Dennis Kast

Embedded fractional IAM leadership engagement for a regulated alternative investment manager operating under DORA, BaFin BAIT and GDPR. Took full operational and strategic ownership of the IAM function while simultaneously driving the DORA compliance project stream | Team: 4–8 cross-site (EU). IAM Team Leadership: Led and coordinated a cross-functional IAM team across two sites (Frankfurt/Hamburg) — coaching, prioritization, and performance management of 2–4 direct reports alongside a hands-on operational role. Identity Lifecycle Operations Designed and enforced Joiner Mover-Leaver processes; managed RBAC/SoD models, access reviews and periodic recertifications for 1500+ identities across regulated financial environments. IAM Tooling & Implementation: Hands-on delivery of Okta IGA (250+ SSO/SCIM integrations), EntraID Conditional Access, MFA enforcement, Privileged Access Management, and service account governance. Directory Services & Federation: EntraID / AD administration, SAML/OIDC/OAuth federation architecture, and directory synchronisation across hybrid cloud and on-premise environments. DORA Project Lead: Led IAM-stream of DORA implementation programme — gap analysis, ICT risk framework mapping, third-party provider controls, and board-level reporting on ICT resilience for financial services client.

Strategic IAM Governance & Risk Reduction (Okta | Google IdP) Identity Consolidation Strategy: Directed a high-impact IAM migration from Okta to Google Cloud Identity, aiming to reduce supply chain complexity and operational costs while maintaining strict compliance standards. Zero-Trust & Access Control: Redesigned the authentication architecture to enforce Least Privilege principles and context-aware access, aligning the new Google IdP setup with ISO 27001 access control controls (A.9). Migration Risk Management: Spearheaded the gap analysis and migration planning, mitigating risks of data loss or service interruption through meticulous rollback strategies and parallel testing phases. Seamless Integration: Configured advanced Directory Sync and SAML/OIDC integrations for third-party apps, ensuring a seamless yet secure user experience (UX) that minimized shadow IT risks.

Translating compliance into resilience: We help hospitals, eHealth, fintech, and regulated financial services turn regulatory requirements (DORA, NIS-2) into pragmatic IT security architectures — zero red tape, full auditability.