Osborne Clarke are seeking an experienced Identity & Access Management (IAM) Project Lead to join our growing IT Security team in our Bristol office on a 12 month fixed term basis. This newly created position will play a crucial role in designing, implementing, and managing IAM solutions across the business, ensuring secure and efficient access to systems and data. The IAM Project Lead will also provide expert advice on IAM strategies and ensure that IAM solutions align with business goals and regulatory requirements. The Role The IAM Project Lead will be a key member of the IT Security team, promoting collaboration, team working, and innovation. This role will involve overseeing and guiding the design and development of the new IAM framework, and leading the implementation of Role-Based Access Control (RBAC) policies and procedures. The IAM Project Lead will also lead the evaluation and selection of IAM tools, including EntraID and other potential solutions. Other key responsibilities include: IAM Framework Design: Develop and implement a comprehensive IAM strategy aligned with the Cyber Security Strategy. RBAC Implementation: Leading and approving the implementation of Role-Based Access Control (RBAC) policies and procedures. Tool Evaluation: Leading the evaluation and selection of IAM tools, including EntraID and other potential solutions. Policy Review: Creating and reviewing IAM policies, standards, and procedures developed as part of the project. IAM Process Review: Design and implement processes for the entire identity lifecycle, including joiners, movers, and leavers (JML). Privileged Access: Implement and manage PAM solutions to control and monitor privileged access. Access Reviews: Conduct periodic access reviews and certifications to ensure compliance with security policies and regulatory requirements. Regulatory Compliance: Ensuring IAM processes comply with regulatory requirements and internal policies. Incident Response: Develop and enhance IAM-related incident response plans to address potential security incidents. Training and Awareness: Leading training and awareness sessions on IAM policies and procedures. Collaboration: Collaborate with cross-functional teams to integrate IAM solutions with existing systems and applications. Reporting: Reviewing and presenting reports and metrics to track the effectiveness of IAM processes and identify areas for improvement. Continuous Improvement: Stay updated with the latest IAM trends, technologies, and regulatory requirements to ensure the organisation remains compliant and secure. We Are Looking For A proactive problem-solver with a passion for IAM and a commitment to excellence. Strong ability to communicate complex IAM concepts to both technical and non-technical stakeholders. A mentor and leader who can inspire, motivate, and guide throughout this exciting project. Customer-focused, with a proven ability to build relationships and trust across a wide range of stakeholders. Flexible and adaptable, with the ability to thrive in fast-paced, dynamic environments. Expertise in IAM, with hands-on experience in designing and implementing IAM solutions, including cloud environments (AWS, Azure, or GCP). Proficient in securing identities, managing access controls, and protecting data, with a solid understanding of modern cryptography, PKI, and IAM best practices. Experience in identity governance, access management, and advanced threat mitigation techniques. Expert-level understanding of IAM frameworks and regulations (e.g., ISO/IEC 27001/27002, NIST, NIS2, GDPR). Proven experience managing IAM projects, balancing security objectives with business and operational needs. Experience with IAM automation and orchestration tools. Excellent understanding of cloud IAM architecture, particularly for securing hybrid and multi-cloud environments, and cloud-native applications. Knowledge of IAM incident management and response strategies, with experience supporting SOC teams in investigating IAM-related security breaches and coordinating responses. Experience leading IAM programs in complex environments. Salary and benefits We offer competitive salaries and generous benefits. We value the health and wellbeing of our people and our wide range of initiatives and benefits support this. Our recruitment process We welcome direct applications for our opportunities - if you would like any further information about this role or the firm, we would be delighted to hear from you. Please contact, in complete confidence, Dan Jones (Recruitment Manager) at [email protected]. Please note that although we include closing dates for our roles as a guide, we review and progress applications on a rolling basis. At Osborne Clarke we do not make any recruitment decisions using automated decision-making. We are committed to providing an environment where you can perform to the best of your abilities at every stage of your recruitment experience and beyond. If you require any adjustments to be made during the application stage, interview process, or when working with us, please let us know in confidence. About You About Us Osborne Clarke is an international legal practice with over 330 Partners and more than 1,260 talented lawyers in 26 locations*. Our sector-based approach enables us to help our clients tackle the issues they are facing today, and prepare for the ones that they will face tomorrow. Advising them both comprehensively and commercially. We love working closely with our clients on new deals, products and solutions which will transform their businesses, markets and even sectors. And our unique approachable culture is not an added extra, it's fundamental to our success. At Osborne Clarke we value difference and encourage applicants from all backgrounds. We want everyone to feel that OC is a place where you can be yourself and belong, and our range of interest groups and diversity networks - not to mention our great teams - are a part of making that a reality. *Services in India are provided by a relationship firm