You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Mansoor AkhtarMA

Average response time: 1 hour

About Mansoor

I help organisations secure digital identities, reduce access risk, and enable business at scale through robust, well-architected Identity and Access Management (IAM) solutions. My focus is on aligning security, compliance, and user experience, ensuring that the right users have the right access to the right resources—at the right time.

I bring a practical, business-driven approach to IAM, combining deep technical expertise with a strong understanding of governance, regulatory requirements, and enterprise operating models. Whether you are modernising legacy identity systems, moving to the cloud, or strengthening Zero Trust security, I help translate IAM strategy into measurable outcomes.

I work with stakeholders across security, IT, compliance, and business teams to design and implement IAM solutions that:

Reduce identity-related security risks and attack surfaces
Improve compliance with regulations and audit requirements
Streamline user lifecycle management and access provisioning
Enable cloud adoption and digital transformation
Enhance user experience through secure, frictionless access

By focusing on identity as a foundational security control, I help organisations move from reactive access management to proactive identity governance and continuous access assurance.


I provide end-to-end IAM expertise, from strategy and roadmap definition to architecture, implementation, and optimisation. I understand how IAM fits into broader cybersecurity, Zero Trust, and enterprise architecture initiatives and ensure identity solutions support long-term business goals.

What sets me apart is my ability to bridge the gap between technical IAM controls and business needs. I speak the language of executives, auditors, and engineers alike—ensuring IAM programs are adopted, understood, and sustained.
  • English

    Native or bilingual

Can work on-site
Slough (up to 50km)

Experience

  • SecureID LTD
    CIAM / IAM Expert
    BANKING AND INSURANCE
    April 2025 - Today (1 year and 4 months)
    London, United Kingdom
    • I have extensive experience designing, implementing, and managing modern Identity and Access Management (CIAM/IAM) solutions, with a strong focus on OIDC, Auth0 and SMAL based identity platforms, cloud security, and policy-driven access control. My work spans across B2B and B2C environments, supporting scalable, secure, and user-centric authentication and authorization architectures.
    • Overall, my experience reflects strong expertise in Auth0/OIDC identity platforms, modern authentication and authorization standards, RBAC and ABAC security models, and enterprise-scale identity orchestration. I bring a balanced approach that combines security, scalability, automation, and user experience, enabling organizations to implement secure and future-ready identity solutions that support both business growth and regulatory compliance.
    • Throughout my experience, I have worked closely with security teams, application developers, architects, DevOps engineers, and business stakeholders to ensure identity solutions aligned with technical standards and business goals. I translated business requirements into secure identity architectures, provided technical guidance, and supported adoption through documentation and knowledge sharing.
    • My experience spans multiple leading IAM platforms, including Ping Identity (PingFederate, PingAM, PingDirectory, PingAccess), Auth0, Okta, Microsoft Entra ID (Azure AD), and IBM Identity and Access Management. I have successfully delivered secure, scalable, and compliant identity solutions for B2B, B2C, and workforce identity use cases, aligning technical implementations with business, security, and regulatory requirements.
    • My experience includes implementing federated identity, single sign-on (SSO), multi-factor authentication (MFA), API security, directory services, and identity governance integrations across diverse IAM technologies.
    PingFederate PingAccess PingDirectory and PingOne Enterprise PingOne MFA Ping Divinci and PingAM OpenLDAP IBM Directory Microsoft Active Directory JavaScript TypeScript Groovy OGNL Docker GitLab BitBucket Git Terraform
  • NHS Wales
    CIAM / IAM Expert
    PUBLIC SECTOR
    January 2024 - April 2025 (1 year and 3 months)
    London, United Kingdom
    • I am a senior Identity and Access Management (IAM) professional with extensive experience designing, implementing, and delivering enterprise-wide IAM strategies across healthcare, public sector, and large-scale enterprise environments. My expertise spans Microsoft Entra ID, AWS IAM (RBAC/ABAC), identity governance, directory services, cloud and hybrid identity, and modern authentication protocols, with a strong focus on Zero Trust security principles, regulatory compliance, and automation-driven efficiency.
    • I successfully delivered a company-wide Microsoft Entra ID IAM strategy, positioning Entra ID as the central identity platform for managing and securing identities for employees, partners, contractors, and customers. This strategy enabled a unified identity experience across cloud and on-premises systems, delivering secure single sign-on (SSO) to enterprise applications while enforcing strong authentication and authorization controls.
    • Centralized identity management using Entra ID for workforce and guest identities.Secure SSO for SaaS, custom web applications, APIs, and on-premises systems. Enforcement of multi-factor authentication (MFA), particularly for privileged and high-risk accounts. Implementation of granular access controls using role-based access control (RBAC) and attribute-based controls.
    • I designed and implemented Entra ID Conditional Access policies aligned with NHS Zero Trust architecture and least-privilege security standards. These policies included: Blocking legacy authentication protocols. Enforcing MFA for all users, contractors, and guest accounts. Risk-based MFA for suspicious or risky sign-ins.
    • I developed and implemented Joiner, Mover, and Leaver (JML) workflows using Entra ID Lifecycle Workflows and Graph APIs. Delivered use cases included: Pre-hire onboarding workflows, Automated onboarding of new employees, Role and group membership changes during internal moves Secure offboarding and access revocation.





    Microsoft EntraID Microsoft Azure AD Identities Life Cycle Management Multi-factor Authentication Integration and Automation
  • Fidelity International
    CIAM / IAM SME
    BANKING AND INSURANCE
    April 2021 - December 2023 (2 years and 8 months)
    London, United Kingdom
    • I have designed, implemented, and supported enterprise IAM and CIAM solutions using Ping Identity and Microsoft Entra ID, delivering secure, scalable authentication and authorization across cloud and on-premises environments. My work included implementing RBAC and ABAC models to enforce fine-grained access control and configuring ABAC within IAM Identity Center through attribute definition, identity source mapping, and access control attributes. I have implemented automated user provisioning for various applications by installing and configuring provisioning connectors integrated with PingFederate and PingOne, supporting user creation, updates, provisioning and de-provisioning.
    • I led the design and deployment of Ping Identity platforms, including PingFederate, PingAccess, PingDirectory, and PingOne MFA, delivering CIAM and IAM solutions that improved user experience, met regulatory requirements (GDPR, SOX, GPG44, GPG45), and reduced operational costs. This included configuring authentication policies, OIDC and OAuth2 token management, federation using SAML, SCIM, Kerberos, and LDAP, and integrating applications across production and non-production environments. I implemented self-service capabilities such as user registration, password change and reset, and customized login experiences using PingFederate adapters and templates. PingDirectory was configured as a centralized identity store and integrated with multiple data sources for real-time synchronization, while PingAccess was deployed to secure applications and APIs using policy-based access controls and advanced Groovy scripting. I also contributed to IAM strategy and innovation initiatives, collaborated closely with business and IT stakeholders, and delivered advanced identity solutions such as PingOne NEO proof-of-identity and digital credential verification prototypes, supporting secure, modern, and future-ready identity architectures.
    PingOne MFA Ping Divinci and PingAM PingFederate PingAccess PingDirectory and PingOne Enterprise Microsoft EntraID, Conditional access control, Access Management, Identities Governance SSO, Hybrid Identity, Role Base Access Control, MFA, Privileged Identity Management (PIM), Ping Identity, Okta, Auth0,PingAM

Recommendations

Be the first to recommend Mansoor

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • B.E Electrical Engineering
    N.E.D University of Pakistan
    B.E Electrical Engineering
  • Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM)
    Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM)

Skill set

Categories