IT Security Manager - IAM Architect / Lead

IndiaFull-timePosted Jul 17, 2026

Wolters Kluwer Global Business Services (GBS) is designed to provide services to the business units in the areas of technology, sourcing, procurement, legal, finance, and human resources. These global centers promote team collaboration using best practices around a specific focus area to drive results and enhance operational efficiencies. There is a constant endeavor to benchmark against best-in-class industry standards to improve the quality of deliverables, increase cost savings, enhance productivity and reduce time to market for products and applications.

We have an amazing opportunity for a IAM lead architect, IT Security available within our Global Business Services division. This position has been created due to growth. IAM lead Architect, IT Security will be Accountable and Responsible for defining the identity fabric — the standards, reference architectures, and integration patterns and working closely with project teams as well as internal / external groups to protect and enhance the confidentiality, integrity, and availability of Wolters Kluwer assets.

This position location is  Pune or Chennai, India .

As IAM lead Architect, IT Security, you will be accountable for defining IAM architectures, standards, road maps for all our IAM programs to secure access to personal and confidential information at Wolters Kluwer. In this role, you will be required to demonstrate proficiency in identity and access concepts as they pertain to every area of security management. Your role will also include interfacing with all other areas of the security organization and responding to 3rd party audits and internal audits, and interfacing with internal business unit IT representatives on global information security initiatives and compliance tasks and projects.

Key Responsibilities:

  • Define and own the enterprise identity architecture strategy, reference architectures, and engineering standards aligned to business and regulatory requirements across US and EU jurisdictions.
  • Produce and maintain the IAM RACI — resolving ownership boundaries between Access Management, IGA, Privileged IAM, Access Management, and NHI pillars.
  • Establish and govern the IAM Architecture Review Board (ARB), ensuring architectural sign-off on all material identity, access, and authentication changes.
  • Own the identity fabric design — the authoritative directory model, hybrid sync strategy, group and role taxonomy, and attribute schema across AD and Entra ID.
  • Define integration standards for all IAM tool-to-tool connections: SailPoint to AD, CyberArk to Entra PIM, CIEM to SIEM, and emerging NHI tooling.

Zero Trust and Cloud IAM Architecture

  • Architect and enforce Zero Trust identity controls across hybrid and multi-cloud environments (AWS, Azure, GCP), including least-privilege, just-in-time access, and continuous access evaluation.
  • Define cloud IAM governance standards: Entra ID tenant architecture, AWS IAM permission boundaries, Azure RBAC design, and GCP IAM policy structure.
  • Drive the architectural strategy for CIEM integration — ensuring cloud entitlement visibility, toxic combination detection, and least-privilege remediation at scale.
  • Own the identity component of the organization’s Zero Trust roadmap, including micro-segmentation, device trust, and identity-aware network policy.

NHI and AI Identity Architecture

  • Define the Non-Human Identity (NHI) governance architecture — covering service accounts, managed identities, service principals, pipeline identities, and AI agent identities.
  • Design the secrets management architecture integrating CyberArk Secrets Manager, Azure Key Vault, and CI/CD OIDC federation for keyless pipeline authentication.
  • Architect the AI agent identity model — defining how AI agents authenticate, what permissions they hold, how their actions are audited, and how their lifecycle is governed.
  • Produce architectural guidance for MCP server identity controls and LLM API key governance for emerging AI tooling (Claude Code, Copilot, custom agents).

Regulatory and Compliance Architecture

  • Ensure identity architecture satisfies GDPR, NIS2, DORA, SOC 2 Type II, and ISO 27001 requirements across all operating regions.
  • Translate evolving regulatory requirements (EU AI Act, Cyber Resilience Act, SEC cybersecurity rules) into actionable identity architecture changes.
  • Partner with Legal, Privacy, and Data Protection Officers to embed Privacy-by-Design and data minimization at the identity architecture layer.
  • Maintain the IAM architecture risk register — classifying, prioritizing, and driving remediation of architectural debt and control gaps.

Cross-Pillar Governance

  • Serve as the primary architectural authority for the IAM program — covering Access Management and Controls and Audit operationally where dedicated leads are not yet in place.
  • Chair the IAM Architecture Guild, fostering a community of practice across distributed identity engineers in US and EU time zones.
  • Present identity architecture posture and program progress to the IAM Owner, CISO, and executive leadership.
  • Evaluate and govern the IAM toolchain — rationalizing tool overlap, driving consolidation decisions, and managing vendor relationships for identity platforms.

Our Interview Practices

To maintain a fair and genuine hiring process, we kindly ask that all candidates participate in interviews without the assistance of AI tools or external prompts. Our interview process is designed to assess your individual skills, experiences, and communication style. We value authenticity and want to ensure we’re getting to know you—not a digital assistant. To help maintain this integrity, we ask to remove virtual backgrounds and include in-person interviews in our hiring process. Please note that use of AI-generated responses or third-party support during interviews will be grounds for disqualification from the recruitment process.

Applicants may be required to appear onsite at a Wolters Kluwer office as part of the recruitment process.

Want jobs like this matched to you?

Swoopd scores fresh postings against your résumé so you only see the matches that matter.

Get started free