You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
Zakariae LebriqZL

Zakariae Lebriq

IAM/IAG/PAM/PSM Consultant

€650/day
Paris, FR
8-15 years
Keycloak
OpenAM
Microsoft Entra ID
Cloudflare
IAM

Average response time: 1 hour

Freelancer profile translated to English.
Back to original language

About Zakariae

With over nine years of experience in technical and cybersecurity fields, I possess in-depth expertise in Identity & Access Management (IAM), covering both technical and functional aspects.

My career, which began in purely technical roles before evolving into security and architecture positions, has provided me with a comprehensive understanding of information systems. This versatility allows me to quickly grasp business needs, integrate new IAM technologies (On-prem, Cloud, CIAM, PAM, IGA...), and adapt effectively to any type of environment.

Rigorous, autonomous, and results-oriented, I focus on designing secure, scalable solutions aligned with the regulatory and operational requirements of organizations.

  • French

    Native or bilingual

  • English

    Native or bilingual

Can work on-site
Paris (up to 50km)

Experience

  • SNCF
    Senior IAM / Architect Consultant
    TRANSPORTATION
    January 2024 - November 2025 (1 year and 10 months)
    Lyon, France
    ◼ Identify and anticipate SNCF's IAM needs
    ◼ Migrate from OpenAm version 6.5.2.2 to version 7.5.1.
    ◼ Improve IAM architecture by incorporating modern tools while optimizing costs.
    ◼ Study SNCF's FidNextGen project
    ◼ Monitor and apply new security requirements related to our infrastructure evolution.
    ◼ Participate in regulatory compliance assessments and respond to external audits.
    ◼ Identify and correct compliance gaps in IAM systems.
    ◼ Prepare and deploy new releases on our EKS and AKS stacks.
    ◼ Support users and technical teams in using IAM solutions.
    ◼ Train run teams on best practices for identity and access management.
    ◼ Raise awareness among employees and end-users about identity security risks.
    ◼ Evaluate new technologies and trends, such as passwordless authentication.
    ◼ etc

    Technical Environment:

    OpenAM, OpenDS, Keycloak, Entra ID, Cloudflare, Cortex, Inwebo, AWS, Azure, EKS, AKS, HashiCorp Vault, LDAP, shell, python, Javascript, Docker, Ansible, Terraform, Jenkins, Datadog, Octoperf.
    PingAM Keycloak Microsoft Entra ID Cloudflare Amazon Web Services
  • bnpparibas
    IAM/PAM/PSM Consultant
    BANKING AND INSURANCE
    October 2022 - December 2023 (1 year and 2 months)
    Paris, France
    ◼ Authorization management
    ◼ Management of reusable technical accounts
    ◼ Participation in the "disaster recovery" exercise
    ◼ Design of sudo rights on IDM
    ◼ L3 Support (technical and functional)
    ◼ Implementation of new requirements
    ◼ Ensure SAAM service availability
    ◼ Preparation for migration of PMs, PTs, and authorizations to SailPoint

    Technical Environment:

    Broadcom, SailPoint, Active Directory, IDM, Cyberark, W4, SAML, Java, Oracle.
    Sailpoint Active Directory Cyberark Broadcom Java
  • amundi
    IAM Consultant
    BANKING AND INSURANCE
    May 2020 - September 2022 (2 years and 5 months)
    Paris, France
    ◼ Monitoring new features, upgrades, and lifecycle management of Keycloak
    ◼ Development of custom functionalities and migration scripts
    ◼ Support for external clients
    ◼ Automation of repetitive tasks
    ◼ SSO configuration via OIDC and SAML
    ◼ MFA configuration via INWEBO
    ◼ Kerberos configuration (SPNEGO)
    ◼ Support for technical and business teams internationally
    ◼ Automation of compliance checks via OPA
    ◼ Preparation for audits
    ◼ Validation of security policies with CISO and RSI teams
    ◼ Management of IAM scope documentation and best practices

    Technical Environment:

    Keycloak, Ldap, Google Captcha, JWT, SAML, OIDC, Kerberos, SSO, Java, Python, Js, Docker, Git, Ansible, Jenkins, Wildfly, K8s, Argocd, Artifactory, BIG-IP/F5, Apache, Witbe, Grafana, Splunk, OpenSvc, Centreon.
    Keycloak LDAP SAML OIDC Kubernetes
Check out Zakariae's experience

Recommendations

Be the first to recommend Zakariae

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • Master 2 in apprenticeship (MIAGE)
    Université Paris Descartes
    2016
    ◼Sécurité du SI ◼Développement des applications web et mobile ◼Administration des réseaux ◼Administration des systèmes d'exploitation ◼Administration des bases de données SQL et NoSQL ◼Gestion des projets et conduite de changements ◼Gouvernance et urbanisation des SI ◼Analyse décisionnelle de données ◼Etudes financières
  • L3 Computer Science
    Université Paris Descartes
    2014
    ◼Sécurité du SI ◼Développement des applications ◼Administration des réseaux ◼Administration des systèmes ◼Administration des bases de données ◼Intelligence artificielle ◼Traitement d'image ◼Gestion des projets

Skill set

Kerberos
LDAP
IDM
PSM
PAM
Sailpoint
Splunk
AWS
Microsoft Azure
Cortex XDR
Cyberark
Active Directory
OIDC
SAML2
MFA
Java
Python
JavaScript
Kubernetes
Docker
Ansible
Terraform
Security Awareness Training
CI/CD Management
Least Privilege Principles
Data Privacy (GDPR, CCPA)
Cybersecurity Incident Management
Risk and Vulnerability Assessment
Threat Intelligence

Categories