Skip to content

Lead IAM Architect – IAM Transformation [Interim]

  • Hybrid
    • Amsterdam

Job description

Job Title: Lead IAM Architect – IAM Transformation
Location: (Hybrid)
Engagement: Full-time, 5 days a week

Contract duration: Until December 29, 2025 (with possible extension)

Start date: September 2025 (to be agreed)

About the IAM Transformation Program

A major European retail group is driving a significant Identity & Access Management (IAM) transformation across its Belgium and Southeastern Europe (BeSEE) operations, including Belgium, Serbia, Greece, and Romania. This initiative is one of the region’s most critical digital transformations, aiming to modernize, standardize, and secure IAM by introducing a centralized platform based on Microsoft Entra ID and related technologies.

To lead this strategic change, we are seeking an experienced Lead IAM Architect to define the future-state architecture, provide technical leadership, and ensure cohesion across all IAM initiatives in the region.

 

About the Role

As Lead IAM Architect , you will define and govern the region’s end-to-end IAM architecture. This includes shaping the target state for key IAM capabilities such as identity lifecycle, authentication, authorization, and privileged access. You’ll provide strategic and technical leadership across transformation workstreams and steer the move from legacy systems to a secure, scalable IAM platform.

 

Key Responsibilities

  • Own the IAM architectural vision and roadmap for the BeSEE region in line with global strategies

  • Define target architecture and principles for:

    • Microsoft Entra ID

    • Identity Governance & Administration (IGA)

    • Privileged Access Management (PAM)

    • Access provisioning

  • Guide architecture across all IAM initiatives, ensuring consistency and quality

  • Lead replacement of custom IGA-based authorization mechanisms with sustainable solutions

  • Define secure, policy-compliant models for managing generic (non-personal) accounts

  • Map legacy components (custom APIs, sync jobs, role logic, etc.) to new IAM constructs

  • Translate entitlement logic into scalable IGA workflows and entitlements

  • Establish connector performance SLOs and govern custom connector implementations

  • Promote secure-by-design standards and CI/CD practices (Azure DevOps, GitLab)

  • Collaborate with cross-functional teams: Transformation Office, Program Managers, Security, Engineering, and Business Leads

  • Define and review IAM solution blueprints, design standards, and integration principles

  • Support architecture governance and ensure technical alignment across initiatives

  • Identify and mitigate architectural risks and dependencies

  • Own documentation including technical roadmaps, attribute contracts, fallback plans, and performance runbooks

 

What We Offer

  • A senior leadership role in a major digital transformation initiative

  • Influence over the definition and execution of regional IAM strategy

  • Collaboration with a cross-functional team of experts

  • Remote work setup with flexibility

  • Competitive compensation aligned with experience and role scope

 

Your Profile

  • Bachelor’s or Master’s degree in Computer Science, Information Security, or similar

  • 8+ years in IT architecture, with 5+ years in IAM

  • Strong experience with enterprise IAM platforms:

    • Microsoft Entra ID (Azure AD)

    • IGA (e.g., SailPoint, Saviynt)

    • PAM (e.g., CyberArk)

    • SSO/MFA frameworks

  • Deep knowledge of enterprise architecture methodologies (e.g., TOGAF), Zero Trust, and IAM best practices

  • Proven ability to lead complex technical discussions and influence decision-making

  • Excellent communication and stakeholder management skills

  • Fluent in English; Dutch or French is a plus

or

Riverflex logoHomepage