Identity Access Manager

At ISS Tech Team we are investing in innovative and integrated technological solutions for the Facility Management Industry with a tech team headquarted in Copenhagen, Warsaw and Porto. Our Porto tech hub is the first space dedicated specifically to software development and acts as a powerhouse where our employees test and implement products for over 40,000 clients and 350,000 placemakers around the world.

Are you ready to transform the Integrated Facility Management Industry? 

To become the technology leader in the Integrated Facility Management industry (FMS), we're developing digital components connected by AWS and Azure cloud solutions, we build up our machine learning models to make yet better use of our wealth of data, create predictions, and advanced AI for custom Large Language Models (LLM)! 

We take care of office buildings worldwide! These offices are increasingly equipped with technology, such as sensors and Internet of Things (IoT) devices, to support a more productive and seamless workday for employees. The purpose of our Porto innovation lab is to develop differentiating, high-quality, and scalable digital solutions for both the ISS enterprise and customers worldwide.

We implement devices all over the place to make the buildings we serve digital and friendly. 

Location: Porto, Portugal

Language: English

 

Be part of a project to make the world work better!

The Identity Access Manager will be part of the IAM Team and will be responsible for managing a team of engineers and Entra ID / Active Directory Services / SSO & Authentication technology stack in a large, complex, global environment. This role is crucial for the governance and operational support of authentication services, providing identity and access management (IAM) functions and systems that enable highly available and secure employee access to applications and data across the enterprise. The individual in this role will collaborate with various teams including Security Architecture, Information Security & Risk Management, Risk and Controls Group, and application team leaders to support and enforce overall Information Security policies and compliance.

What will you do:

• Ensure operational stability of mission-critical IAM systems including Active Directory, Entra ID, LDAP, single sign on (SSO), PKI, DNS and related supporting utilities and services.
• Evaluate Directory Services operational activities and solution designs to ensure they achieve stable, supportable outcomes.
• Partner with internal customers such as application owners and system owners to drive the adoption of directory services and ensure the services meet requirements.
• Support ISS customers with Customer Access Management and Identity Management (CIAM) integration, ensuring authentication/SSO integration and B2B/B2C solutions.
• Develop and drive evolution of identity systems, strategy and roadmap, improving operational maturity levels and adding capabilities based on current and anticipated customer needs.
• Lead decision making, planning, and execution of major upgrades and migrations.
• Lead a diverse on-site and remote team, providing guidance, mentorship, and performance evaluations.
• Serve as Directory Services subject matter expert and provide advisory and consulting services as needed.
• Manage employee development and performance.
• Ensure compliance with security policies and industry standards.

What makes you a great fit:

• 6+ years of experience in Directory Services area, like Active Directory, Azure Active Directory, Federation Services and others.
• Hands-on experience with CIAM solutions, preferably Microsoft Entra / Azure Active Directory B2B/B2C solution - architecture, design, configuration, testing, development, integration and deployment.
• Good understanding of concepts such as Identity Lifecycle, Access Governance, self-service, automated approval process, RBAC, ABAC, Attestation & Reconciliation, separation of duties and recertification.
• Extensive experience with various federation models including SAML, WS-Fed, OAuth, OpenID Connect.
• Experience in Public Key Infrastructure (PKI) including certificate authorities and certificate lifecycle management.
• Good understanding of external and internal DNS. 
• Strong leadership skills with experience managing a diverse team, providing mentorship, and conducting performance evaluations.
• Ability to drive decision making, planning, and execution of major upgrades and migrations.
• Ability to build strong relationships with business partners at all levels.

Perks:

• 22 days of annual leave per year +3 company leave days.
• Flexible working hours.
• Modern, well-equipped office in the heart of Porto city.
•  Free parking space.
• Health Insurance for you.
• Hybrid working model.
• Gym, snacks and drinks at the office.
• Corporate events.

ISS is a Place to Be You!

Since our founding in 1901, ISS has been a people-first company. We recognize the power of diversity and celebrate the differences that make us unique. When everyone is free to be themselves, everyone benefits. Our people feel safe, respected, represented, and supported as their authentic selves, allowing them to seize opportunities and reach their full potential. We take seriously our obligation to improve lives, make a difference in our communities, and protect our planet — because when we get things right, the world works better. And that is what drives us.

Be who you are. Become what you want. Be part of something bigger.

Become more. Become ISS.

Apply here!