Identity Tech Specialist

The Global Digital Identity Services (GDIS) team designs and manages the identification, authentication and authorization services. Within the GDIS team, the AM Technical Lead is responsible for technical management and evolution of the Access Management (AM) platform (B2E).

He/she is responsible for driving the operational maintenance on the AM platform, major configuration changes, and supporting entities onboarding within the AM platform. He/she is also responsible for designing and maintaining the security level and liaising with Security Architects.

Roles & Responsibilities: Promote AM solution (IDP, SSO, MFA, PAM) within Sodexo organization, fostering the adoption and helping our teams fully leveraging AM capabilities Execute Roll-out plan with countries and global solutions Manage the AM Build & work closely with the Ops manager for the Run Provide expertise on AM technologies and more specially on Entra ID and OneLogin,ADFS, PKI (ATOS) and PAM (study ongoing). Produce KPIs and update/maintain dashboards regarding the roll-out of AM platform (MFA adoption, federated apps), the health of the solution and the AM roadmap. Accompany local IT teams (located in 150 entities / 70 countries) to deliver digital employee services to more than 420 000 employees (currently 250 000 digital identities / 150 000 identities managed by IGA tool) Guarantee perfect synchronization with other global teams (architecture, digital assets, platforms …) Interface with IT security, Compliance, Audit and GDPR teams to coordinate related policy and procedures to implement provided directives to provide all appropriate information Enforce architecture principles and objectives to secure project success and sustainability of the application in the long run

Required Skills: Overall 10+ years’ experience in IT, and minimum 5 years working in IDP/MFA project Proven expertise in AM at large scale with multi-country environment Experience of international environments and matrix organizations Technology: Significant expertise: Entra ID (Tenant management, AADC, App management and federation, MFA, Conditional Accesses, Identity management), Azure Automation (Power automate…), PowerShell Good knowledge and expertise: Active Directory, PKI, PAM, ADFS Knowledge: O365, Intune Nice to have: PKI: ATOS PKI / Berrycert CLM IDP: OneLogin Excellent reporting and presentation skills Can-do attitude and service-oriented (client focus) Positive mindset, structured thinking and focused on finding solutions Cultivates innovation: Creates new and better ways for the organization to be successful Ability to work independently and manage multiple tasks simultaneously Rigorous, organized, transparent and team player Good communication skills and ability to adapt communication based on the audience (C-level, business, technical team) Fluent in English, French is a plus