IAM Architect

In Cyclad we work with top international IT companies in order to boost their potential in delivering outstanding, cutting edge technologies that shape the world of the future. Currently, for our client, we are looking for a highly experienced IAM Architect with deep, hands-on expertise in SailPoint IdentityIQ (IIQ) and strong architectural knowledge across the broader Identity & Access Management landscape, including Privileged Access Management (PAM), Active Directory (AD), and modern authentication/authorization ecosystems.

The IAM Architect will define, design, and drive end-to-end identity security architectures across the enterprise, discuss the roadmap with client stakeholders, and partner with engineering, security, operations, cloud, and application teams to ensure secure, scalable, and compliant IAM solutions. This role is both strategic and technical, balancing architectural oversight with hands-on solutioning in a highly dynamic customer landscape.

Project information:

• Location: Kraków

• Type of employment: B2B contract

• Remuneration: 190 - 210 PLN net + VAT per hour on B2B

• Project language: Polish and English

Your tasks:

• Lead the architecture and roadmap for enterprise IAM solutions with SailPoint IdentityIQ (IIQ) as the core IGA platform.

• Design and oversee implementation of IIQ modules (Lifecycle Manager, Access Certifications, Compliance, workflows, connectors).

• Define scalable models for identity lifecycle management, RBAC, access requests, and SoD controls.

• Design integrations across PAM, Active Directory, SSO/MFA, APIs, and cloud (Azure/AWS) environments.

• Ensure IAM architecture aligns with security, compliance, and audit requirements.

• Drive automation and DevOps practices (CI/CD, configuration management, lifecycle automation).

• Act as a technical authority, collaborating with security, cloud, application, and operations teams.

Requirements:

• Strong hands-on experience with SailPoint IdentityIQ (architecture and implementation).

• Solid knowledge of IAM domains: IGA, PAM, AD, SSO/MFA, and hybrid/cloud identity models.

• Experience integrating with AD, Exchange, SAP/ERP, JDBC, REST, LDAP, and SaaS systems.

• Good programming skills in Java/J2EE, BeanShell scripting, and database technologies.

• Knowledge of web services (REST/SOAP), XML, JMS.

• Experience with patching/version upgrades is a plus.

• Excellent communication skills and ability to work with technical and business stakeholders.

We offer:

• Private medical care with dental care (covering 70% of costs) + rehabilitation package. Family package option possible.

• Multisport card (also for an accompanying person).

• Life insurance.

• International work environment.