Designing IAM PKI Architecture for an Automotive Client
A global automotive safety leader needed a secure, scalable IAM and PKI architecture to support digital transformation and regulatory compliance. We delivered a tailored solution across 4,000+ endpoints - enhancing security, automating identity processes, and enabling sustainable, future-ready infrastructure.
Situation
A global leader in automotive safety systems, required a complete redesign of its Identity and Access Management (IAM) and Public Key Infrastructure (PKI) architecture to support its digital transformation initiatives, primarily the modernisation of IT and OT security in an industry faced with the increasing risk of cyberattacks on critical infrastructure.
With increasing demands for secure access across cloud and on-premises environments, and a need for strict compliance with automotive industry standards, the client sought specialist expertise to design and implement a scalable, secure and compliant IAM and PKI architecture that could serve both current and future business needs.
The project involved over 4,000 endpoints across multiple locations, requiring a structured and efficient approach to avoid service disruption.
Approach
Interval deployed a highly experienced IAM & PKI Architect with deep expertise across identity management, certificate services and regulatory compliance in highly regulated industries. The resource had previously been deployed to our client on a different project and was specifically requested following the excellent results delivered.
Our architect led the end-to-end design and implementation of a modernised IAM and PKI ecosystem. This included defining identity governance models, implementing zero trust principles, and designing certificate lifecycle management processes. The solution integrated with Azure AD, on-prem Active Directory, and hybrid cloud platforms, ensuring seamless access management across the client's global infrastructure.
We automated key components using Microsoft Identity Manager (MIM), HashiCorp Vault, and custom scripting, and aligned the project with standards including ISO 27001, TISAX and NIST guidelines. Comprehensive technical documentation and handover materials were delivered to enable long-term operational sustainability.
Outcomes
Key outcomes included:
Delivered a secure, scalable IAM and PKI architecture tailored to the client’s hybrid infrastructure
Strengthened the client's security posture through identity federation, role-based access control (RBAC) and certificate automation
Improved operational efficiency by automating identity lifecycle and certificate issuance processes
Ensured compliance with automotive industry standards (TISAX, ISO 27001) and data protection regulations
Provided technical training, operational runbooks and full knowledge transfer to the client’s internal teams
Enabled the client to accelerate its cloud transformation and future-proof its identity and security frameworks
Interval’s support ensured the client could protect critical assets and maintain regulatory compliance while scaling securely into new digital initiatives.