Deloitte CE

✔ Do you have hands-on experience implementing and configuring IAM platforms such as SailPoint, Saviynt, CyberArk, Okta, or Microsoft Entra ID, and want to bring identity security to life for complex client organizations?

✔ Are you a consultant-minded professional who enjoys translating identity governance challenges into practical, scalable solutions while engaging with both technical and business stakeholders?

✔ Do you thrive in project-based environments, juggling discovery workshops, technical builds, and client presentations across dynamic, cross-functional teams?

If you're motivated by helping organizations strengthen how they manage identities, access, and privilege — all within a collaborative, international consulting environment — we'd love to meet you 🚀

🎯 What we expect from you

Essential:

• Hands-on experience with IAM technologies such as Microsoft Entra ID, SailPoint, Saviynt, CyberArk, Delinea, Okta, Ping Identity, or similar platforms
• Strong understanding of identity governance, role-based access control, access certifications, privileged access management, and identity lifecycle management
• Knowledge of authentication and federation standards including SAML, OAuth2, OpenID Connect, and MFA technologies
• Ability to communicate technical concepts to both technical and business audiences and facilitate client discussions and workshops
• Experience working in consulting, advisory, or client-facing environments is highly valued
• Proficiency in English (written and spoken)
• EU passport

Nice to have:

• Relevant certifications such as CISSP, Microsoft, SailPoint, CyberArk, or Okta certifications
• Hyperscaler certifications (AWS, Azure, or GCP) or Netskope certification
• Proficiency in German

As an IAM Consultant, you'll work alongside experienced professionals to help clients design, build, and operate identity solutions that protect their most critical assets. You'll play an active role in shaping how organizations govern access, manage privilege, and bring identity security into hybrid and cloud environments.

Your responsibilities:

• Design, configure, and implement Identity Governance & Administration (IGA) solutions — joiner-mover-leaver lifecycle, access certification campaigns, role-based and attribute-based access control (RBAC/ABAC), and Segregation of Duties (SoD) controls
• Build and customize identity workflows, connectors, and integrations (SCIM, REST/SOAP APIs, LDAP, SQL) between IAM platforms and enterprise applications, directories, and HR systems of record
• Support hands-on deployment and configuration of platforms such as SailPoint (IdentityNow / IdentityIQ), Okta, Microsoft Entra ID, CyberArk, Saviynt, Ping, One Identity, or BeyondTrust
• Translate client requirements into technical designs — running discovery workshops, documenting current/future-state architecture, and presenting recommendations directly to client stakeholders
• Conduct identity risk assessments and maturity reviews, identifying gaps in access governance, authentication, and privileged access controls
• Support integration of IAM capabilities into hybrid and cloud environments (Azure AD/Entra ID, AWS IAM, GCP IAM)
• Partner with project leads on the full delivery lifecycle: requirements, design, build, test, deployment, and post-go-live support
• Mentor junior team members and contribute to growing Deloitte's IAM methodologies, accelerators, and points of view

Why join us?

• Work on challenging and high-impact projects in cybersecurity and IT risk management
• Gain exposure to both local and international clients across industries
• Build your career with access to global knowledge, methodologies, and certifications
• Join a team that values professional excellence, continuous development, and knowledge sharing

This isn't a role for someone who wants to coast. It's for people who get energized by complexity, who want their work to mean something tangible, and who understand that security is both technical and strategic.

👉 Fringe benefits:

• Discretionary annual Performance Bonus – rewarding excellence and dedication
• Hybrid Work Model
• Extended Health and Pension Coverage – including Medicover services and contributions to health and pension funds
• Group Life and DCE Travel Insurance – comprehensive insurance for security and peace of mind
• Childcare Contributions – support for nursery or kindergarten services
• BeWell 360 Program – access to sports activities, mental health workshops, gym discounts, and employee assistance
• Professional Development – skill-enhancing training and career advancement opportunities
• SZÉP Card – for accommodation, dining, and recreation