I help enterprises and government organizations design, implement and govern Identity and Access Management programs that reduce risk, satisfy auditors and let people work without friction — with a strong focus on business needs, process and usability.
I'm Georg Grabner, an independent architect and consultant who has worked in IT for more than 30 years — the last 20 specializing in Identity and Access Management. I help organizations with the architecture, design and implementation of security solutions and processes, working across the full IAM lifecycle from strategy through delivery and day-two operations.
My approach keeps a strong focus on business needs, procedures and usability, backed by a solid foundation in IT infrastructure and cloud. I work vendor-neutral, so my recommendations are driven by your requirements and risk profile rather than a single product line — across regulated industries, government and large enterprises.
I hold an MSc in Cyber Security (Pass with Merit) and am completing an MSc in Artificial Intelligence, alongside CISSP, Microsoft Cybersecurity & Azure Solutions Architect Expert, SABSA and ArchiMate certifications.
Engagements range from short advisory sprints to hands-on, end-to-end programme delivery. A typical starting point is an assessment of where you are today and where the biggest risks and quick wins sit.
Maturity assessments, target architectures and pragmatic roadmaps that align identity investment with business and compliance goals.
Access certification, role mining, segregation-of-duties and joiner-mover-leaver automation across your application landscape.
Securing administrative and service accounts: vaulting, session control, just-in-time access and least-privilege models.
Single sign-on, MFA and identity federation (SAML, OIDC, SCIM) that improve security and the user experience at the same time.
Designing access policies and conditional controls around the principle that trust is never assumed and always verified.
Hands-on implementation support, vendor selection, and preparing IAM controls and evidence for audit and regulatory review.
More than two decades architecting and delivering IAM programmes for government, financial services and large enterprises.
Translating functional requirements into clear functional and technical designs, turning complex architectures into practical building blocks, and guiding implementation of ICT components — including configuration documentation, impact analyses, risk assessments and third-line support.
Led the onboarding of DevOps teams to CyberArk, coordinating the full technical integration of 46 applications. Ran privilege and account inventories, delivered user training, and contributed to compliance reporting to APG's Executive Board, AFM and DNB.
Established IAM policies and a maturity roadmap, and designed B2B identity for external partners on Entra ID and SAP BTP. Heavy focus on Microsoft Entra, Identity Governance, API security (OAuth, OIDC, SAML), Azure PIM and CyberArk in OT — plus a ZTNA vendor selection (Zscaler, Barracuda, Microsoft).
Assessed IAM maturity across technology, people and process, and built a governance roadmap. Designed an IAM solution on Entra Identity Governance and SAP SuccessFactors across a multi-cloud estate (Azure, AWS, Google Cloud) integrated with Azure PIM.
Advised clients on their IAM/PAM journey — requirements, use cases and security roadmaps — recommending solutions on CyberArk and One Identity. As Practice Lead, managed a team of five IAM professionals alongside delivery and consultancy.
Managing partner of a ten-person IAM consultancy, responsible for project delivery, project and bid management — delivering IAM programmes for clients including RvIG, ABN AMRO, Nationale Nederlanden, GreenChoice, The Student Hotel and ING Insurance Central Europe.
Earlier roles & publications: Senior infrastructure consultant at Ictivity; engineering and support roles at Lanalyst, Meldrige and Centric. Co-author of "Using Blockchain to Preserve Chain of Custody: Cloud Forensics Analysis" (35th Int'l Conference on Software Engineering & Knowledge Engineering, 2023).
Whether you're starting an IAM programme, stuck mid-implementation, or preparing for audit — get in touch and let's find the right next step.
Available for IAM architecture, advisory and interim engagements. I usually reply within one business day.