n• Microsoft SC-300 (Identity and Access Administrator)\\\\r\\\\n• CISSP / CISM\\\\r\\\\n• CompTIA Security+\\\\r\\\\nTools & Plattform (indicative)\\\\r\\\\n• Network Security: Palo Alto, Fortinet, Cisco, F5/WAF, Cloudflare/Proxies\\\\r\\\\n• Cloud: Azure, Defender for cloud Apps, security center, CAP, etc.
#body.unify div.unify-button-container .unify-apply-now: focus, #body.unify div.unify-button-container .unify-apply-#body.unify div.unify-button-container .unify-apply-now: focus, #body.unify div.unify-button-container .unify-apply-
