Identity and Access Management (IAM) Officer

SECURITY CLEARANCE REQUIRED

Duties:

• Support the development of an IAM Policy and related Enterprise Directive;
• Advise on the revision of the PKI Management Authority (NPMA)mandate and develop a strategy towards an IAM-focused perspective in supportof the Enterprise;
• Support the drafting and implementation of IAM Policy for standard CIS andCloud-based CIS solutions;
• Support the establishment of a Enterprise IAM Board;
• Support the implementation of IAM-based technical solutions across the NATOEnterprise, including Multi-Factor Authentication (MFA);
• Coordinate and support risk-management activities and analysis in the contextof IAM, directly coordinating plans and activities with the relevant stakeholders,and assessing and monitoring related results;
• Lead coordination activities in support of the implementation of specific projects;
• Support the execution of High-Level Risk Analysis (HLRA) to be used in supportof risk-informed decisions;
• Assist and contribute to the development and/or updating of OCIO’s Directives;
• Provide support to various CIS-related activities, as directed by the Head ofEnterprise Risk Management Section.

Requirements:

• The candidate must have knowledge and a multi-year experience in the realmof Identity and Access Management (IAM) at Policy level. More specifically, theincumbent must show a solid knowledge and experience in the developmentand revision of Directives in Identity and Access Management;
• The incumbent must have experience in the implementation of IAM Policy forstatic CIS and Cloud-based CIS solutions;
• The incumbent must have a solid experience in implementing technicalsolutions for IAM, including MFA;
• The candidate must have professional experience in Project Managementand/or Service Management, coordinating work and activities with both internaland external stakeholders to support service/project delivery for theirorganisation.
• The candidate must have solid experience in managing a team in support ofproject delivery.
• The candidate must have a SECRET Security Clearance.
• The candidate must have excellent English writing and speaking skills, and theability to brief their work in English.
• A previous practical experience in administrating a PKI Certification Authority ishighly desirable.
• A practical experience in auditing or inspecting PKIs is highly desirable.
• It is desirable the candidate has familiarity and experience with cryptographyand cryptographic key management knowledge.