This website uses cookies to ensure you get the best experience.

Chalhoub Group and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics and marketing purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, which is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor

These cookies are used to make advertising messages more relevant to you. In some cases, they also deliver additional functions on the site.

Vendors Youtube, Linkedin, Meta
Skip to main content
TECH · Dubai

Lead, ERP Identity & Access Management

INSPIRE | EXHILARATE | DELIGHT

For over seven decades, Chalhoub Group has been a partner and creator of luxury experiences in the Middle East. In its pursuit to excel as a hybrid luxury retailer, the Group has curated a portfolio of over 10 owned brands and strengthened its distribution and marketing expertise for over 400 international names across luxury fashion, beauty, jewellery, watches, eyewear, and art de vivre categories.

Every step at Chalhoub Group is taken to build a future where luxury dreams become reality — bridging cultures and crafting memorable experiences for our consumers. Be it by constantly reinventing itself, committing to innovation, or embracing new technologies, the Group is shaping the future of luxury retail. It delivers seamless omnichannel experiences across more than 950 stores, online platforms, and mobile apps. Driving this innovation journey is The Greenhouse — the Group’s innovation hub, incubator, and accelerator for startups and emerging businesses, regionally and globally.

Chalhoub Group fosters a people-at-heart culture rooted in diversity, equity, and inclusion, and a workplace catalysed by forward thinking and future-proofing. Today, it brings together over 16,000 talented professionals across eight countries in the Middle East, with a presence in LATAM. Their collective efforts have earned the Group the Great Place to Work® certification in several markets.

Sustainability is at the core of the Group’s strategy, guided by a clear commitment to people, partners, and the planet. Chalhoub Group is proud to be a member of the United Nations Global Compact, a signatory of the Women’s Empowerment Principles, and to have pledged to reach Net Zero by 2040.

Role Purpose

This Identity & Access Management role is responsible for providing technical leadership and ensuring the successful delivery of the IAM workstream within the broader Transformation program.

The role focuses on developing and maintaining a robust IAM strategy aligned with organizational security policies and the specific requirements of SAP environments, including configuring and customizing SAP IAM solutions, integrating IAM services with SAP modules, and ensuring adherence to access governance best practices. Key responsibilities include managing the full user identity lifecycle from onboarding to offboarding, implementing advanced authentication mechanisms, leading access reviews and compliance audits, and overseeing the migration of legacy access controls into SAP systems, particularly SAP S/4HANA. As the role works closely with SAP IAM solutions, prior hands-on experience with SAP IAM and S/4HANA integration is essential.

The position also requires close collaboration with functional technology streams to ensure business requirements and cross-stream dependencies are effectively captured and managed within the IAM scope.

Overall, the role demands strong ERP and enterprise systems knowledge, leadership capability, and excellent communication skills to effectively influence cross-functional teams, stakeholders, and external vendors.

What you'll be doing  
Technical skills and experience

All of the below are assumed to be in collaboration/cooperation with the System Integrator:

Identify & Access Management Strategy Development:

  • Develop and define the overall Identify & Access Management strategy for the ERP transformation programme, ensuring alignment with project objectives and timelines.

  • Design and implement a robust automated Identify & Access Management framework tailored to the ERP system’s specific requirements.

IAM Strategy and Framework Development:

  • Develop and maintain a comprehensive IAM strategy and framework that aligns with the ERP transformation objectives and overall security policies.

  • Ensure the IAM framework accommodates user provisioning, role-based access control, identity governance, and compliance requirements.

  • Develop and deliver training programs on IAM policies and tools to programme team members to drive awareness, and super user groups to drive change management and adoption

Role Definition and Access Control:

  • Work with business and IT stakeholders to define and maintain user roles and access permissions within the ERP system.

  • Coordinate with other project leads (e.g., Data Migration Lead, Integration Lead) to ensure integration points and dependencies are appropriately tested.

  • Ensure that through the lifecycle of solution design, build and test, this role works closely with functional tech leaders on the programme to ensure appropriate role and access management is embedded in the functional designs and implementations

  • Ensure roles are clearly defined, documented, and aligned with business functions and security best practices.

Identity Lifecycle Management:

  • Oversee the processes for user identity lifecycle management, including onboarding, modification, and offboarding of user access.

  • Ensure efficient, secure, and compliant handling of user identities and access rights throughout their lifecycle.

Authentication and Authorization Technologies:

  • Design and configure SAP Identify & Access Management module and toolset, ensuring alignment ot fit to standard and IAM best practices

  • Implement features such as single sign-on (SSO), multi-factor authentication (MFA), and advanced risk-based authentication within the SAP environment.

  • Stay informed about SAP security advisories and patches relevant to IAM components.

  • Ensure timely application of security patches to protect against vulnerabilities within the SAP environment.

Review and potential migration of Legacy Access Controls:

  • Review legacy access controls in place and identify key changes needed to adopt SAP ERP effectively

  • Oversee the migration of existing access controls and user data from legacy systems to the SAP IAM system.

  • Ensure that all approved and agreed legacy access permissions are accurately translated into the new system without compromising security or operational efficiency.

User Access Reviews and Compliance Audits:

  • Conduct regular user access reviews and audits to ensure compliance with internal policies and external regulations.

  • Address any audit findings promptly and refine IAM practices to enhance security and compliance.

Integration of IAM Tools:

  • Lead the Integration of SAP IAM with other IT systems and applications within the organization to ensure seamless security operations (e.g. SOC, SIEM solutions)

  • Collaborate with IT infrastructure and BAU teams to ensure that IAM tools are effectively supported and maintained.

Incident Response and Issue Resolution:

  • Lead the response to IAM-related security incidents and breaches, coordinating with cybersecurity teams to mitigate risks.

  • Provide expert guidance and troubleshooting support for IAM issues reported by users or detected by monitoring systems.

Reporting and Metrics:

  • Develop and maintain IAM metrics to measure the effectiveness and efficiency of IAM processes.

  • Report on IAM status and issues to senior management, providing insights and recommendations for improvements.

What you’ll need to succeed  

Technical skills:

  • Strong understanding of business processes and how they are supported by ERP systems.

  • Experience working with ERP and enterprise systems is mandatory, in design, deployment, testing and support

  • Experience working with SAP is mandatory for this role – see above on IAM experience expectations

  • Experience managing large hybrid teams comprised of internal and external resources

  • Experience managing external vendors to a budget / target and ensuring close scope management

  • Minimum of 8-10 years of experience in technology implementation and management.

  • Proven experience as a technical lead or similar role in large-scale transformation program

Behavioural skills and certification:

  • Strong leadership and team management abilities

  • Excellent communication and interpersonal skills

  • Problem-solving and analytical skills

  • Ability to work effectively with cross-functional teams and stakeholders.

  • Detail-oriented with a strong focus on quality.

  • Proactive and self-motivated with a strong sense of ownership.

  • Adaptable and able to thrive in a fast-paced, dynamic environment.

  • Committed to continuous learning and professional development.

Education and Professional Certification:

  • Bachelor’s degree in Information Technology, Business Administration, or a related field.

  • Relevant certifications (e.g., PMP, ITIL, ERP certifications) is a plus

What we can offer you  

With us, you will turn your aspirations into reality.  We will help shape your journey through enriching experiences, learning and development opportunities and exposure to different assignments within your role or through internal mobility. Our Group offers diverse career paths for those who are extraordinary, every day.  

We recognise the value that you bring, and we strive to provide a competitive benefits package which includes health care, child education contribution, remote and flexible working policies as well as exclusive employee discounts.  

Using GenAI in Your Application Process

To support a fair and consistent experience for all candidates, we ask that assessments and interviews are completed independently and without assistance from generative AI tools. This ensures we understand your strengths, your thinking, and how you approach real situations.
You can find more information through:

We Invite All Applicants to Apply

It Takes Diversity Of Thought, Culture, Background, Differing Abilities and Perspectives to truly Inspire, Exhilarate and Delight our customers. At Chalhoub Group, we are committed to inclusion and diversity.

We welcome all applicants to apply and be part of our exciting future. We ensure equal opportunity for all our applicants without regard to gender, age, race, religion, national origin or disability status.

Department
TECH
Locations
Dubai
Picture of Maya Batrouni
Contact Maya Batrouni Talent Acquisition Manager – PEOPLE & CULTURE

CURRENT JOB OPENINGS

More jobs

Dubai

DIVERSITY

With our people at heart, we believe in building a diverse work environment that nurtures and celebrates people’s differences, offers equal opportunities to all and ensures that our team members have a sense of belonging.

Read more

TECH · Dubai

Lead, ERP Identity & Access Management

Loading application form

Already working at Chalhoub Group?

Let’s recruit together and find your next colleague.

Applicant tracking system by Teamtailor