Solution Architekt (m/w/d) IAM & Client

About C.H.BECK

The Mediengruppe C.H.BECK has stood for reliability, innovation, and the highest quality for over 250 years as a traditional family company. It is characterized by a broad portfolio ranging from legal and humanities publications to modern online databases and digital platforms, as well as AI-supported solutions for the legal world of the future. The company combines centuries of expertise with state-of-the-art technology to offer innovative and high-quality solutions.

Your Responsibilities

Identity & Access Management (IAM):

• Design and implementation of modern IAM architectures (e.g., Azure AD / Entra ID, Active Directory Hybrid, MFA)
• Development of role and authorization concepts (RBAC, Least Privilege) and integration of applications
• Setup and optimization of Identity Governance & Administration processes and consulting on Zero Trust strategies

Modern Client Systems & Non-Joined Devices:

• Architecture of modern, cloud-first workplace concepts
• Management of non-joined devices via MDM/MAM (e.g., Intune)
• Conception of secure access models (BYOD) and implementation of Conditional Access, Compliance Policies, and Endpoint Security

Architecture & Consulting:

• Development of end-to-end architectures
• Technical consulting for specialist departments and IT teams
• Evaluation of new technologies and creation of documentation and decision proposals
• Support with PoCs and implementations

Your Profile

• Enthusiasm for innovative technologies and the willingness for continuous further training
• Teamwork skills, high learning motivation, and quick comprehension
• Several years of experience as a Solution Architect, System Architect, or Senior Engineer
• Analytical and conceptual thinking, as well as a structured and independent way of working
• In-depth knowledge of Identity & Access Management (e.g., Entra ID, AD, Okta), authentication and authorization standards (OAuth2, OIDC, SAML), modern client management solutions (Intune, MDM/MAM), cloud architectures (especially Microsoft Azure), IT security concepts (Zero Trust, Conditional Access, Endpoint Security), and Identity Governance Systems (e.g., SailPoint, Saviynt, Omada)
• Experience or interest in infrastructure automation and Infrastructure as Code (IaC)

Work Environment

• Workplace: Leading media company in the heart of Schwabing
• Development: Individual offers for professional and personal development
• Health: Sports and health offerings – cooperation with EGYM
• Work-Life Balance: Flexible working hours through 37.5-hour week full-time with flextime and home office
• Social Events: After-work beer, internal company fair for employees, summer and winter parties
• Goodies: Travel expense and lunch subsidies, parking spaces with e-charging infrastructure, book discounts & much more!