Security Architect – Digital Identity | Group Tech &Dig Platforms | Corporate Services

Security Architect – Digital Identity | Group Tech & Dig Platforms | Corporate Services

Job Requisition : [[167007]]

As a vital member of the Security Architecture subfunction within the CISO office, the Security Architect – Digital Identity leads the development, implementation, and product management of Identity and Access Management solutions. In the rapidly evolving cybersecurity landscape, this role is crucial for protecting the organization from emerging risks and contributes to enhancing Cyber Security Resilience.

• Develop and maintain IAM target architecture and roadmap in collaboration with cross‑functional teams. Generate and uphold architecture and design artifacts for IAM, ensuring alignment with industry best practices and regulatory standards.
• Analyse and optimise license utilisation for cost‑effectiveness and top‑tier security, identifying ways to enhance yield per license and maximise return on security investment.
• Oversee IAM program management, including continuous improvement efforts, risk assessment and mitigation strategies in coordination with relevant stakeholders.
• Lead security architectures for major projects and programmes, perform security assessments, identify gaps in existing security architecture and recommend changes or improvements.
• Manage and contribute to the Architecture Governance Committee.
• Participate in risk reviews of new technologies and projects, ensuring they meet security requirements and standards.

• Collaborate with cross‑functional teams to design and develop comprehensive IAM solutions aligned with business requirements and security best practices.
• Lead the implementation of IAM systems, ensuring seamless integration and deployment by working closely with IT teams and vendors.
• Evaluate and select suitable IAM technologies and tools based on organisational needs.
• Develop and implement identity governance strategies and processes, covering user provisioning, role management, access request workflows and access certifications.
• Conduct thorough security architecture reviews to assess the effectiveness and adequacy of existing IAM solutions.
• Identify vulnerabilities and propose remediation actions to enhance the organisation’s security posture.
• Review, remediate and close both internal and external audit findings related to the IAM domain promptly, ensuring compliance and security integrity.
• Engage with business units, IT teams, compliance personnel and auditors to understand their IAM requirements and address any concerns.
• Serve as a subject‑matter expert, provide guidance on IAM‑related matters and maintain comprehensive documentation, including architecture diagrams, design specifications and implementation guidelines.
• Generate regular reports on IAM system performance, compliance and security metrics.

• Ensure that goals are achieved through effective leadership and management by setting individual objectives, monitoring performance, supporting staff development and motivating them to achieve their best work.

• Take responsibility for ensuring compliance requirements from CBUAE ADHIS & DOH and safeguarding sensitive data by implementing monitoring controls, monitoring data breaches and collaborating with BU, IT, legal and compliance teams to meet regulatory requirements.

• Bachelor’s or master’s degree in computer science, Information Security, or a related field.
• Overall, 15 years of experience in Information Technology, with recent involvement in architecture and solution design roles, preferably from a Consulting or System Integrator background.
• A minimum of 10 years dedicated to cybersecurity, with at least 5 years specifically focused on Security Architecture.
• Experience leading at least one large and complex, end‑to‑end Identity and Access Management (IAM) Program (e.g., 20 000 users, 100+ Business Applications including SAP).
• Excellent communication and presentation skills.
• Relevant certifications such as CISSP, CISM or IAM‑specific certifications (e.g., CIAM, SC‑300) are highly desirable.
• Proven track record of successfully managing large, complex IAM programmes, showcasing the ability to navigate intricate organisational landscapes and deliver impactful solutions.
• Strong knowledge of IAM concepts, principles and industry best practices.
• Experience with identity federation, Kerberos, single sign‑on (SSO), multi‑factor authentication (MFA) with Microsoft Entra , Privileged Access Management (PAM solution such as Cyber Ark), IGA and AM.
• Familiarity with IAM standards and protocols, including SAML, OAuth and OpenID Connect.
• Hands‑on implementation experience in one of the leading IGA solutions such as SailPoint, Saviynt or One Identity.
• Knowledge of SAP GRC and its integration with IGA is highly desirable.

You will be reporting to Enterprise Architect – Digital Security.