IAM Lead

JOB DESCRIPTION

Responsibilities

1. Active Directory & Infrastructure Management

● Manage, maintain, upgrade, and deploy Active Directory environments.

● Perform schema upgrades and AD server OS upgrades.

● Administer AD sites, services, and subnet configurations.

● Add/remove domain controllers and manage domain infrastructure.

● Manage DNS registrations and domain configurations.

● Handle server configurations, local settings, and domain join operations.

● Monitor vendor patch releases and ensure timely patching and compliance.

2. Identity Data Aggregation & Reconciliation

● Authoritative Sources:

● Onboard and integrate authoritative identity sources.

● Reconcile identities and ensure data integrity.

● Identify and remediate aggregation issues.

● Detect and resolve users without assigned managers.

● Application Sources:

● Onboard application sources and integrate identity data.

● Reconcile accounts and entitlements

● Identify and remediate orphaned and dormant accounts.

● Ensure data consistency across systems.

3. Identity Lifecycle Management

● Manage end-to-end Joiner-Mover-Leaver (JML) processes.

● Process automated and manual lifecycle events.

● Ensure immediate suspension/termination for critical cases.

● Maintain compliance with organizational policies and audit standards.

4. Access Management & Provisioning

● Manage automated and manual access requests.

● Provision/deprovision accounts (AD, Azure AD, applications).

● Manage service accounts and privileged identities.

● Handle password resets, account unlocks, and user status changes.

● Perform connector-based and manual provisioning.

● Identify and resolve provisioning failures.

5. Identity Governance & Compliance

● Maintain roles, access profiles, and entitlement structures.

● Monitor and remediate Segregation of Duties violations.

● Conduct access certification campaigns (manual & automated).

● Support audit, risk, and compliance requirements.

● Ensure adherence to ITSM processes, SLA, and RACI frameworks.

6. Governance & Process Ownership

● Define, maintain, and enforce IAM governance processes.

● Ensure proper escalation, approval, and workflow adherence.

● Align IAM operations with ITIL/ITSM best practices.

● Track SLA performance and service delivery metrics.

7. Azure AD / Entra ID & Modern Identity

● Manage Entra ID Connect sync and AD provisioning services.

● Support application registrations as per SOP.

● Oversee conditional access policies implementation.

● Ensure identity security and zero-trust alignment.

8. Operational IAM Activities

● Perform user account management aligned with policies:

○ Create, modify, disable, and delete accounts

○ Manage group memberships

○ Handle role changes and contractor lifecycle

● Manage privileged access accounts (PAM/PIM alignment).

● Support Power BI and Power Platform access management.

9. GPO & Infrastructure Support

● Define and manage Group Policy Objects (GPOs).

● Ensure compliance with change management processes.

● Support secure configuration and enforcement.

10. Leadership & People Management

● Lead and manage the IAM team ensuring clear ownership and accountability.

● Drive team performance through KPIs, SLA adherence, and continuous

improvement initiatives.

● Mentor and develop team members through training, skill development, and

knowledge transfer.

● Ensure resource planning, capacity management, and optimal utilization.

● Establish a culture of process discipline, audit readiness, and operational

excellence.

● Act as escalation point for critical IAM incidents and delivery challenges.

11. Vendor Management

● Collaborate with Microsoft and third-party vendors for issue resolution.

● Act as primary escalation point for IAM issues.

● Drive continuous improvement and automation initiatives.

12. Stakeholder Management

● Act as the primary liaison between business, client (IsDB), and technical teams.

● Drive governance forums (WSR/MSR), providing clear updates on IAM

performance, risks, and improvements.

● Ensure alignment with client expectations, contractual deliverables, and SOW

commitments.

● Collaborate with Infra, security, audit, compliance, and application owners.

● Manage vendor relationships (Microsoft, third-party tools) for issue resolution and

enhancements.

● Drive structured communication and enforce adherence to escalation and

governance protocols.

13. Documentation & Compliance

● Develop and maintain SOPs, runbooks, and design documents.

● Ensure documentation is audit-ready and aligned with standards.

● Support internal/external audits and governance reviews.

Qualifications:

● Bachelor's degree in IT or related field

● 10+ years of IT experience with strong IAM focus

● Certifications preferred:

1. Microsoft Azure / Security certifications

2. ITIL

3. CISSP / IAM-related certifications (preferred)

● Knowledge in Active Directory & Azure AD (Entra ID), IAM Tools

● Identity Governance tools (e.g., SailPoint, etc.)

● ITSM/ITIL process alignment

● Strong understanding of IAM lifecycle and access controls

● Experience in SoD, audits, and compliance frameworks

● Stakeholder management and leadership skills

● Problem-solving and escalation management