IAM Role Modeler Consultant

We are seeking a senior IAM Role Modeler Consultant to serve as a bridge between business intent and technical enforcement for a major banking transformation. In this high-impact role, you will lead the charge in designing a secure, scalable, and audit-ready Role-Based Access Control (RBAC) framework. The client is from enterprise Banking industry.

Your goal is to transform complex business functions into standardized access roles that satisfy the strict demands of a regulated financial environment while adhering to the principles of Least Privilege and Segregation of Duties (SoD).

What You’ll Do

• Architect Access: Design and maintain robust RBAC models across on-premises, cloud (Entra ID), and hybrid landscapes.
• Role & Privilege Mining: Analyze existing access patterns to rationalize and consolidate them into a clean, target state.
• Stakeholder Facilitation: Lead workshops with Business Owners, Security Teams, and Engineers to map real-world job functions to technical entitlements.
• Risk & Compliance: Define SoD rules, identify "toxic combinations," and classify role risks to ensure the bank remains audit-ready.
• Documentation & Governance: Create defensible role catalogues and ownership records that provide 100% traceability from business requirement to system permission.

Your Toolkit

The Essentials:

• 5+ years in IAM with a deep focus on access governance and RBAC.
• 3+ years of hands-on Role Modeling, including mapping business roles to technical entitlements.
• Analytical Expertise: Proven ability in role/privilege mining and data rationalization.
• Regulated Sector Experience: A track record of delivering access models within Banking or similarly controlled industries.
• Technical Proficiency: Solid grasp of Active Directory, Microsoft Entra ID, and Cloud IAM.
• Communication: Fluent English and the ability to challenge the status quo to bring structure to "messy" entitlement landscapes.

The "Bonus" Skills:

• Experience with IGA or PAM platforms.
• Familiarity with ECB regulations and GDPR requirements.
• Knowledge of Zero Trust architecture and Joiner-Mover-Leaver (JML) automation.
• Background in large-scale enterprise transformation or management consulting.

The Mindset

We are looking for a consultant who is willing to:

• Take Ownership: Act as the primary authority for RBAC within a visible, strategic programme.
• Be Pragmatic: Balance agile execution with the structured documentation required by a Tier-1 bank.
• Travel Locally: Join the team for occasional in-person strategic workshops across the Baltics (travel covered).
• Bridge the Gap: Translate a "Business Activity" into a "Technical Role" that is both compliant and fit for automation.