IAM Engineer – Process Documentation & Standardization
- Hybrid
- Brussels, Brussels, Belgium
- Local managed staffing
Job description
Looking for a change? New challenges?
Want to boost your career in a IAM Technical Documentation Writer (PM) role? Join our Local Managed Staffing team at NRB!
The NRB Group, now a leader in Belgium's ICT sector, offers a wide range of IT services to meet all your IT needs, from Infrastructure & Cloud to Software Development, Consultancy & Managed Staffing.
Find out more here.
Streamline, document, and standardize existing IAM processes (Directories, Privileged Access Management, Access Management) to establish solid and auditable foundations.
Important: This is not a Project Manager or Business Analyst role – we’re looking for a technical profile who can truly dive into the substance.
Technical Scope
• Directories: AD / Entra ID (Azure AD), JML (Joiner–Mover–Leaver) management, groups/RBAC, GPO/Policies, delegation, SoD.
• PAM: Credential vaults, privileged sessions, just-in-time elevation, rotation/checkout – in a CyberArk, BeyondTrust, or equivalent environment.
• Access Management: SSO/MFA, OAuth2/OIDC, SAML, access control policies, Conditional Access.
• Security & Compliance: Logging/auditing, hardening, periodic access reviews, alignment with ISO 27001/NIS2.
• Documentation Tools: Confluence/SharePoint + Git (version control), Visio/BPMN for diagrams, standardized runbooks/SOPs.
• Cybersecurity: Demonstrated interest or knowledge in cybersecurity, especially identity management in critical environments (NIS2, ISO 27001, hardening, traceability).
• Cross-Domain Analysis: Strong understanding of interconnections between IAM, network, cloud, and OT – a key differentiator between a standard engineer and a strategically valuable expert.
• Continuous Improvement: Proven contribution to evolving IAM standards and automating IAM processes.
Expected Deliverables (by priority)
As-Is mapping of IAM flows (Directories, PAM, AM) + entitlement inventory.
Standards & Policies (naming conventions, RBAC, SoD, MFA, PAM usage).
Operational Runbooks / SOPs (JML, access requests, recertification, break-glass, secret rotation).
Models & RACI matrices (responsibilities, approvals) + audit checklists.
To-Be plan with quick wins and action backlog (hardening, automation).
Profile Sought
• 5–8+ years of hands-on IAM engineering experience (not PM/BA), with strong skills in AD/Entra, PAM, and AM.
• Proven experience producing clear, operational technical documentation for IT operations teams.
• Solid knowledge of at least one PAM (CyberArk/BeyondTrust), one IdP (Entra/Okta/Keycloak), and RBAC/SoD frameworks.
• Strong command of security best practices (audit, logging, evidencing) and change control (ITIL).
• Fluent in French and English.
OUR OFFER
Contractual flexibility, a permanent contract or a freelance assignment;
Flexible working hours with the possibility of teleworking (1 to 3 days a week);
A team of enthusiastic, professional and talented colleagues in a good mood and atmosphere;
Personalized career coaching to support your development;
A company with a pleasant, dynamic and innovative working atmosphere.
#LI-HA1
or
All done!
Your application has been successfully submitted!