Lead Architect IAM Transformation

at Riverflex
πŸ‡³πŸ‡± Netherlands - Remote
πŸ’» Software Development🟣 Senior

Job description

Description

Location: Amsterdam / Remote

Contract Type: Interim position

Start Date: September 2025 – to be agreed

Duration: Until December 29, 2025 (with possible extension)

About the Program

A major European organisation is driving one of its most business-critical digital initiatives: the transformation of its identity and access management (IAM) landscape. The program aims to modernize, standardize, and secure IAM across multiple markets by implementing a centralized platform based on Microsoft Entra ID and related technologies.

To support this transformation, we are seeking an experienced and visionary Lead Architect to define the future-state IAM architecture, provide strategic technical guidance, and ensure architectural consistency across all transformation initiatives.

About the Role

As Lead Architect – IAM Transformation, you will be responsible for defining and governing the end-to-end IAM architecture, ensuring alignment with enterprise architecture principles and balancing both business and security needs. You will guide the design and integration of IAM capabilities (identity lifecycle management, authentication, authorization, privileged access) into the transformed IT landscape and lead the transition from legacy solutions to the new IAM target state.

Key Responsibilities

  • Own and maintain the IAM architectural vision and roadmap in alignment with global IAM strategies.

  • Define the target architecture and principles for Microsoft Entra ID, IGA (Identity Governance and Administration), PAM (Privileged Access Management), and access provisioning.

  • Provide architectural leadership across workstreams and ensure technical consistency in designs, integrations, and implementations.

  • Design solutions for replacing legacy custom-based and third-party authorization mechanisms.

  • Develop migration strategies for applications currently managed through legacy identity services.

  • Define models for secure and compliant use of generic (non-personal) accounts across the application landscape.

  • Map legacy IAM components (custom APIs, sync jobs, role logic, web services, database jobs) into sustainable constructs.

  • Translate entitlement logic into standardized workflows, lifecycle events, and PAM entitlements.

  • Establish connector performance SLOs (latency, throughput, timeout/retry budgets) and certify designs.

  • Set guardrails for IGA custom connectors (Java/Beanshell, PowerShell, SCIM, SAP JCo, REST).

  • Oversee provisioning workflows, access request logic, and birthright provisioning.

  • Define CI/CD standards (Azure DevOps, GitLab) and promote secure-by-design practices.

  • Collaborate with transformation leaders, program managers, security architects, engineers, and business stakeholders.

  • Support teams in making architectural decisions aligned with future-state models.

  • Lead the definition of IAM solution blueprints, patterns, and guardrails for scalable, secure implementations.

  • Review and validate solution designs from internal teams and external vendors.

  • Proactively identify architectural risks and dependencies and define mitigation strategies.

  • Contribute to architecture governance processes, documentation, and design standards.

  • Author and govern attribute contracts with data-owner sign-off and maintain a published catalogue.

  • Define reconciliation/fallback plans and graceful-degradation runbooks with acceptance tests.

What We Offer

  • A leadership role within a large-scale digital transformation program.

  • The opportunity to define and implement critical identity and access capabilities.

  • A collaborative, cross-functional environment with a focus on innovation and best practice.

  • Flexible remote working setup.

  • Competitive remuneration based on experience and expertise.

Your Profile

  • Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.

  • 8+ years of IT architecture experience, with at least 5 years focused on IAM.

  • Proven track record designing and implementing enterprise IAM solutions, including Azure Entra ID, IGA tools (e.g., SailPoint, Saviynt), PAM (e.g., CyberArk), and SSO/MFA frameworks.

  • Strong knowledge of enterprise architecture methodologies (e.g., TOGAF), Zero Trust, and security best practices.

  • Experience leading complex discussions with both business and technical stakeholders.

  • Excellent communication, influencing, and stakeholder management skills.

  • Fluent in English; knowledge of an additional European language is an advantage.

Share this job:
Please let Riverflex know you found this job on Remote First Jobs πŸ™

Similar Remote Jobs

Latest Jobs at Riverflex

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service πŸ™

Apply