Technical Lead - Access Management

The Global Digital Identity Services (GDIS) team designs and manages the identification, authentication and authorization services.

Within the GDIS team, the AM Technical Lead is responsible for technical management and evolution of the Access Management (AM) platform (B2E).

He/she is responsible for driving the operational maintenance on the AM platform, major configuration changes, and supporting entities onboarding within the AM platform.

He/she is also responsible for designing and maintaining the security level and liaising with Security Architects.

Roles & Responsibilities:

• Promote AM solution (IDP, SSO, MFA, PAM) within Sodexo organization, fostering the adoption and helping our teams fully leveraging AM capabilities
• Execute Roll-out plan with countries and global solutions
• Manage the AM Build & work closely with the Ops manager for the Run
• Provide expertise on AM technologies and more specially on Entra ID and OneLogin,ADFS, PKI (ATOS) and PAM (study ongoing).
• Produce KPIs and update/maintain dashboards regarding the roll-out of AM platform (MFA adoption, federated apps), the health of the solution and the AM roadmap.
• Accompany local IT teams (located in 150 entities / 70 countries) to deliver digital employee services to more than 420 000 employees (currently 250 000 digital identities / 150 000 identities managed by IGA tool)
• Guarantee perfect synchronization with other global teams (architecture, digital assets, platforms …)
• Interface with IT security, Compliance, Audit and GDPR teams
• to coordinate related policy and procedures
• to implement provided directives
• to provide all appropriate information
• Enforce architecture principles and objectives to secure project success and sustainability of the application in the long run

Required Skills:

• Overall 10+ years’ experience in IT, and minimum 5 years working in IDP/MFA project
• Proven expertise in AM at large scale with multi-country environment
• Experience of international environments and matrix organizations
• Technology:
• Significant expertise: Entra ID (Tenant management, AADC, App management and federation, MFA, Conditional Accesses, Identity management), Azure Automation (Power automate…), PowerShell
• Good knowledge and expertise: Active Directory, PKI, PAM, ADFS
• Knowledge: O365, Intune
• Nice to have:
• PKI: ATOS PKI / Berrycert CLM
• IDP: OneLogin
• Excellent reporting and presentation skills
• Can-do attitude and service-oriented (client focus)
• Positive mindset, structured thinking and focused on finding solutions
• Cultivates innovation: Creates new and better ways for the organization to be successful
• Ability to work independently and manage multiple tasks simultaneously
• Rigorous, organized, transparent and team player
• Good communication skills and ability to adapt communication based on the audience (C-level, business, technical team)

Fluent in English, French is a plus