Job Overview:
Lead the development and implementation of robust Identity and Access Management (IAM) strategies and architectures
Ensure compliance with security policies, regulations, and operational needs
Optimize access management processes across the organization
Key Responsibilities:
Design, implement, and maintain comprehensive IAM programs, including Identity Governance and Administration (IGA), Privileged Access Management (PAM), and Access
Management (AM)
Integrate IAM systems with cloud and on-premises applications, directories, and other IT services
Develop and enforce role-based access control (RBAC) policies and least-privilege/zero-trust access principles
Implement and maintain automated provisioning, de-provisioning, and role management processes
Manage systems for Single Sign-On (SSO), Multi-Factor Authentication (MFA), and password management
Lead IAM-related projects, collaborating with cross-functional teams (e.g., Technology, DevOps, Security)
Mentor junior engineers and provide technical guidance to team members
Streamline IAM processes through automation and advanced technologies
Enforce IAM policies, standards, and controls to address related threats and vulnerabilities
Collaborate with senior leadership to evaluate and recommend IAM best practices for enterprise security strategies
Stay current with industry trends and emerging technologies to recommend enhancements
Collaborate with internal teams to assess and optimize IAM-related workflows and processes
Work directly with vendors to identify and implement improvements
Serve as a technical solution architect for IAM solutions, designing practical and effective solutions
Drive initiatives to increase the reliability and efficiency of IAM operations
Provide thought leadership and best practices for IAM implementations
Facilitate training and knowledge transfer sessions on IAM utilization
Identify opportunities to simplify architecture and workflows to enhance user experience and enable rapid innovation in workforce IAM
Requirements:
Bachelor's degree in Computer Science, Information Technology, or related field
3+ years of experience in IAM or related IT security roles
Strong expertise in IAM concepts, RBAC, and protocols (SAML, OAuth, OIDC)
Hands-on experience with leading IGA platforms
Proficiency in development tools and scripting languages (Java, SQL)
Experience integrating IAM solutions with cloud platforms (AWS, Azure, Google Cloud Platform)
Strong understanding of regulatory compliance requirements (e.g., SOX, HIPAA, GDPR)
Advanced understanding of business processes, internal control risk management, and IT controls
Ability to identify and evaluate complex business and technology risks
Experience with access certification, role management, and segregation of duties (SoD) controls
Excellent analytical, problem-solving, and communication skills
Ability to navigate complex, multi-stakeholder environments with a collaborative mindset
Relevant certifications (e.g., CISSP, CISM, CGEIT) preferred
Desired Skills:
Experience with cloud-based identity solutions and integrations
Knowledge of additional scripting languages (e.g., Java, PowerShell, Python, Go) for automation
Familiarity with SIEM tools and security analytics
Understanding of privileged access management (PAM) concepts and tools
Experience in executing advanced services and supervising staff in delivering basic services