Want to join a fast-moving company, work among convivial teams, and take part in the global growth strategy of one of the most prestigious and comprehensive portfolios in the wine & spirits industry? We are looking for Global Tech - Senior Identity & Access Management Specialist (IAM) ! You will be based at The Island, our office in central Paris
In this role contribute to designing and implementing robust identity solutions while driving technical excellence across the team.
The Senior IAM Expert reports directly to the Security Engineering Chapter Lead and will work with Security Operations Products.
It is a Senior role in the Chapter which directly reports to the Security Engineering Chapter Lead and will be allocated to Security Operations Product squads under Security Product Portfolio.
As Senior Chapter member he / she will be asked to contribute to the definition of global standards, best practices and ways of working around Security.
Impact You'll Make
As our Senior IAM Expert, you'll shape how our organization manages digital identities and access controls, directly impacting our security posture and operational efficiency. Your architectural decisions will establish the foundation for secure, scalable identity services that enable business growth while protecting critical assets.
Core Responsibilities
Support Product Owner to define and execute the strategic vision for Identity and Access Management
Architect, implement, and optimize IAM solutions across CyberArk, Entra ID (formerly Azure AD), and Active Directory environments
Oversee technical activities including solution design, support PO on implementation planning, and support technical roadmap development
Identify and resolve technical roadblocks, assessing their impact
Provide technical leadership to the IAM team, mentoring junior staff and establishing best practices
Evaluate new IAM technologies and approaches to continuously improve our security posture and tackle obsolescence
L3 Troubleshooting
If you recognize yourself in the description below, don’t wait to apply!
10+ years of experience in Identity and Access Management with deep expertise in CyberArk, Entra ID, and Active Directory
Proven experience architecting enterprise-wide IAM solutions that balance security, usability
Strong understanding of identity governance, access management and privileged access management
Knowledge and understanding of zero trust principles
Demonstrated track records in implementing privileged access management (PAM) solutions using CyberArk or similar tools, SSO MFA for Entra ID, Identity governance using modern tools (SAVIYNT, SailPoint…), Tiering model, Privileged Access Workstations, Passwordless
Demonstrated ability to translate business requirements into technical solutions
Experience leading technical teams and driving complex projects to completion
Understanding of compliance concepts
Technical Skills
CyberArk or similar Platform: Administration, policy design, and privileged access workflows
Microsoft Entra ID: Conditional Access, MFA, Identity Protection, PIM, and application integration
Active Directory: Domain design, group policies, permission models, and security
Federation Technologies: SAML, OAuth, OIDC, and cross-domain authentication
IAM Concepts: SSO, JIT/JEA, RBAC, least privilege, authentication protocols
PKI: basic knowledge on Infrastructure and certificate management
Mindset & Approach
Architectural thinking with ability to design holistic solutions considering security, scalability, and business needs
Proactive problem-solver who can identify potential issues before they impact operations
Strategic thinker who can connect technical decisions to business outcomes
Collaborative leader who can influence without authority across technical and business teams
Focus on continuous improvement and delivery of innovations in IAM practices