Identity Access Management (IDAM/IAM) Senior Consultant

Infosys Consulting is a globally renowned management consulting firm operating at the front-line of industry disruption. It is a mid-size player with an entrepreneurial spirit, working with market-leading brands across sectors. The parent organization, Infosys, is a top-5 IT brand experiencing rapid growth. The consulting business is annually recognized as one of the UK’s top firms by the Financial Times and Forbes for client innovations, cultural diversity, and dedicated training and career paths. Infosys is committed to fostering an inclusive work culture.

Essential Skills and Experience:

• Deep expertise in IAM, with hands-on experience designing and implementing IAM solutions, including cloud environments (AWS, Azure, or GCP).
• Proficient in securing identities, managing access controls, and protecting data, with solid understanding of modern cryptography, PKI, and IAM best practices.
• Comprehensive knowledge of emerging IAM technologies and trends, including Zero Trust architectures, DevSecOps, and microservices.
• Extensive experience in identity governance, access management, and advanced threat mitigation techniques.
• Expert-level understanding of IAM frameworks and regulations (e.g., ISO/IEC 27001/27002, NIST, NIS2, GDPR, PCI-DSS).
• Proven experience managing IAM projects, balancing security objectives with business and operational needs.
• Strong leadership skills, with experience leading and mentoring technical teams across diverse IAM disciplines.
• Experience with IAM automation and orchestration tools, including integration of IAM tools in CI/CD pipelines (DevSecOps).
• Excellent understanding of cloud IAM architecture, particularly for securing hybrid and multi-cloud environments and cloud-native applications.
• Strong knowledge of IAM incident management and response strategies, with experience supporting SOC teams in investigating IAM-related security breaches and coordinating responses.

Security Experience:

• Relevant undergrad or postgrad degree (Infosec, Cyber Security, IT Security).
• 1-5+ years in cyber security/infosec.
• Broad business skill set including stakeholder management, problem-solving, and resilience.
• Experience in gathering, validating, synthesizing, documenting, and communicating data and information for various audiences.
• Excellent interpersonal skills and strong written and verbal communication skills in the country’s official language(s) (C2 proficiency) and English (C2 proficiency), with project-related mobility/willingness to travel.

Qualifications:

• Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) certification.
• Additional certifications in IAM or cloud security (e.g., AWS Certified Security Specialty, Azure Security Engineer, Certified Identity and Access Manager (CIAM)).
• Experience in pre-sales and bid writing for IAM engagements.
• Experience leading IAM programs in complex environments across sectors such as Financial Services, Energy & Utilities, Consumer, Retail, and Logistics.
• Expertise in IAM standards, policies, and regulatory requirements.

Personal Attributes:

• Proactive problem-solver with passion for IAM and commitment to excellence.
• Strong ability to communicate complex IAM concepts to technical and non-technical stakeholders.
• Mentor and leader who can inspire, motivate, and guide a team of IAM specialists.
• Able to handle pressure in high-stakes situations, focusing on delivering secure and effective IAM solutions.
• Customer-focused with proven ability to build relationships and trust across stakeholders.
• Flexible and adaptable, thriving in fast-paced, dynamic environments.

• Collaborate with senior stakeholders and technical teams to identify and address IAM requirements across multiple sectors.
• Design and implement robust IAM solutions, ensuring systems are secure, scalable, and compliant with regulatory frameworks.
• Develop and maintain the strategic vision and technical roadmap for IAM, ensuring alignment with evolving technologies, business needs, and industry best practices.
• Serve as the technical authority on all IAM decisions, providing guidance and escalation support for lower-level IAM specialists.
• Implement and manage identity governance and administration (IGA) solutions, including user provisioning, role-based access control (RBAC), and access certification.
• Proactively assess and mitigate risks related to identity and access management by applying risk-based methodologies and providing expert advice on trade-offs between security, cost, and performance.
• Ensure integration of IAM considerations into broader enterprise architecture, influencing organizational policies, technology selection, and development methodologies.
• Drive adoption of Secure by Design principles, ensuring IAM is integral to the system development lifecycle from inception through deployment.
• Perform access reviews, identity lifecycle management, and security testing across IAM solutions, guiding teams on best practices for secure design and development.
• Engage with industry bodies and regulatory frameworks to ensure alignment with security standards such as ISO/IEC 27001, NIST, and GDPR.
• Conduct technical reviews of third-party IAM solutions and vendor offerings, ensuring external products meet internal security standards.
• Act as a subject matter expert (SME) in IAM technologies, advising on advanced areas such as multi-factor authentication (MFA), single sign-on (SSO), and privileged access management (PAM).
• Monitor and analyse emerging IAM threats, vulnerabilities, and risks, ensuring IAM solutions evolve to counter new attack vectors and threats.