Security Architect - Digital Identity - IAM


Define and implement security controls for Digital Identity. Model, build reference architecture and patterns, and govern digital identity for adherence with internal, contractual, legal and regulatory security requirements.


  • Elaborates, maintains and governs the security reference architecture on both physical (customers, co-workers, suppliers ...) as non-physical (technical) identities, so the identity lifecycle management can be ensured within a challenging landscape
  • Collaborates with enterprise and domain architects to develop IAM solutions and an Enterprise IAM Strategy
  • Discusses and reviews current security posture of digital identity with the Subject Matter Expert
  • Participates in business projects to represent security architecture and cover all security related architecture aspects. Collaborate with project teams to design the required security layers in line with internal guidelines, industry standards and respecting relevant laws
  • Designs and further improves proper PAM/PUM related reference architectures to support operations of all applications and underlying infrastructure (including access from external parties)
  • Designs and further improves proper application access management
  • Takes decisions to improve continuously the IAM domain towards an efficient and effective business function capability. Evaluate new, emerging IAM technologies and solutions
  • Is the first point of contact (POC) for all IAM architecture related questions
  • Guides and supports colleague architects (security, data, application and infrastructure) to model suited IAM controls in business projects
  • Is capable of defining best security and IAM controls to protect the information for on premise (COTS & home-grown) and Cloud solutions

Experience and qualifications

  • At least 5 year experience in Security Architecture with relevant experience in IAM and PAM/PUM
  • Experience in design of IAM solution on premise and Cloud
  • You have a really deep IAM knowledge and a focus on everything that has to do with it, such as authentication and authorisation protocols.
  • Strong knowledge of industry standards related to identity management, authentication (MFA, FIDO2, SAML, OIDC,…), authorization, privileged access management, directory services, …
  • Deep understanding of IAM/PAM/PUM architecture concepts but not limited to: RBAC, coarse/fine grained access control, Microsoft Tiers model …
  • Experience with identity management, PUM/PAM tooling, security token service, MF security is a plus
  • Working knowledge of security industry standards like ISO 27001 and NIST
  • Strong modelling capabilities (knowledge of Archimate is a plus)
  • Certifications
    • Certifications are a plus and are not mandatory:
      • ISC² Certified Information Systems Security Professional (CISSP) / Information Systems Security Architecture Professional (ISSAP) or equivalent
      • Sherwood Applied Business Security Architecture (SABSA)


  • For us you are not merely a number, we are passionate about the personal and human approach. 100% honest communication is also typically Xquisit!
  • We value your talent, skills and effort. This means we will always go the extra mile to ensure that you feel comfortable at your job and that you feel at home, both at Xquisit and at the client.
  • The possibility to develop yourself professionally is priceless. That’s why following training programs, attending courses, obtaining certificates, … are always an option open for discussion.
  • Employees on our payroll are offered an attractive benefits package, including a competitive salary, a company car, hospitalisation and group insurance, 12 extra days off (ADV) and more.
  • You are always welcome in our office in the peaceful greenery of Brasschaat and we regularly organise events for members of the Xquisit family!

Security Architect - Digital Identity - IAM

Locatie Vlaams- Brabant
Duur Long-term Project
Dienstverband Freelance
- Medewerker Xquisit (onbepaalde duur)