Director, Identity and Access Management

Job Description

In this role you’ll be responsible for overseeing the strategy, design, implementation, and ongoing management of the organization's identity and access management programs. Reporting directly to the Chief Information Security Officer (CISO), the Director of IAM will lead a team of security professionals focused on delivering robust, scalable, and secure IAM solutions that align with the organization's security, compliance, and business objectives. This role involves close collaboration with other departments, including IT, HR, and Legal, to ensure seamless identity management and compliance with applicable regulatory standards.

How you’ll make an impact:

• Define and lead IAM strategy to protect Bank assets - Develop and implement a comprehensive IAM strategy to protect sensitive financial data and ensure the integrity of financial reporting.
• Lead and Inspire Team – Build and manage a diverse team of IAM personnel across both project focused and operational teams to deliver on IAM control execution and strategy.
  

What you can expect:

Strategic Leadership:

• Develop and execute the organization's IAM strategy, ensuring alignment with overall business objectives, security goals, and regulatory requirements.
• Lead the design and implementation of enterprise-wide IAM frameworks, including identity governance, authentication, and authorization processes.
• Collaborate with senior leadership, IT, and security teams to integrate IAM processes with other security initiatives and digital transformation efforts.
• Maintain relationships with second and third line stakeholders. Collaorate with these groups to align on IAM priority and risk perspectives.

Team Management:

• Manage and lead the IAM team which consists of the Identity Operations and IAM Delivery teams.
• Develop and mentor team members, fostering a culture of continuous improvement and professional growth.
• Define and manage team objectives, performance metrics, and service-level agreements (SLAs) to ensure optimal team performance and delivery of services.

IAM Operations & Tooling:

• Oversee the administration of identity lifecycle management, including user provisioning, de-provisioning, access reviews, and role-based access control (RBAC).
• Ensure the effective operation and maintenance of IAM tools, including Single Sign-On (SSO), Multi-Factor Authentication (MFA) and Privileged Access Management (PAM) solutions.
• Work closely with the IAM engineering team to ensure the continuous improvement of IAM systems, automating processes where possible to increase efficiency and security.

Governance, Risk, and Compliance:

• Establish and enforce IAM policies, standards, and procedures that align with regulatory requirements (e.g., GDPR, HIPAA, SOX).
• Conduct regular access reviews and assessments to ensure that IAM processes comply with both internal and external regulations and standards.
• Identify and address IAM-related risks, ensuring that access governance and role management are applied effectively to mitigate security threats.

Collaboration and Stakeholder Management:

• Serve as the primary point of contact for IAM-related initiatives across the organization, collaborating with IT, HR, Legal, and other business units.
• Work with external vendors and consultants as necessary to manage IAM tools, solutions, and service providers.
• Communicate IAM strategies, goals, and policies to stakeholders at all levels of the organization and ensure transparency on the program’s effectiveness and challenges.
• Present IAM strategy and Initiatives to audiences of varying levels including Board, Executive team, Role Owners and System Owners.

Project Management:

• Lead IAM-related projects, including new tool implementations, system upgrades, and process optimizations, ensuring projects are delivered on time, within scope, and on budget.
• Develop detailed roadmaps for the evolution of the IAM program in response to emerging business needs and technological advancements.

What you’ll bring:

• Degree in Computer Science, Information Security, or a related field.
• 10-15 years of work experience in Technology with at least 7+ years of experience specifically in Identity and Access Management, Information Security, or a related area.
• 5+ years in a leadership role, managing IAM teams or large-scale IAM programs.
• In-depth knowledge of IAM principles, frameworks, and technologies, including authentication, authorization, identity governance, and privileged access management.
• Experience with IAM toolsets such as IGA Tools, Access Management Tools, Microsoft Azure/Entra, CyberArk, or similar solutions.
• Strong understanding of compliance and regulatory standards related to IAM (e.g., SOX, HIPAA, GDPR, etc.).
• Excellent leadership and team management skills, with proven experience in developing high-performing teams.
• Strong project management skills with the ability to lead cross-functional projects from conception through implementation.
• Demonstrated ability to collaborate with business stakeholders and communicate complex technical information in a clear and concise manner.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Identity and Access Manager (CIAM), Certified Information Security Manager (CISM),
• Experience with cloud-based IAM solutions and managing identity in hybrid cloud environments.
• Familiarity with DevOps practices and integration of IAM into CI/CD pipelines.
• Leadership and strategic thinking
• Strong problem-solving skills
• Ability to manage complex projects and prioritize tasks effectively
• Excellent communication and interpersonal skills
• A keen understanding of risk management, governance, and compliance issues related to IAM

Salary: $180,000- $225,000 per year ( depends on experience level)

Benefits: Medical Insurance, PTO, 401 (k) and more