Set the IAM vision and target state for SSO, MFA and passwordless, federation, identity lifecycle and privileged access, aligned to business goals and risk.
Build a multi‑year roadmap and maturity plan, define OKRs and KPIs, secure funding and provide functional leadership to platform architects and engineers to deliver secure and scalable services.
Design and govern integration patterns for SaaS, on‑prem and custom applications using OIDC, OAuth2, SAML 2.0 and SCIM, with reusable blueprints through APIs, ESBs and event platforms.
Deliver PAM and secrets management across cloud, databases, networks and CI/CD with vaulting, rotation, session control, JIT, break‑glass and session recording.
Embed security, compliance, and operations by design, enable access reviews and SoD, integrate logs with the security monitoring platform, and define clear monitoring, incident response, disaster recovery, and SLA commitments.

An experienced IAM strategist and architect for hybrid enterprises with hands-on leadership across Okta and Microsoft Entra ID.
Strong in identity standards and patterns such as OIDC, OAuth2, SAML 2.0, SCIM and federation, plus passwordless and MFA, and end-to-end application and middleware integration.
Proven in Privileged access management and secrets management with least privilege and automation across infrastructure and DevOps toolchains.
Fluent in HLD and LLD, data flows and sequence diagrams, design reviews and threat modelling, and able to turn requirements into secure and scalable implementations.
Familiar with ISO 27001, NIST CSF, and the CIS Controls and communicates effectively across business and technical teams, with certifications such as CISSP, ISSAP, or relevant vendor certifications considered a plus.

Permanent employment contract in a stable, successful family-owned company.
30 days of vacation, special leave for certain occasions, flexitime account with a broad time window for flexible working and weekly home office days.
Discounts on various sports and leisure activities (e.g., fitness studio Iphofen, swimming training, soccer, etc.), as well as opportunities for active health promotion through our company doctor and occupational health and safety offers.
Ample parking and access to public transport (train, bus).
Individual onboarding days, company and team events.
Individual support and promotion for part-time studies, further education and training.
Discounts on well-known brands and reduced-price employee purchases.
Using tax advantages while promoting your own health.
Assistance with international relocation.

Solution Architect – Identity, Access & Integration

Key skills