identype.com

Peter Pfeifer · Independent Advisor

Identity Security Advisory for Financial Enterprises

in the European Union

European Union

European Union

I help large organisations design, reform and run their Identity Security domain — not as a product implementer, but as an independent architect and program advisor who understands the regulatory environment as well as the technical reality.

Download Advisory Profile (PDF) Get in Touch
30 years in IT 20 years in IT Security 10 years in Identity Security

Why this matters · 2024–2025 data

Identity is no longer one IT topic among many. It is the topic.

§ 01 — What I do

Six situations where clients call me.

Most security-related programs are not born from positive motivation. They are born from a crisis — an audit, regulatory pressure, an incident, or the failure of a previous project. Below are the situations in which clients typically come to me.

01

Audit-driven Remediation

Internal audit or the regulator has flagged material weaknesses. You have a list of findings and a deadline — but no clear path. I will analyse, prioritise, design the remediation plan and oversee delivery.

02

Identity Fabric Readiness Assessment

Your IGA platform runs, but governance does not. I will deliver a structured gap report with prioritised findings, a risk map and a costed roadmap. 3–6 weeks to a board-ready output.

03

Architecture & Strategy

Everyone pulls in a different direction. I will design a vendor-neutral target state architecture grounded in your business requirements and the regulatory context — one that holds up before the board and the auditor.

04

Vendor-Neutral Selection Support

Choosing between IGA vendors based on demos and decks. I will prepare the RFP, scoring criteria, PoC oversight and a build vs. buy analysis. No partner agreements, no placement fees.

05

Regulatory Impact Assessment

NIS2, DORA, ECB requirements are clear in demand, unclear in detail. I will translate them into concrete IAM implementation steps, framed to hold up before the regulator — not just the IT team.

06

Fractional Program Leadership

Your IGA transformation needs a senior leader, not another project manager. I will take on the program lead role on a retainer basis. Faster and cheaper than a hire.

See full advisory profile

§ 02 — Who I work with

A specific client profile.

My engagement model is calibrated for regulated, large, identity-mature organisations. Below is a quick filter — if you are outside it, I am most likely not the right partner.

Sector
Primarily banking, insurance and financial groups — regulated environments are my home turf. Also: large regulated organisations in energy, telco and government.
Size
Enterprise — 5,000+ employees, with an existing IAM/IGA program or a clear intent to build one.
Region
AT  ·  CZ / SK  ·  DE  ·  HR / SI / RS  ·  RO  ·  HU  ·  PL
Ideal moment
Post-audit, pre vendor selection, mid-transformation — or anywhere an Identity Fabric / IGA program needs an independent perspective and experienced leadership.

§ 03 — Why me

Why me, and not someone else.

Six structural reasons. None of them is a marketing claim — they describe how my practice is set up and what that means for the work.

01

Entire career on the client side

I have never worked for a vendor or a systems integrator. I have no reason to recommend a particular product — I will recommend what genuinely solves your situation.

02

Architect and program leader in one person

Most consultants are one or the other. Architects design elegant target states but cannot run a program. Program managers deliver projects but lack architectural depth. I combine both.

03

The reality of a large financial conglomerate

I have built and operated an IGA program for 50,000+ identities across 5 countries. I know where commercial products fall short and where the hidden costs sit.

04

Regulatory context is not a foreign language

NIS2, DORA, ECB, FMA, ČNB, NBS — I have worked in this environment for 10 years. I frame solutions so they hold up before the regulator, not just before the IT team.

05

I communicate across levels

I speak with executive management and with technical experts alike. Cross-organisational buy-in matters as much as technical correctness.

06

Independent — no conflicts of interest

No partner agreements with vendors. No placement fees. My only interest is the outcome for the client.

§ 04 — Reference experience

Selected, anonymised engagements.

Over the past three decades, I have led and delivered foundational programs at the largest banking institutions in Central and Eastern Europe. The summaries below are anonymised — full references available on request.

Block 01

IGA Consolidation Program, CEE Banking Group

Designed the consolidation of the IGA domain at the largest banking group in Central and Eastern Europe. Defined the target architecture, drove the transformation program. Successfully rolled out IGA platforms in 3 banks of the group; currently operating across 5 banks. Built and led the cross-functional agile team responsible for in-house IGA platform development.

50,000+ identities  ·  5 countries  ·  AT · SK · RO · HR · RS

Block 02

Enterprise Architecture Practice, Slovakia's Largest Bank

Established Enterprise Architecture as a core capability at Slovakia's largest bank. Introduced the EA framework, defined the target architecture, applied EA across all key transformation initiatives. Founded the enterprise architects' community in Slovakia.

Block 03

IT Operational Excellence

Following the core banking migration, was part of the team that defined and rolled out IT Operational Excellence at Slovakia's largest bank — operating processes for incident prevention and resolution, plus crisis communication patterns.

Block 04

Core Banking Transformation, Crisis Management

Took over a complex core banking replacement program in its most critical phase as crisis manager. Successfully delivered performance management and tuning across the entire application portfolio — core and surrounding legacy systems.

§ 05 — Contact

Let's talk.

Whether you are facing a concrete Identity Security challenge or you simply want to compare notes, feel free to reach out. The easiest way is a short email — I read all of them personally and reply.

Email peter@identype.com
LinkedIn linkedin.com/in/peterpfeifer
Based in Bratislava, Slovakia