Global IT Security Expert IAM
Overview of the Role
As the Global IT Security Expert – IAM, you will lead the development and operation of our global Identity and Access Management program. You will own IAM strategy, governance, and technical implementation, with a strong focus on SailPoint, helping ensure secure and compliant access management across a global enterprise.
Main Responsibilities
- Own and drive the global IAM strategy, roadmap, and governance framework.
- Lead the implementation, configuration, and ongoing optimization of the SailPoint IGA platform.
- Design and maintain identity lifecycle processes, including Joiner, Mover, Leaver, and Rehire workflows.
- Develop and improve access governance controls, including RBAC, access certifications, SoD controls, and least-privilege principles.
- Design and manage integrations between SailPoint and enterprise applications, directories, cloud services, and business systems.
- Lead application onboarding to the IAM ecosystem, including access modelling and entitlement management.
- Partner with external vendors and implementation partners, ensuring quality delivery and knowledge transfer.
- Monitor IAM performance, access risks, compliance requirements, and audit readiness.
- Drive automation, process improvements, and adoption of IAM best practices across the organization.
- Provide IAM expertise and support for global IT and business projects.
- Contribute to broader cybersecurity initiatives, including incident response, vulnerability management, security awareness, DLP, and GRC activities.
- Act as the organization's subject matter expert and escalation point for identity and access management.
Requirements
- 8+ years of experience in Identity and Access Management, Identity Governance, or Cybersecurity.
- Proven hands-on experience with SailPoint IdentityIQ and/or IdentityNow.
- Strong knowledge of IAM architecture, identity lifecycle management, access governance, and role-based access models.
- Experience with Active Directory, Microsoft Entra ID (Azure AD), and enterprise application integrations.
- Good understanding of authentication and authorization technologies, including SAML, OAuth, OIDC, LDAP, SSO, and MFA.
- Experience working with APIs, connectors, and system integrations.
- Strong stakeholder management, communication, and problem-solving skills.
- Ability to work independently and collaborate effectively in a global environment.
- Bachelor's degree in IT, Computer Science, Cybersecurity, or a related field.
- SailPoint, IAM/IGA, CISSP, or CISM certifications will be an advantage.
- Fluent English (C1/C2).
We Offer
- Opportunity to shape and develop a global IAM program in a growing international organization.
- Meaningful impact on the company's cybersecurity strategy and security transformation initiatives.
- Professional growth opportunities, including exposure to global projects and modern security technologies.
- Annual bonus.
- Private medical care and insurance package (subject to local market offering).
- Flexible hybrid work model, with office and remote work arrangements depending on the country and location of employment.
- Collaboration with global teams across multiple regions and functions.
- Modern, supportive, and collaborative working environment.
- Employment in a fast-growing global company recognized among the world's leading packaging manufacturers.
Please note: Candidates should be willing to align part of their working schedule with European business hours. This may require evening working hours in India, early morning availability in Colombia, and standard business hours in Poland.
If you are a current CANPACK employee, please apply through your Workday account.
CANPACK Group is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, colour, religion, age, sex, sexual orientation, gender identity, national origin, disability, or any other characteristic protected by law or not related to job requirements, unless such distinction is required by law.