Identity & Access Management Architect - Corporate IT Office
Requisition ID : 21599
No. of Position : 1
Location : Bangkok
Company : The Siam Cement Public Company Limited
Job Summary:
Responsibilities:
Job Summary: Identity & access management provides specialized technical services and advisories in IAM solutions, specifically on the directory areas like Active Directory, Azure AD, AD Federation Services and Azure AD Connect.
Key Responsibilities:
- Identify and resolve gaps in the business processes which may include security/authorization set-up, user documentation, data interface design, data migration and reconciliation.
- Use Active Directory knowledge to manage access entitlements between diverse systems on prem/cloud.
- Maintain business Roles and all associated data, rules including access bundling rules, and processes.
- Serve as a trusted adviser to the business stakeholders and understand their core business processes, business priorities which can be enhanced using Identity management solutions.
- Provide Identity and access management advisory, solution architecture, and consulting to internal projects of varying size.
- Drive organization wide strategy and implementation plans including but not limited to Privileged Access Management, Single Sign on and IAM governance.
- Definition of Authorization Using Authorization Strategies.
- Define and implement long term sourcing strategy, KPIs.
- Assist in alignment of overall security governance as it relates to IAM with IT architecture governance and project and portfolio management (PMO).
- Manage the workflow within IAM including access provisioning, compliance, access management (including privileged accounts) and other functions in Information security.
- Integrate the IAM solutions with SIEM solutions to log and monitor security exceptions.
- Plan and manage Access Certification, RBAC & SoD related initiatives.
Qualifications:
Knowledge:- Knowledge
- Active Directory
- Azure (B2B, B2C)
- Authentication method and Protocal (LDAP, SAML, OAuth, OpenID Connect, MFA, Passkey, FIDO, Secure Token, Password less.)
- Authorization(Attribute-Based Access Control (ABAC) and AuthorizationRole-Based Access Control (RBAC) and AuthorizationRelationship-Based Access Control (ReBAC) and Authorization)
- New technology and security services