259 - Manager - Identity and Access Management Governance

Manager Identity and Access Management Governance

We are seeking a detail-oriented and experienced IAM Governance manager to join our cybersecurity team, focusing on governance risk management and compliance. The IAM Governance manager will play a crucial role in ensuring that our IAM processes and policies align with industry best practices and regulatory requirements.

IAM Governance and Compliance:

• Ensure IAM processes adhere to policies, industry standards, and regulatory requirements.
• Develop and enforce governance policies, procedures, and standards to enhance the IAM program.
• Govern the onboarding of applications to IAM solution by ensuring minimum security controls are covered in each integration including role matrices, RBAC, and access recertification cycles.

Access Management:

• Govern and ensure role-based access controls (RBAC) and segregation of duties (SoD) principles are maintained for the access of internal applications and infrastructure items.
• Govern user access review cycles, including access certifications.
• Ensure privileged access is as per defined process and maintained logs are sufficient to track any unauthorized activity.
• Review aspects of multi-factor authentication and conditional policies for internal teams.
• Review and work on complete user life cycle management to identify weak areas of access controls required for implementation and tracking open items.
• Coordinate with internal teams to rectify noncompliant access issues.

Role Management:

• Design and maintain role definitions and role-based access control frameworks.
• Analyze and optimize role assignments to ensure appropriate access levels.

Risk Assessment and Mitigation:

• Perform risk assessments related to identity and access management.
• Identify and mitigate potential security risks associated with IAM processes and systems.

Collaboration and Support:

• Work closely with Tech, HR, and other departments to ensure smooth onboarding, role changes, and offboarding processes.
• Provide IAM support and guidance to business units and end-users.
• Assist in the development and delivery of IAM training and awareness programs.

Reporting and Documentation:

• Prepare and present IAM governance reports and metrics to senior management.
• Document IAM policies, procedures, and compliance activities.

Key Competencies:

• Alignment with Business Priorities: The manager for IAM Governance aligns actions with the strategic objectives of the business.
• Ownership and Accountability: The manager for IAM Governance takes full responsibility for activities and teams, holding oneself and the team accountable for their outcomes.
• Driving Security Risk Reduction: The manager for IAM Governance proactively drives initiatives that reduce security risks.
• Focus on Outputs and Impact: The manager for IAM Governance focuses on delivering outputs that create a meaningful impact.
• Continuous Learning and Improvement: The manager for IAM Governance is committed to learning from experiences and continuously improving processes to achieve better outcomes.

Qualifications:

• A mid-level official who has experience in managing enterprise projects and has worked in coordinating in an enterprise environment.
• Strong interpersonal, analytical, and technical skills.
• Strong decision-making and prioritization skills.
• Experience in banking environment with strong understanding of key security frameworks such as ISO27001, PCI DSS, NIST 80063.
• Sound knowledge of evolving advanced tech stacks and related control and risk universe.
• Over 5 years of experience.