IAM Engineer – Process Documentation & Standardization

Looking for a change? New challenges?

Want to boost your career in a IAM Technical Documentation Writer (PM) role? Join our Local Managed Staffing team at NRB!

The NRB Group, now a leader in Belgium's ICT sector, offers a wide range of IT services to meet all your IT needs, from Infrastructure & Cloud to Software Development, Consultancy & Managed Staffing.

Find out more here.

Streamline, document, and standardize existing IAM processes (Directories, Privileged Access Management, Access Management) to establish solid and auditable foundations.

Important: This is not a Project Manager or Business Analyst role – we’re looking for a technical profile who can truly dive into the substance.

Technical Scope
• Directories: AD / Entra ID (Azure AD), JML (Joiner–Mover–Leaver) management, groups/RBAC, GPO/Policies, delegation, SoD.
• PAM: Credential vaults, privileged sessions, just-in-time elevation, rotation/checkout – in a CyberArk, BeyondTrust, or equivalent environment.
• Access Management: SSO/MFA, OAuth2/OIDC, SAML, access control policies, Conditional Access.
• Security & Compliance: Logging/auditing, hardening, periodic access reviews, alignment with ISO 27001/NIS2.
• Documentation Tools: Confluence/SharePoint + Git (version control), Visio/BPMN for diagrams, standardized runbooks/SOPs.
• Cybersecurity: Demonstrated interest or knowledge in cybersecurity, especially identity management in critical environments (NIS2, ISO 27001, hardening, traceability).
• Cross-Domain Analysis: Strong understanding of interconnections between IAM, network, cloud, and OT – a key differentiator between a standard engineer and a strategically valuable expert.
• Continuous Improvement: Proven contribution to evolving IAM standards and automating IAM processes.

Expected Deliverables (by priority)

1. As-Is mapping of IAM flows (Directories, PAM, AM) + entitlement inventory.

2. Standards & Policies (naming conventions, RBAC, SoD, MFA, PAM usage).

3. Operational Runbooks / SOPs (JML, access requests, recertification, break-glass, secret rotation).

4. Models & RACI matrices (responsibilities, approvals) + audit checklists.

5. To-Be plan with quick wins and action backlog (hardening, automation).

Profile Sought
• 5–8+ years of hands-on IAM engineering experience (not PM/BA), with strong skills in AD/Entra, PAM, and AM.
• Proven experience producing clear, operational technical documentation for IT operations teams.
• Solid knowledge of at least one PAM (CyberArk/BeyondTrust), one IdP (Entra/Okta/Keycloak), and RBAC/SoD frameworks.
• Strong command of security best practices (audit, logging, evidencing) and change control (ITIL).
• Fluent in French and English.

OUR OFFER

• Contractual flexibility, a permanent contract or a freelance assignment;

• Flexible working hours with the possibility of teleworking (1 to 3 days a week);

• A team of enthusiastic, professional and talented colleagues in a good mood and atmosphere;

• Personalized career coaching to support your development;

• A company with a pleasant, dynamic and innovative working atmosphere.

#LI-HA1