IAM Director

Led by Rodolphe Saadé, the CMA CGM Group, a global leader in shipping and logistics, serves more than 420 ports around the world on five continents. With its subsidiary CEVA Logistics, a world leader in logistics, and its air freight division CMA CGM AIR CARGO, the CMA CGM Group is continually innovating to offer its customers a complete and increasingly efficient range of new shipping, land, air and logistics solutions.

Committed to the energy transition in shipping, and a pioneer in the use of alternative fuels, the CMA CGM Group has set a target to become Net Zero Carbon by 2050.
Through the CMA CGM Foundation, the Group acts in humanitarian crises that require an emergency response by mobilizing the Group’s shipping and logistics expertise to bring humanitarian supplies around the world.

Present in 160 countries through its network of more than 400 offices and 750 warehouses, the Group employs more than 155,000 people worldwide, including 4,000 in Marseilles where its head office is located.

MISSION

We are seeking an experienced and visionary IAM Director to lead our Identity and Access Management strategy and operations. As the IAM Director, you will be responsible for developing, implementing, and maintaining robust IAM frameworks, policies, and procedures to ensure the security, integrity, and availability of our organization's digital assets. You will lead a team of IAM professionals, collaborate with cross-functional stakeholders, and drive initiatives to enhance our IAM capabilities.

Within the cyber security division at CMA CGM, you will oversee various IAM teams:

• Identity Governance
• Access Management
• Highly Privileged Access Management
• Authentication Management (Federation, SSO and MFA)
• IAM Governance (norms, policies, audits, controls)
• Enterprise Directories (AD/Azure ecosystems)

RESPONSIBILITIES 

1.Strategy and Planning

Develop and execute a comprehensive IAM strategy aligned with organizational goals and industry best practices.
Define IAM policies, standards, and procedures to ensure compliance with regulatory requirements and industry standards.
Conduct risk assessments and identify areas for improvement in IAM processes and technologies.
Define the global IAM roadmap for the group and accountable for the implementation of Group CISO’s Strategy.
Define and manage IAM Risk Appetite and Risk metrics.


2. Leadership and Team Management

Lead, mentor, and inspire a team of IAM professionals, providing guidance and support to achieve departmental objectives.
Foster a culture of collaboration, innovation, and continuous learning within the IAM team.
Manage resource allocation, budgeting, and performance evaluation for the IAM department.


3. IAM Architecture and Design

Design scalable, resilient, and efficient IAM architectures to meet current and future business needs.
Evaluate and select IAM technologies, tools, and solutions that align with organizational requirements and industry trends.
Ensure integration of IAM systems with other enterprise applications and infrastructure components.


4. Identity Governance and Administration (IGA)

Implement and maintain identity lifecycle management processes, including provisioning, deprovisioning, and access certification.
Establish role-based access control (RBAC) models and entitlement management frameworks to enforce least privilege access principles.
Monitor and analyze access controls to detect and mitigate security risks and compliance violations.


5. Authentication and Authorization

Oversee the implementation and management of authentication mechanisms, such as multi-factor authentication (MFA), single sign-on (SSO), and password policies.
Define and enforce authorization policies to govern user access to systems, applications, and data resources.
Evaluate emerging authentication and authorization technologies to enhance security posture and user experience.


6. Identity Federation and External Identity Management

Establish trust relationships with external partners, suppliers, and customers through federated identity management solutions.
Enable seamless and secure access for external users to our digital services and resources.
Ensure compliance with privacy regulations and data protection requirements when managing external identities.


7. Highly Privileged Account Management

Manage and supervise the existing HPAM team and the technical solution.
Define, develop, and implement strategies for the management and protection of high privilege accounts across the organization.
Establish policies, procedures, and guidelines for accessing, monitoring, and auditing HPAM accounts.
Provide guidance and training to IT administrators on best practices for managing and securing highly privileged accounts.
Continue to deploy the solution across the organization.

PROFILE AND QUALIFICATIONS

• Bachelor’s or master’s degree in computer science, Information Technology, or related field.
• Proven experience of 15+ years in a leadership role within the IAM domain, preferably in a large enterprise environment.
• In-depth knowledge of IAM concepts, principles, and technologies, including IAM frameworks, directory services, access control models, and authentication protocols.
• Strong understanding of regulatory compliance frameworks (e.g., GDPR, HIPAA, SOX) and industry standards (e.g., NIST, ISO 27001) related to IAM.
• Excellent communication, interpersonal, and stakeholder management skills.
• Relevant certifications (e.g., CISSP, CISM, CISA, CRISC) are highly desirable.
• Technical environment: SAP IDM, SailPoint IDN, Ping Identity (Ping Federate, PingID), InWebo, Active Directory, Azure, AWS, CyberArk, Azure Open AI

Please ensure you are familiar with the CMA CGM Corporate Internal Mobility guidelines