Assistant Manager - Customer Identity and Access Management

Assistant Manager

Customer Identity and Access Management (CIAM) Assistant Manager

 

Team

This role is in the Identity and Access Management (IAM) function within Group Digital. The IAM team is responsible for designing, delivering, and operating secure identity services across KPMG. Within this function, the CIAM team focuses specifically on customer and external‑facing identity, ensuring that our digital products provide secure, seamless, and scalable access experiences. The broader IAM team plays a critical role in demonstrating that KPMG delivers ‘secure‑by‑design’ solutions that meet the expectations of our business, clients, and regulators.

 

Role

We are seeking an experienced CIAM (Customer Identity and Access Management) Assistant Manager to join our internal CIAM team and support client‑facing teams in delivering secure and frictionless customer access solutions. This role goes beyond traditional IAM administration and includes working with Terraform or other scripting languages, reviewing infrastructure‑as‑code changes, and contributing to the development and maintenance of our CIAM platform.

 

The ideal candidate will have a solid foundation in IAM and CIAM principles, with an understanding of modern authentication standards and secure integration practices. They will support product and delivery teams in designing appropriate customer access journeys, help ensure the secure and scalable use of Okta, and ensure that changes to the platform are robust, compliant, and aligned with KPMG’s security and architectural policies.

 

The CIAM Assistant Manager will:

• Support the internal CIAM team, working closely with cross‑functional teams to deliver secure, scalable identity services across client‑facing and internal platforms, with a focus on Okta and Entra ID alignment.
• Collaborate with supplier and service delivery teams to ensure reliable, high‑quality Okta BAU operations and continuous service improvements.
• Oversee Okta integration activities, ensuring new services, applications, and customer journeys follow CIAM standards, patterns, and security controls.
• Apply practical knowledge of identity technologies (such as Okta, Entra ID, API‑driven integrations, and infrastructure‑as‑code patterns like Terraform) to guide solution design and technical decisions.
• Review technical deliverables that include configuration, workflows, policies, and automation to provide constructive feedback to improve quality, security, and maintainability.
• Lead the response to high‑priority (P1) CIAM incidents, coordinating technical teams, communicating clearly with stakeholders, and driving rapid and safe resolution.
• Troubleshoot and resolve defects or integration issues, identifying root causes and proposing workable short‑term mitigations and long‑term improvements to enhance user experience.
• Challenge and refine technical scope with product owners, architects, and delivery teams to ensure proposed implementations meet CIAM standards and risk requirements.
• Manage Okta administration and governance activities, ensuring configuration, access policies, and lifecycle processes remain compliant and aligned with enterprise security controls.
• Conduct regular access reviews and assurance checks, validating adherence to internal policies, regulatory requirements, and CIAM operational standards.
• Own and refine CIAM operational processes, ensuring they are well‑documented, repeatable, and efficient.
• Support onboarding, coaching, and development of CIAM team members, helping uplift capability across the team and ensuring consistent ways of working.

 

Prior experience

You must have:

• 3+ years of experience in the Identity & Access Management (IAM) domain, ideally supporting operational CIAM or IAM services such as:
• Identity operations and access governance
• DevOps or automation roles supporting identity platforms
• Strong understanding of authentication and access management concepts, including Single Sign‑On (SSO), Multi‑Factor Authentication (MFA), session management, and federation protocols.
• Working knowledge of broader IAM and security concepts, including logical access controls, LDAP directories, RBAC/ABAC, PKI fundamentals, OAuth/OIDC, and policy‑based access models.
• Hands‑on experience with automation or infrastructure‑as‑code, ideally Terraform, used for managing identity configuration, application onboarding, or policy deployment.
• Ability to review technical deliverables, such as configuration changes, Terraform modules, workflows, or API‑driven integrations, and provide constructive feedback to improve security, reliability, and maintainability.
• Ability to communicate complex technical topics clearly, adapting style for different audiences including engineers, product teams, stakeholders, and non‑technical colleagues.
• Experience operating in fast‑paced, regulated, or customer‑focused environments, delivering reliable, high‑quality security or identity services.
• A calm and structured approach to challenging situations, able to analyse issues, identify root causes, and support balanced decision‑making across security and user experience considerations.

 

It would be advantageous if you have:

• Strong stakeholder engagement and presentation skills, able to represent the CIAM team professionally at all levels.
• A proven ability to build trust and credibility with senior leaders, delivery teams, and operational staff.
• Relevant technical security or cloud certifications, such as CISSP, CCSP, GIAC, AWS, Azure, or GCP certifications.

Customer Identity and Access Management (CIAM) Assistant Manager

 

Team

This role is in the Identity and Access Management (IAM) function within Group Digital. The IAM team is responsible for designing, delivering, and operating secure identity services across KPMG. Within this function, the CIAM team focuses specifically on customer and external‑facing identity, ensuring that our digital products provide secure, seamless, and scalable access experiences. The broader IAM team plays a critical role in demonstrating that KPMG delivers ‘secure‑by‑design’ solutions that meet the expectations of our business, clients, and regulators.

 

Role

We are seeking an experienced CIAM (Customer Identity and Access Management) Assistant Manager to join our internal CIAM team and support client‑facing teams in delivering secure and frictionless customer access solutions. This role goes beyond traditional IAM administration and includes working with Terraform or other scripting languages, reviewing infrastructure‑as‑code changes, and contributing to the development and maintenance of our CIAM platform.

 

The ideal candidate will have a solid foundation in IAM and CIAM principles, with an understanding of modern authentication standards and secure integration practices. They will support product and delivery teams in designing appropriate customer access journeys, help ensure the secure and scalable use of Okta, and ensure that changes to the platform are robust, compliant, and aligned with KPMG’s security and architectural policies.

 

The CIAM Assistant Manager will:

• Support the internal CIAM team, working closely with cross‑functional teams to deliver secure, scalable identity services across client‑facing and internal platforms, with a focus on Okta and Entra ID alignment.
• Collaborate with supplier and service delivery teams to ensure reliable, high‑quality Okta BAU operations and continuous service improvements.
• Oversee Okta integration activities, ensuring new services, applications, and customer journeys follow CIAM standards, patterns, and security controls.
• Apply practical knowledge of identity technologies (such as Okta, Entra ID, API‑driven integrations, and infrastructure‑as‑code patterns like Terraform) to guide solution design and technical decisions.
• Review technical deliverables that include configuration, workflows, policies, and automation to provide constructive feedback to improve quality, security, and maintainability.
• Lead the response to high‑priority (P1) CIAM incidents, coordinating technical teams, communicating clearly with stakeholders, and driving rapid and safe resolution.
• Troubleshoot and resolve defects or integration issues, identifying root causes and proposing workable short‑term mitigations and long‑term improvements to enhance user experience.
• Challenge and refine technical scope with product owners, architects, and delivery teams to ensure proposed implementations meet CIAM standards and risk requirements.
• Manage Okta administration and governance activities, ensuring configuration, access policies, and lifecycle processes remain compliant and aligned with enterprise security controls.
• Conduct regular access reviews and assurance checks, validating adherence to internal policies, regulatory requirements, and CIAM operational standards.
• Own and refine CIAM operational processes, ensuring they are well‑documented, repeatable, and efficient.
• Support onboarding, coaching, and development of CIAM team members, helping uplift capability across the team and ensuring consistent ways of working.

 

Prior experience

You must have:

• 3+ years of experience in the Identity & Access Management (IAM) domain, ideally supporting operational CIAM or IAM services such as:
• Identity operations and access governance
• DevOps or automation roles supporting identity platforms
• Strong understanding of authentication and access management concepts, including Single Sign‑On (SSO), Multi‑Factor Authentication (MFA), session management, and federation protocols.
• Working knowledge of broader IAM and security concepts, including logical access controls, LDAP directories, RBAC/ABAC, PKI fundamentals, OAuth/OIDC, and policy‑based access models.
• Hands‑on experience with automation or infrastructure‑as‑code, ideally Terraform, used for managing identity configuration, application onboarding, or policy deployment.
• Ability to review technical deliverables, such as configuration changes, Terraform modules, workflows, or API‑driven integrations, and provide constructive feedback to improve security, reliability, and maintainability.
• Ability to communicate complex technical topics clearly, adapting style for different audiences including engineers, product teams, stakeholders, and non‑technical colleagues.
• Experience operating in fast‑paced, regulated, or customer‑focused environments, delivering reliable, high‑quality security or identity services.
• A calm and structured approach to challenging situations, able to analyse issues, identify root causes, and support balanced decision‑making across security and user experience considerations.

 

It would be advantageous if you have:

• Strong stakeholder engagement and presentation skills, able to represent the CIAM team professionally at all levels.
• A proven ability to build trust and credibility with senior leaders, delivery teams, and operational staff.
• Relevant technical security or cloud certifications, such as CISSP, CCSP, GIAC, AWS, Azure, or GCP certifications.

Customer Identity and Access Management (CIAM) Assistant Manager

 

Team

This role is in the Identity and Access Management (IAM) function within Group Digital. The IAM team is responsible for designing, delivering, and operating secure identity services across KPMG. Within this function, the CIAM team focuses specifically on customer and external‑facing identity, ensuring that our digital products provide secure, seamless, and scalable access experiences. The broader IAM team plays a critical role in demonstrating that KPMG delivers ‘secure‑by‑design’ solutions that meet the expectations of our business, clients, and regulators.

 

Role

We are seeking an experienced CIAM (Customer Identity and Access Management) Assistant Manager to join our internal CIAM team and support client‑facing teams in delivering secure and frictionless customer access solutions. This role goes beyond traditional IAM administration and includes working with Terraform or other scripting languages, reviewing infrastructure‑as‑code changes, and contributing to the development and maintenance of our CIAM platform.

 

The ideal candidate will have a solid foundation in IAM and CIAM principles, with an understanding of modern authentication standards and secure integration practices. They will support product and delivery teams in designing appropriate customer access journeys, help ensure the secure and scalable use of Okta, and ensure that changes to the platform are robust, compliant, and aligned with KPMG’s security and architectural policies.

 

The CIAM Assistant Manager will:

• Support the internal CIAM team, working closely with cross‑functional teams to deliver secure, scalable identity services across client‑facing and internal platforms, with a focus on Okta and Entra ID alignment.
• Collaborate with supplier and service delivery teams to ensure reliable, high‑quality Okta BAU operations and continuous service improvements.
• Oversee Okta integration activities, ensuring new services, applications, and customer journeys follow CIAM standards, patterns, and security controls.
• Apply practical knowledge of identity technologies (such as Okta, Entra ID, API‑driven integrations, and infrastructure‑as‑code patterns like Terraform) to guide solution design and technical decisions.
• Review technical deliverables that include configuration, workflows, policies, and automation to provide constructive feedback to improve quality, security, and maintainability.
• Lead the response to high‑priority (P1) CIAM incidents, coordinating technical teams, communicating clearly with stakeholders, and driving rapid and safe resolution.
• Troubleshoot and resolve defects or integration issues, identifying root causes and proposing workable short‑term mitigations and long‑term improvements to enhance user experience.
• Challenge and refine technical scope with product owners, architects, and delivery teams to ensure proposed implementations meet CIAM standards and risk requirements.
• Manage Okta administration and governance activities, ensuring configuration, access policies, and lifecycle processes remain compliant and aligned with enterprise security controls.
• Conduct regular access reviews and assurance checks, validating adherence to internal policies, regulatory requirements, and CIAM operational standards.
• Own and refine CIAM operational processes, ensuring they are well‑documented, repeatable, and efficient.
• Support onboarding, coaching, and development of CIAM team members, helping uplift capability across the team and ensuring consistent ways of working.

 

Prior experience

You must have:

• 3+ years of experience in the Identity & Access Management (IAM) domain, ideally supporting operational CIAM or IAM services such as:
• Identity operations and access governance
• DevOps or automation roles supporting identity platforms
• Strong understanding of authentication and access management concepts, including Single Sign‑On (SSO), Multi‑Factor Authentication (MFA), session management, and federation protocols.
• Working knowledge of broader IAM and security concepts, including logical access controls, LDAP directories, RBAC/ABAC, PKI fundamentals, OAuth/OIDC, and policy‑based access models.
• Hands‑on experience with automation or infrastructure‑as‑code, ideally Terraform, used for managing identity configuration, application onboarding, or policy deployment.
• Ability to review technical deliverables, such as configuration changes, Terraform modules, workflows, or API‑driven integrations, and provide constructive feedback to improve security, reliability, and maintainability.
• Ability to communicate complex technical topics clearly, adapting style for different audiences including engineers, product teams, stakeholders, and non‑technical colleagues.
• Experience operating in fast‑paced, regulated, or customer‑focused environments, delivering reliable, high‑quality security or identity services.
• A calm and structured approach to challenging situations, able to analyse issues, identify root causes, and support balanced decision‑making across security and user experience considerations.

 

It would be advantageous if you have:

• Strong stakeholder engagement and presentation skills, able to represent the CIAM team professionally at all levels.
• A proven ability to build trust and credibility with senior leaders, delivery teams, and operational staff.
• Relevant technical security or cloud certifications, such as CISSP, CCSP, GIAC, AWS, Azure, or GCP certifications.

Experience Level

Mid Level