IAM Architect H​/F

Sigma Suisse is partnering with a large international organisation operating in a highly regulated environment to recruit a Senior IAM Lead
.

• Define and own the enterprise-wide Identity & Access Management (IAM) strategy and roadmap
  , ensuring alignment with business objectives and regulatory requirements.
• Design, implement, and maintain secure, scalable and resilient IAM architectures across on-premises, hybrid and cloud environments.
• Establish and enforce a robust IAM governance framework
  , including identity lifecycle management (Joiner/Mover/Leaver), access reviews, segregation of duties (SoD), and privileged access management.
• Oversee the implementation and optimization of Identity Providers (IdP), SSO, MFA, PAM and conditional access solutions
  .
• Ensure secure integration of IAM controls across Microsoft Entra  (Azure AD), Active Directory, cloud platforms, business applications and infrastructure systems
  .
• Lead architectural design for authentication and authorization models (RBAC / ABAC), ensuring alignment with Zero Trust principles.
• Monitor and assess IAM-related risks, ensuring compliance with applicable standards and internal security policies.
• Collaborate closely with Cyber Security, Infrastructure, Risk and Compliance teams to ensure consistent implementation of identity controls.
• Contribute to security incident response efforts related to identity compromise, privilege escalation, or unauthorized access.
• Drive continuous improvement initiatives including automation, identity analytics, access certification campaigns and privileged session monitoring.
• Develop and maintain IAM documentation, standards, operating procedures and architectural blueprints.

• Minimum 8+ years of experience in Identity & Access Management, cybersecurity, or enterprise security architecture.
• Proven experience in defining and leading IAM strategy within complex, regulated environments.
• Strong technical expertise in Microsoft Entra  / Azure AD
• Active Directory (on-prem & hybrid)
• Privileged Access Management (Cyber Ark, Beyond Trust or equivalent)
• Conditional Access policies
• Identity Governance & Administration (IGA)
• Role-Based and Attribute-Based Access Control models
• Solid understanding of modern security frameworks and compliance standards (ISO 27001, NIST, CIS Controls, regulatory requirements).
• Experience integrating IAM with SIEM platforms, monitoring tools and incident response processes.
• Strong knowledge of risk management, governance, and access control best practices.
• Experience working in hybrid cloud environments and supporting enterprise-scale identity infrastructures.
• Relevant certifications such as CISSP, CISM, Microsoft Identity certifications, or equivalent are considered a plus.
• Excellent analytical skills, strong stakeholder management capabilities, and the ability to operate in high-pressure environments.