The Identity and Access Management (IAM) team ensures secure and efficient access to VWT's IT resources, managing user identities and access across all systems.  We achieve this through the operation and continuous improvement of core IAM solutions, including Ping, Google Workspace, and Active Directory.  Our key objectives encompass:

• Reliable IAM Operations: Maintaining the stability and performance of our identity platforms, ensuring seamless access for all users.
• Streamlined Onboarding/Offboarding: Automating and optimizing user lifecycle management processes, partnering closely with Human Resources to ensure smooth onboarding and secure offboarding procedures.
• IAM Project Delivery: Executing projects that enhance our IAM capabilities, such as implementing new security features, improving automation, and integrating with new applications.
• Collaboration and Security: Working closely with security, application teams, and Infrastructure DevOps to ensure that access controls are robust, compliant, and aligned with business needs.

Your duties and responsibilities will be:

• Operational Management: Oversee the day-to-day operations of identity and access management systems

• User Lifecycle Management: Manage user accounts, permissions, and access across different systems

• Access Control: Implement and enforce access control policies and procedures

• Authentication and Authorization: Manage authentication and authorization systems (Ping, Google)

• Directory Services: Manage Active Directory and other directory services (Google, Ping)

• Security and Compliance: Ensure compliance with security policies and regulations related to identity and access management

• Incident Response: Respond to and resolve incidents related to identity and access management

• Automation: Implement automation solutions for user provisioning, de-provisioning, and access management

• Team Leadership: Manage and mentor a team of identity and access management engineers

• Regional Collaboration: Partner with regional IT teams to ensure consistent and effective identity and access management practices. Coordination is key for successful project delivery and implementation

• Community Animation: Cultivate and animate the identity and access management community across regions, fostering open communication and knowledge exchange. This includes providing updates on incidents, changes to the IAM service catalog, and projects impacting or involving regional teams

• Documentation Management: Maintain comprehensive and up-to-date documentation for network infrastructure, processes, and operational procedures. Ensure documentation ownership and accuracy within the team.

We offer you the opportunity to join a Group whose goal is to become the benchmark company for ecological transformation! 🌿🌍

What are the advantages of joining us?

• Be part of a forward-thinking collaborative team who will focus on your future career and development both locally and internationally
• Possibility to be part of exciting projects outside of your daily work/ scope for your company
• We are committed to ensure you have the best experience possible
• Veolia is committed to a global social pact for its employees in all its geographic regions.

But also: 

• 25 days holiday plus bank holidays and 14 "RTT" days;
• Work from home policy max 2 days a week
• Your urban transport ticket totally refunded
• Company restaurant

Here at Veolia Water Technologies, we know that some applicants don't apply unless they think they tick all the boxes - but we are saying don't worry! We would much rather see your application than risk missing out on your potential!

As an inclusive company, Veolia is committed to diversity and gives equal consideration to all applications, without discrimination.

Technical Skills:

• Deep understanding of identity and access management concepts and technologies
• Hands-on experience with identity management solutions (Ping, Google, Active Directory)
• Experience with access control models and methodologies
• Core IAM Technologies: Deep understanding of identity and access management concepts and technologies, including hands-on experience with solutions like Ping, Google Workspace, and Active Directory
• Access Management: Expertise in Single Sign-On (SSO), Multi-Factor Authentication (MFA), Passwordless Authentication, and third-party identity integration. Experience with application onboarding processes
• Customer Identity and Access Management (CIAM): Knowledge of CIAM solutions, including FIDO2 Passkeys, personalized customer experiences, enhanced customer data security, and identity verification/proofing
• Identity-Centric Security: Familiarity with identity-based encryption, biometric authentication, and IAM for business partners
• Cloud Infrastructure Entitlements Management (CIEM): Understanding of CIEM principles and best practices
• Identity Threat Detection and Response (ITDR) and Security Operations Center (SOC): Knowledge of ITDR and SOC operations, especially as they relate to identity and access management
• Public Key Infrastructure (PKI): Experience with PKI concepts and implementation
• IAM Governance and Administration: Expertise in IAM program governance, identity orchestration, and Policy-Based Access Control (PBAC). Experience with Identity Governance and Administration (IAG) solutions
• Privileged Access Management (PAM): Deep understanding and experience with PAM principles and solutions, including session management, logging, just-in-time provisioning, password management, vaulting, and standing privileges
• Cloud IAM: Experience with cloud IAM migration, cloud security best practices, and IAM in hybrid IT environments
• Zero Trust Security: Knowledge of Zero Trust principles and implementation, including least privilege access control, micro-segmentation, continuous monitoring, and encryption
• Emerging IAM Trends: Familiarity with IAM considerations for IoT, API management, and DevSecOps
• Strong scripting and automation skills
• Ping Identity, SailPoint, Okta, CyberArk, One Identity
• Knowledge of ITIL framework and best practices
• Proven ability to contribute to RFP processes and evaluate vendor proposals
• Migration and Implementation: Experience managing the migration from a traditional network

Soft Skills:

• Strong troubleshooting and problem-solving skills
• Excellent communication and interpersonal skills
• Excellent English language proficiency (written and spoken): Crucial for seamless communication with global partners, including those in India, and the worldwide IT community
• 10 years experience managing and mentoring technical teams
• Demonstrated ability to effectively collaborate with external partners and internal teams

Qualifications:

• Bachelor's degree in Computer Science or related field

• 10+ years of experience in identity and access management

• Relevant industry certifications (CISSP, CISM, CCSP, CIAM, AWS Certified SysOps Administrator, AWS Certified Architect, GCP, Ping, SailPoint, Okta, CyberArk, CIPP/E, CRISC)