IAM expert

Identity & Access Management (IAM) / Privileged Access Management (PAM) Lead

Location:
Germany (Hybrid/On-site depending on candidate preference)

I'm currently supporting a well-established insurance organisation in Germany that is undergoing a strategic modernisation of its security landscape. They are seeking an experienced IAM/PAM professional to take ownership of their identity, access and privilege management frameworks, while also playing a key role in shaping the organisation's future security strategy.

This is a great opportunity for someone who wants to drive meaningful change within a supportive, transparent and forward-thinking environment.

About the Role

As the IAM/PAM Lead, you will be responsible for overseeing, developing and continuously improving all aspects of the organisation's Identity & Access Management (IAM) and Privileged Access Management (PAM) functions. Your responsibilities will include:

• Full responsibility for the advancement and strategic development of IAM and PAM processes.
• Reviewing and monitoring adherence to IAM/PAM policies and procedures across business and operational teams.
• Supporting senior leadership in defining and refining the organisation's long-term IAM strategy.
• Coordinating and conducting regular controls such as access recertifications and process reviews.
• Supporting both internal and external audits.
• Delivering training and awareness initiatives for stakeholders.
• Aligning the IAM architecture with relevant internal stakeholders and technology teams.

Candidate Profile

You will be a strong fit for this role if you bring:

• A degree in (Business) Informatics, Information Management, Information Security or a comparable qualification.
• Professional experience in information security.
• Practical experience in risk management, project management, and managing budgets/resources.
• Strong understanding of IAM concepts such as authentication, authorisation, user lifecycle management, PAM, SSO, etc.
• Deep knowledge of IAM industry standards and methodologies (e.g., ISO 2700x, NIST).
• Strong familiarity with regulatory and legal requirements relevant to insurance or banking (e.g., KWG, MaRisk BA, BAIT, VAIT, DORA).
• Hands-on experience with established IAM/PAM solutions such as OneIdentity, SailPoint, ForgeRock, Omada, Okta, CyberArk, BeyondTrust or Delinea.
• Solid understanding of access management and information security processes and frameworks.
• Analytical and conceptual strengths, along with proven project experience.
• Problem-solving skills and the ability to de-escalate complex issues effectively.