Director – Identity & Access Management

Director – Identity & Access Management

Requirements

• Degree in Computer Science, Information Security, or a related field.
• 10-15 years of work experience in Technology with at least 7+ years of experience specifically in Identity and Access Management, Information Security, or a related area.
• 5+ years in a leadership role, managing IAM teams or large-scale IAM programs.
• In-depth knowledge of IAM principles, frameworks, and technologies, including authentication, authorization, identity governance, and privileged access management.
• Experience with IAM toolsets such as IGA Tools, Access Management Tools, Microsoft Azure/Entra, CyberArk, or similar solutions.
• Strong understanding of compliance and regulatory standards related to IAM (e.g., SOX, HIPAA, GDPR, etc.).
• Excellent leadership and team management skills, with proven experience in developing high-performing teams.
• Strong project management skills with the ability to lead cross-functional projects from conception through implementation.
• Demonstrated ability to collaborate with business stakeholders and communicate complex technical information in a clear and concise manner.

Responsibilities

• Define and lead IAM strategy to protect Bank assets – Develop and implement a comprehensive IAM strategy to protect sensitive financial data and ensure the integrity of financial reporting.
• Lead and Inspire Team – Build and manage a diverse team of IAM personnel across both project focused and operational teams to deliver on IAM control execution and strategy.
• Develop and execute the organization’s IAM strategy, ensuring alignment with overall business objectives, security goals, and regulatory requirements.
• Lead the design and implementation of enterprise-wide IAM frameworks, including identity governance, authentication, and authorization processes.
• Collaborate with senior leadership, IT, and security teams to integrate IAM processes with other security initiatives and digital transformation efforts.
• Maintain relationships with second and third line stakeholders. Collaborate with these groups to align on IAM priority and risk perspectives.
• Manage and lead the IAM team which consists of the Identity Operations and IAM Delivery teams.
• Develop and mentor team members, fostering a culture of continuous improvement and professional growth.
• Define and manage team objectives, performance metrics, and service-level agreements (SLAs) to ensure optimal team performance and delivery of services.
• Oversee the administration of identity lifecycle management, including user provisioning, de-provisioning, access reviews, and role-based access control (RBAC).
• Ensure the effective operation and maintenance of IAM tools, including Single Sign-On (SSO), Multi-Factor Authentication (MFA) and Privileged Access Management (PAM) solutions.
• Work closely with the IAM engineering team to ensure the continuous improvement of IAM systems, automating processes where possible to increase efficiency and security.
• Establish and enforce IAM policies, standards, and procedures that align with regulatory requirements (e.g., GDPR, HIPAA, SOX).
• Conduct regular access reviews and assessments to ensure that IAM processes comply with both internal and external regulations and standards.
• Identify and address IAM-related risks, ensuring that access governance and role management are applied effectively to mitigate security threats.
• Serve as the primary point of contact for IAM-related initiatives across the organization, collaborating with IT, HR, Legal, and other business units.
• Work with external vendors and consultants as necessary to manage IAM tools, solutions, and service providers.
• Communicate IAM strategies, goals, and policies to stakeholders at all levels of the organization and ensure transparency on the program’s effectiveness and challenges.
• Present IAM strategy and Initiatives to audiences of varying levels including Board, Executive team, Role Owners and System Owners.
• Lead IAM-related projects, including new tool implementations, system upgrades, and process optimizations, ensuring projects are delivered on time, within scope, and on budget.
• Develop detailed roadmaps for the evolution of the IAM program in response to emerging business needs and technological advancements.

Preferred Qualifications

• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Identity and Access Manager (CIAM), Certified Information Security Manager (CISM).
• Experience with cloud-based IAM solutions and managing identity in hybrid cloud environments.
• Familiarity with DevOps practices and integration of IAM into CI/CD pipelines.
• Leadership and strategic thinking.
• Strong problem-solving skills.
• Ability to manage complex projects and prioritize tasks effectively.
• Excellent communication and interpersonal skills.
• A keen understanding of risk management, governance, and compliance issues related to IAM.