Primary Skills

As an IAM Lead within Infrastructure Security Services, you will provide endtoend accountability and strategic leadership for Capgeminis enterprise Identity Security landscape. Covering the full IAM scope from IGA, AM, and PAM. Toolset including RSA IGL, Airflow, Ping Identity (SSO, MFA, Authentication), CyberArk PAM (Server, application and cloud).

This is a global leadership position with responsibility for businesscritical identity services, overseeing large globally distributed teams (50+ resources), directing strategic vendor partnerships, driving the continuous evolution and adoption of modern IAM and PAM technologies across onpremises, cloud, and SaaS environments.

Operating at senior stakeholder level within a multinational organization, you will ensure the availability, security, regulatory compliance and operational resilience of identity services that are fundamental to Capgeminis core business operations and digital trust.Identity Security & Risk Management.

Act as the enterprise authority on Identity Security, covering human and nonhuman identities, privileged access, and advanced identity threats.

Proactively identify, assess, communicate, and mitigate identityrelated risks across onprem, cloud and SaaS environments.

Ensure consistent alignment with Zero Trust principles, regulatory obligations and security best practices.

Leadership & People Management

• Lead and develop large, globally distributed teams (50+ resources) across IAM and PAM domains.
• Build succession plans, strengthen capability maturity and develop future leaders.
• Foster a culture of accountability, operational excellence and continuous improvement.

Governance, Stakeholders & Reporting

• Engage and influence senior business, security, audit and IT stakeholders globally.
• Ensure compliance with internal governance, audits and external regulatory requirements.
• Own SLAs, KPIs, executive reporting, and dashboards, driving automation and scalability.
• Establish and maintain enterprise standards, governance frameworks and operating models for IAM.
• Accountable for financial performance including subscription management and cost optimization.
• Drive operational excellence, continuous improvement and stability across services.
• Act as an escalation point for Business escalations and compliance issues.

Service & Operational Ownership

• Provide endtoend ownership of global IAM platforms, including RSA IGA/ILM, Ping Identity (SSO, MFA, Federation) and CyberArk PAM.
• Ensure availability, performance, security and resilience of identity services at global scale.
• Govern 24×7 operations, major incidents, problem management and continuous service improvement for businesscritical systems.
• Own Disaster Recovery strategy, testing and execution across IAM and PAM platforms.
• Drive innovation and transformation of services.

Our Ideal Candidate

• 10+ years of experience delivering and leading Enterprise Identity & Access Management (IAM) and Privileged Access Management (PAM) at scale.
• Strong people management skills with a proven track record of leading large, globally distributed teams (50+ resources) within complex, multinational environments.
• Strong hands on and architectural expertise across enterprise identity platforms, including:
• RSA Identity Lifecycle Management (IGA / ILM)
• Ping Identity (SSO, MFA, Federation)
• CyberArk Privileged Access Management
• Cloud and SaaS identity integrations, or equivalent enterprise technologies
• Deep understanding of identity security risks, including non human identities, privileged access exposures, and access governance challenges.
• Demonstrated experience in operating business critical services, always on , with strong focus on resilience, availability and Disaster Recovery (DR).
• Excellent stakeholder management, decision making and executive level communication capabilities.
• Demonstrable experience managing global vendors and SaaS offerings.
• Strong proficiency in English, both written and verbal.
• Industry certifications in IT Security or related standards are a strong advantage.
• Experience supporting M&A integrations and/or transformations is an added advantage.
• A background in (security) enterprise architecture is an added advantage.