Apply now »

IGA & PAM Product Owner (m/f/d)

Madrid
Job ID:  82878
Division:  Liebherr International
Company:  Liebherr IT Shared Service Centre Ibérica, S.L.
Work area:  Information technology / Software
Country:  ES
Entry level:  Professionals
Salary: 
Type of contract:  full time

We are expanding our Global Corporate Information Security team and are looking for an IGA (Identity Governance and Administration) & PAM (Privileged Access Management) Product Owner (m/f/d) who is responsible for the delivery, prioritization, and operational execution of the Identity Governance & Administration (IGA) and Privileged Access Management (PAM) product backlogs. 

 

This role owns the day to day responsibility for translating IAM strategy, regulatory requirements, and risk drivers into consumable IGA and PAM services, while overall accountability remains with the Head of IAM Security. The Product Owner ensures close alignment across architecture, engineering, SOC, and business stakeholders to deliver scalable, compliant identity and privileged access capabilities. 

 

This role is central to the organization’s Zero Trust and regulatory compliance journey, directly reducing the highest impact cyber risks related to over privileged access and poor identity governance. You will shape how identities, entitlements, and privileged access are governed across 55,000+ users and ~2,500 applications, influencing both security posture and operational efficiency at enterprise scale.

Creating passion: your responsibilities

You main responsibilities are:

  • Own and manage the IGA & PAM product backlogs, priorities, and sprint objectives.
  • Act as day to day Product Owner for Global IGA and Global PAM initiatives.
  • Translate IAM strategy, regulatory obligations (NIS2, ISO 27001), and risk assessments into delivery backlog items.
  • Coordinate with IAM Architects to ensure architectural intent is correctly implemented by engineering teams.
  • Drive onboarding of applications, identities, and platforms into IGA lifecycle and PAM controls.
  • Ensure alignment between IGA, PAM, IAM analytics, and SOC monitoring.
  • Support tool selection, vendor engagement, and roadmap planning for IGA and PAM platforms.
  • Drive adoption, communication, and change management with business and IT stakeholders.
  • Provide clear reporting on delivery progress, risk reduction, and compliance KPIs to the Head of IAM. 

 

Your main immediate contributions will be: 

  • Delivered a production ready Global IGA service covering JML automation, access governance, and access reviews.
  • Established a unified Global PAM service enforcing least privilege, MFA, and just in time access.
  • Implemented governance for non human identities (service accounts, technical IDs, automation).
  • Defined and operationalized RBAC / PBAC role models across priority applications.
  • Achieved measurable reduction in standing privileges and audit findings related to access governance.

Contributing your strengths: your qualifications

  • Bachelor’s degree in IT, Cyber Security, or equivalent experience Cybersecurity certifications are advantageous: CISSP, CISM, Microsoft Endpoint-related certifications, or comparable alternatives.
  • Fluency in English is a must. Skills in German and French are a plus.
  • Knowledge of modern security frameworks (MITRE ATT&CK, NIST CSF, ISO 27001).
  • Experience implementing KPIs and running continual service improvement processes. Required skills and/or experience: Strong Product Owner experience in IAM, IGA, or PAM domains.
  • Deep understanding of Identity Governance concepts: o Joiner Mover Leaver (JML) o Access reviews & certifications o Role and entitlement modelling (RBAC / PBAC).
  • Strong knowledge of Privileged Access Management: o Vaulting & credential rotation o Just in time access & MFA enforcement o Privileged session monitoring.
  • Ability to balance risk, compliance, and delivery pragmatism in complex enterprises. 

 

Preferred: 

  • Experience with IGA and PAM tooling in large, multi domain environments.
  • Exposure to non human identity governance (service accounts, automation, APIs).
  • Experience operating in regulated environments (ISO 27001, NIS2).
  • Strong collaboration experience with SOC and audit teams.

Our commitment to you: your benefits

At Liebherr, we believe people are at the heart of our success. As part of our international team, you’ll enjoy a secure role in a family-owned company that values innovation, collaboration, and long-term career growth:

 

  • Competitive compensation and benefits package that recognizes your expertise.
  • Flexible and hybrid working model.
  • Creative freedom and responsibility to shape processes and solutions in our global transformation.
  • Continuous learning and development with tailored training and certification opportunities.
  • Meal vouchers.
  • Life and accident insurance.
  • Option to include a premium private health insurance package as part of the flexible remuneration.
  • A safe, stable and international workplace within a trusted family business that invests in people.

 

Please note that we can only accept applications submitted through our website, using the online application form.

 

Please note that we do not accept applications via recruitment agencies for this position.

 

Have we awoken your interest? Then we look forward to receiving your online application. If you have any questions, please contact Karoliina Rissanen.

One Passion. Many Opportunities.

The company

Liebherr is a family-run technology company that is not only one of the largest construction machinery manufacturers in the world, but also offers high-quality, user-oriented products and services in many other areas. The Group employs nearly 50,000 people in more than 140 companies on all continents.  

Location

Liebherr IT Shared Service Centre Ibérica, S.L.

Parque Norte. Alamo building Serrano Galvache, 56

28033 Madrid

Spain (ES)

Contact

Karoliina Rissanen

karoliina.rissanen@liebherr.com

Apply now »