IAM Architect - User Provisioning & Access Control

Career Category: Information Systems

Join our team at AMGEN Capability Center Portugal. We are a diverse and global organization with a strong presence in Lisbon's city center. We offer opportunities across Cybersecurity, Data & Analytics, Digital, Technology and Innovation, Finance, General & Admin, Human Resources, Regulatory Affairs, and more. AMGEN is committed to serving patients and making a difference in people’s lives.

LIVE

ABOUT THE ROLE

As an IAM Architect - User Provisioning & Access Control at Amgen's Capability Center Portugal (ACCP), you will lead the design and implementation of robust information system architectures that support evolving business needs. You will analyze requirements, craft scalable architectural solutions, evaluate technologies, and ensure alignment with industry standards, governance frameworks, and best practices. You will help build secure and scalable identity governance solutions with a focus on RBAC and ABAC models.

Roles & Responsibilities

• Design and implement comprehensive identity provisioning workflows for users, systems, and applications
• Develop standardized models to support joiner/mover/leaver processes
• Ensure solutions are scalable, secure, and compliant with internal policies and external regulations
• Provide technical and governance oversight across provisioning projects, acting as the lead architect from analysis through delivery
• Lead the development and continuous improvement of RBAC models, including role mining, engineering, and lifecycle management
• Define and manage identity governance policies, including access reviews, certifications, and entitlement management
• Integrate governance frameworks with provisioning and access control mechanisms
• Manage access reviews and certifications, enforce SoD controls, and ensure audit readiness
• Support governance reporting, compliance audits, and risk assessments
• Define response and remediation procedures for identity-related issues
• Collaborate with infrastructure and application teams to integrate IAM tools with enterprise systems
• Automate provisioning and deprovisioning tasks using scripting and workflow tools
• Provide strategic direction and technical leadership in provisioning architecture
• Promote best practices in access control, least privilege, and zero trust principles
• Partner with stakeholders across security, compliance, HR, and IT to align provisioning capabilities with business objectives
• This position may include after-hours and on-call responsibilities

What we expect of you

Our ideal candidate

• Holds a relevant degree and has deep expertise in identity provisioning across hybrid environments
• Experienced in IAM architecture, including RBAC, ABAC, and policy-driven access models
• Proficient in directory services (Active Directory, LDAP) and account reconciliation
• Skilled in IAM tools (e.g. SailPoint, CyberArk, Okta, ForgeRock, Microsoft Entra ID) and protocols (SAML, OAuth, SCIM)
• Familiar with automation scripting (PowerShell, Python) and workflow tools
• Understands compliance frameworks (SOX, GxP) and has experience with audits and risk assessments
• Strong communicator with excellent documentation and stakeholder management skills
• Holds relevant certifications (e.g. CIAM, CISSP) and has exposure to CIEM, PAM, or IGA platforms
• Experienced in cloud-based access governance (AWS, Azure, GCP)
• Demonstrates strong analytical, troubleshooting, and problem-solving abilities
• Available for rotational on-call duties during evenings and weekends

• Vast opportunities to learn, develop, and move up and across our global organization.

• Diverse and inclusive community of belonging, where colleagues are empowered to bring ideas to the table, take risks, and act.

• Generous Amgen Total Rewards Plan comprising healthcare, finance, wealth and career benefits.

• Flexible work arrangements.

APPLY NOW FOR A CAREER THAT DEFIES IMAGINATION. In our quest to serve patients above all else, Amgen is the first to imagine, and the last to doubt. Join us at careers.amgen.com.

Amgen is an Equal Opportunity employer and will consider you without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status. We will ensure that individuals with disabilities are provided a reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request an accommodation.