Job Title

The Global Digital Identity Services (GDIS) team designs and manages the identification, authentication and authorization services.Within the GDIS team, the AM Technical Lead is responsible for technical management and evolution of the Access Management (AM) platform (B2E). He/she is responsible for driving the operational maintenance on the AM platform, major configuration changes, and supporting entities onboarding within the AM platform.He/she is also responsible for designing and maintaining the security level and liaising with Security Architects.Roles & Responsibilities:Promote AM solution (IDP, SSO, MFA, PAM) within Sodexo organization, fostering the adoption and helping our teams fully leveraging AM capabilitiesExecute Roll-out plan with countries and global solutionsManage the AM Build & work closely with the Ops manager for the RunProvide expertise on AM technologies and more specially on Entra ID and OneLogin,ADFS, PKI (ATOS) and PAM (study ongoing).Produce KPIs and update/maintain dashboards regarding the roll-out of AM platform (MFA adoption, federated apps), the health of the solution and the AM roadmap.Accompany local IT teams (located in 150 entities / 70 countries) to deliver digital employee services to more than 420 000 employees (currently 250 000 digital identities / 150 000 identities managed by IGA tool)Guarantee perfect synchronization with other global teams (architecture, digital assets, platforms …)Interface with IT security, Compliance, Audit and GDPR teams to coordinate related policy and proceduresto implement provided directivesto provide all appropriate informationEnforce architecture principles and objectives to secure project success and sustainability of the application in the long runRequired Skills:Overall 10+ years’ experience in IT, and minimum 5 years working in IDP/MFA projectProven expertise in AM at large scale with multi-country environmentExperience of international environments and matrix organizationsTechnology: Significant expertise: Entra ID (Tenant management, AADC, App management and federation, MFA, Conditional Accesses, Identity management), Azure Automation (Power automate…), PowerShellGood knowledge and expertise: Active Directory, PKI, PAM, ADFSKnowledge: O365, IntuneNice to have: PKI: ATOS PKI / Berrycert CLMIDP: OneLoginExcellent reporting and presentation skillsCan-do attitude and service-oriented (client focus)Positive mindset, structured thinking and focused on finding solutionsCultivates innovation: Creates new and better ways for the organization to be successfulAbility to work independently and manage multiple tasks simultaneouslyRigorous, organized, transparent and team playerGood communication skills and ability to adapt communication based on the audience (C-level, business, technical team)Fluent in English, French is a plus