Senior IAM Governance and Compliance Specialist

Do you want to help deliver a safer and more mature Identity & Access landscape for our colleagues? Do you see Identity & Access not only as a security measure, but also as an enabler for workforce processes and developer journeys? Are you skilled in policies, regulations, controls, and audits, while also being able to explain complex IAM topics in a clear and practical way? Then we are looking for you!

As an IAM Domain Expert, you are responsible for developing and maintaining IAM policies and standards, designing and monitoring controls, and preparing and supporting audits. You help ensure that IAM capabilities and products operate in a compliant, secure, and user‑friendly way. You will be the subject‑matter expert who strengthens the organization’s IAM maturity and reduces cyber risk.

Your job

In this role, your primary mission is to strengthen the maturity, governance, and compliance of our Identity & Access Management capabilities, with a focus on the workforce domain. You will act as a senior IAM expert who brings structure, clarity, and consistency to how IAM policies and controls are designed, implemented, and governed across the bank.

As a Domain Expert, you will independently develop and position the IAM policies and standards that guide how the bank manages identities, authentication, access & authorization, privileged access, API access, and related IAM processes. You translate regulatory requirements, market developments, and strategic objectives into clear and practical frameworks that teams can apply with confidence. You also ensure these frameworks are properly embedded by defining the overall control approach, validating controls, monitoring adherence, and driving improvements across multiple domains.

You act as a trusted advisor to senior stakeholders, making sure IAM aligns with internal policies, external regulations, and the three‑lines‑of‑defence model. You oversee audit preparation, coordinate evidence across teams, guide remediation activities, and provide well‑founded advice in high‑impact situations. By working closely with Product Owners, Capability Owners, and the Data & Insights team, you help shape the long‑term direction of IAM and ensure that policies, risks, technology choices, and business needs remain aligned.

You share knowledge proactively, encourage cross‑team collaboration, and help raise the overall IAM maturity across the bank.

Working environment

You will be part of ABN AMRO CISO’s Identity & Access Grid, working within the Workforce Enablement & Control team, specifically in the Audit & Control team.

The Audit & Control team (Domain Experts and Functional Specialists) focuses on policy development, regulatory compliance, risk management, and audit preparation to strengthen IAM security and increase capability maturity.

The Workforce Enablement & Control team collaborates intensively with the Workforce IT delivery department to ensure that products and capabilities are technically robust (handled by the IT Delivery department) and meet functional requirements and expectations (handled by Workforce Enablement & Control) for the workforce.

Your profile

Must-have hard skills for this job:

• Deep expertise in IAM policy and governance frameworks, with the ability to develop, position, and maintain bank‑wide IAM standards.
• Strong understanding of IAM capabilities: Identity, Authentication, Access & Authorization, Privileged Access Management, and API Access.
• Experience translating regulatory frameworks (e.g., DORA, GDPR, ISO 27001, NIST) into strategic IAM policies, control approaches, and governance models.
• Experience in managing projects, including driving deliverables, timelines, risk mitigation, and reporting to senior leadership.

Must-have soft skills

• Strategic thinker with strong analytical and structuring skills.
• Ability to influence and challenge senior stakeholders across business lines.
• Excellent communicator who can simplify complex IAM topics into clear guidance.
• Ownership-driven, proactive, collaborative advisor with a long-term view.
• Comfortable leading cross-team discussions and establishing direction within the IAM domain.

Nice to haves:

• 10+ years of experience in Identity & Access Management, including advising senior stakeholders in complex enterprise environments.
• Proven ability to define IAM control strategies, oversee control effectiveness, and drive cross‑domain remediation at organizational scale.
• Strong skills in interpreting and steering using IAM KPI/KRI dashboards, risk trends, and maturity insights.
• Excellent written communication in English (Dutch is a plus).
• Certifications such as CISA, CISSP, CISM, ISO 27001 (Lead Auditor/Implementer), ITIL.
• Experience with IAM tooling (e.g., Azure AD/Entra, SailPoint, CyberArk).
• Knowledge of cloud platforms (Azure, AWS) and CI/CD principles.
• Familiarity with banking processes and supervisory expectations.

We are offering

… the chance to become even better at your job within this large and inspiring organisation. Does the thought of being a leader in the IAM space make your heart beat faster? Then CISO is the place where you will never be out of practice. Mistakes happen, and we learn from them!

We offer:

• A competitive salary.
• The freedom to optimize your performance in a flexible working environment.
• Tools to stay fit and update your knowledge, with space provided for you to practice and grow your skills.
• An additional benefit budget of 11%, with which you can buy flexible terms of employment.
• A personal development budget of € 1.000 per year.
• A public transportation subscription.
• An excellent pension scheme.