Job Description

Abu Dhabi, United Arab Emirates Posted on 05/28/2025 Consultz is supporting our client, a well-renowned SWF in the region, in their search for an Identity & Technology Risk Lead. Role Overview: We are seeking a strategic and technically proficient Identity & Technology Risk Architect to lead identity governance and technology risk management initiatives. This individual will architect and operationalize the Identity & Access Governance (IAG) program, design scalable controls for access lifecycle and policy enforcement, and enhance how Digital & AI, along with the broader organization, manage technology risk. This role operates at the intersection of security architecture, enterprise systems, DevOps, and governance, collaborating closely with auditors, technology leaders, and risk stakeholders. Key Responsibilities: Identity & Access Governance (IAG)

Develop and execute the organizationaEUR(TM)s IAG strategy and program. Design, implement, and manage IGA tools such as SailPoint IdentityIQ to automate and enforce policies like birthright access control, segregation of duties (SoD), toxic combination detection, access reviews, and recertification. Establish policies and guardrails across critical applications, platforms, and infrastructure to ensure secure, compliant access provisioning. Technology Risk Management

Identify, register, and manage technology risks within Digital & AI divisions and the broader enterprise. Lead initiatives to embed risk assessments and controls into solution development, cloud engineering, and platform architecture. Collaborate with GRC, legal, and risk teams to align with enterprise-wide risk frameworks and standards. Collaboration and Support

Assist Enterprise Architecture and DevOps teams in integrating identity and risk considerations into technical architectures and CI/CD pipelines. Participate in secure design reviews, risk assessments, and threat modeling. Serve as a subject matter expert on identity and access architecture. Audit and Assurance

Act as the primary contact for internal and external audits related to IT, access controls, identity governance, and technology risk. Manage evidence collection, documentation, control testing, and remediation tracking. People Management

No direct management responsibilities but requires excellent stakeholder management skills across departments. Requirements:

10+ years in identity management and technology risk. Expertise in Identity Governance & Administration (IGA), especially SailPoint IdentityIQ, including implementation and operation. Deep knowledge of access control principles, SoD models, toxic combinations, and compliance standards. Experience with technology risk frameworks like NIST CSF, ISO 27005, COBIT. Hands-on experience with DevOps and enterprise IT teams in secure solution design. Certifications such as CISSP, CISA, CRISC, or relevant identity certifications. Experience integrating identity solutions with HR systems, ITSM, cloud platforms, and application catalogs. Strong communication and stakeholder engagement skills, including interactions with auditors and regulators. #J-18808-Ljbffr