Global IT Senior Specialist IAM Operations

Campari Group today is a major player in the global branded spirits industry, with a portfolio of over 50 premium and super premium brands, marketed and distributed in over 190 markets around the world, with leading positions in Europe and the Americas.

Headquartered in Milan, Italy, Campari Group owns 25 plants worldwide and has its own distribution network in 26 countries, and employs approximately 4,700 people.

Shares of the parent company Davide Campari - Milano N.V. are listed on the Italian Stock Exchange since 2001. Campari Group is today the sixth-largest player worldwide in the premium spirits industry.

General Description of the Role

The Global IT Senior Specialist IAM Operations is responsible for the day‑to‑day operational execution and management of the end‑to‑end Joiner, Mover and Leaver (JML) lifecycle across Campari. The role ensures that identity, access, and authorization activities are delivered accurately, consistently, and in line with defined policies, controls, and service levels, enabling new joiners to be productive from day one and ensuring timely and complete access changes for movers and leavers.

Operating within the Run / Service Delivery model, this role leads and manages the IAM L1–L2 operations team, providing direction, prioritisation, and escalation management for daily IAM activities. The role oversees operational support for directory and authorization services, access requests and exceptions, incident resolution, and support for access certification campaigns, working closely with HR, Service Delivery teams, and Cyber Security (including IAM) to ensure smooth operational hand‑offs and service continuity.

The role also partners with the Software Asset Management (SAM) team to optimise licensing through IAM processes. By leveraging identity lifecycle events, roles, and attributes, the role supports accurate licence assignment, timely reclamation for movers and leavers, and reliable reporting to enable cost optimisation and audit readiness

Mission/Objectives 

Own the operational outcomes of the end‑to‑end Joiner, Mover and Leaver (JML) lifecycle across Campari, ensuring consistent, timely, and secure identity and access changes.

Be accountable for the quality and reliability of IAM run services, ensuring new joiners are enabled from day one and that access for movers and leavers is updated or removed in line with Campari policies and security requirements.

Act as the primary operational owner for IAM within the Service Delivery model, ensuring effective collaboration with Cyber Security, HR, and other IT functions.

Enable audit readiness and licence optimisation through well‑run IAM operational processes and accurate execution of identity lifecycle events.

Drive continuous improvement of IAM run processes and automation within the approved IAM operating model.

Key Responsibilities and Activities

• Ensure the day‑to‑day operational delivery of IAM services, ensuring all Joiner, Mover and Leaver (JML) activities are executed accurately, consistently, and within agreed service levels, based on approved IAM designs and processes.
• Manage and govern the third‑party service provider delivering IAM L1–L2 operational support, including task prioritisation, escalation handling, SLA performance management, service reporting, and continuous improvement within the agreed service scope.
• Act as the primary operational coordination point across HR systems, Identity Governance platforms, directory services, ITSM tools, and downstream applications, ensuring run‑time execution in line with approved IAM designs and service models.
• Execute and oversee IAM run activities within SailPoint, including lifecycle event processing, birthright access execution, access request fulfilment, certification campaign operations, exception handling, and data quality management, in line with access models and configurations defined by the IAM Lead and Architect.
• Manage IAM‑related operational incidents and escalations, ensuring timely resolution of provisioning failures, identity synchronisation issues, and access exceptions, and coordinating with platform owners and Cyber Security teams where changes or design decisions are required.
• Ensure effective operational support for access certification campaigns, including readiness checks, issue resolution, progress tracking, and coordination with business access reviewers, without owning certification policy or control design.
• Monitor and report on IAM operational KPIs, including time‑to‑provision, time‑to‑revoke, failed provisioning rates, access exceptions, and certification completion, providing regular service performance reporting to relevant stakeholders.
• Support audit and assurance activities by ensuring IAM operational processes are executed as designed and that evidence can be produced from IAM and ITSM systems, in collaboration with Cyber Security and Risk & Compliance teams.
• Partner with the Software Asset Management (SAM) team to support licence optimisation by leveraging IAM lifecycle events, roles, and attributes to enable accurate licence assignment, timely licence reclamation for movers and leavers, and reliable operational reporting.
• Identify and drive operational process improvements and automation opportunities within the Run scope, working with IAM platform owners, Cyber Security, and service providers to reduce manual effort, improve service quality, and lower operational risk.
• Coordinate operational hand‑offs with the Cyber Security team for privileged access onboarding and offboarding, ensuring privileged identities are provisioned and de‑provisioned in line with defined processes and approved PAM designs.

Key Relationships

Internal: Global Cyber Security (IGA/PAM), HR IT (SuccessFactors), ITSM/ServiceNow, Directory Services (AD/Entra ID), Application Owners, Regional IT Directors, IT Finance/SAM.

External:  3rd party service delivery vendors (Capgemini, Hemmersbach, IBM)

Experience & Education

• Prior experience of using and managing SailPoint as part of JML is mandatory
• Bachelor’s degree in Computer Science or similar technology
• Minimum 5 years’ experience handling service delivery and project related activities either globally or regionally
• Technical understanding of Active Directory, SAP, O365
• Experience managing or supporting end-to-end Joiner, Mover and Leaver (JML) processes within a global organization.
• Hands‑on SailPoint IGA operational experience, including lifecycle event execution, access request fulfilment, certification campaign support, and connector operations within approved access models and configurations.
• Working knowledge of SuccessFactors (or similar HRIS) as an authoritative source for identities.
• Directory services expertise: Active Directory & Entra ID (groups, roles, conditional access awareness).

Required Skills & Traits

• Analytical problem solving of technical and SOP related issues
• Self-managing, ability to prioritize activities based on urgency and business or security impact
• Management of 3rd party and outsourced vendors for service delivery
• Relationship management of international 3rd party vendors and internal stakeholders located
• IGA proficiency (SailPoint): configuration, troubleshooting, certifications, and data quality management.

Additional Requirements

Up to 10% International travel time

Our commitment to Diversity & Inclusion:

At Campari Group we believe in building more value together, thus we see diversity in all forms as a source of enrichment. Our employment policies and practices ensure that we are committed to providing equal employment opportunities in all aspects of employment without regard to any individual’s race, religion, creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, sexual orientation, gender identity or characteristics or expression, political affiliation or activity, age, veteran status, citizenship, or any other characteristic protected by law.

Campari Group believes that fair compensation and equal opportunities are crucial for employees’ well-being, empowerment, and engagement.  Our efforts to ensure fair pay have earned us the Fair Pay Certification by Fair Pay Workplace, an independent organization dedicated to dismantling pay disparities based on gender, race and their intersection.

Note to applicants:

Your application will be assessed based on your abilities, expertise, general knowledge and experience, not because of any confidential, proprietary or trade secret information you may possess. You must not disclose to Campari Group any such information. In the event that you are asked a question that cannot be answered without disclosure of any confidential, proprietary or trade secret information (including from a current or prior employer or their vendors or customers), you must decline to answer the question.

Notice to third party agencies:

Please refrain from cold-calling or emailing our executive leadership team or the HR community directly. The Talent Acquisition department manages centralized recruiting operations globally, including the selection and management of external suppliers. Currently, our preferred supplier list is at full capacity. To ensure we have your information on file for future consideration, we kindly request that you complete the online form provided here.