.IAM Architect YOU want this position Enverus delivers business-critical insights to the global energy industry through a state-of-the-art SaaS platform built on industry-leading data and energy analytics. Our solutions deliver value across the entire energy value chain, empowering customers to be more agile, efficient, and competitive. We are currently seeking a forward-thinking Identity and Access Management (IAM) Architect to join our Information Technology team in Spain (remote option). This role offers the opportunity to shape the future of our identity and access strategy while working with cutting-edge Microsoft technologies in a hybrid environment. As we continue our rapid growth, you'll play a crucial role in ensuring our identity infrastructure scales securely and efficiently. Performance Objectives Design and implement identity and access management solutions across our hybrid environment, leveraging Microsoft Entra ID and Active Directory Lead the Privileged Access Modernization and Governance Framework project, establishing best practices and security controls Architect and implement access package catalogs and role-based access control (RBAC) frameworks Develop and evolve conditional access policies aligned with our security requirements and business needs Create and maintain identity governance frameworks, including access reviews and lifecycle management Collaborate with security, IT, and business stakeholders to understand requirements and implement appropriate solutions Provide technical guidance and documentation for identity and access management processes Evaluate and recommend new identity-related technologies and solutions Monitor and optimize the performance of identity systems and infrastructure Support security audit requirements and compliance initiatives related to identity and access management Competitive Candidate Profile Proven experience in identity and access management architecture, with emphasis on Microsoft technologies Strong understanding of modern authentication protocols (OAuth 2