Head of Identity & Access Management London, Agile

Responsible for overseeing the IAM program, ensuring secure and efficient management of user identities as well as access to systems, applications, and data. This role involves developing, improving, and implementing IAM standards and procedures, managing user access, and providing direction and strategy for all IAM modalities. The Head of IAM will also be accountable for investigating incidents, recommending corrective actions, and training users on IAM standards and procedures.

What you will be doing:

• Develop and improve IAM focused standards and procedures to ensure secure and efficient management of user identities and access.
• Manage user access to systems, applications, and data, ensuring compliance with IT Cybersecurity standards.
• Identify gaps or potential improvements in the IAM landscape.
• Prepare responses to risk assessments and audits that identify and mitigate potential IAM risks.
• Participate in security IAM incident investigations and recommend corrective actions which include root cause and recommended actions.
• Prepare communication to users on IAM policies and procedures.
• Stay up to date on evolving threats, technologies, and solutions in the IAM space.
• Collaborate with other departments to ensure secure access to systems and data.
• Document IAM processes and procedures for reference and compliance purposes.
• Escalate and resolve IAM-related issues in a timely manner.
• Manage multi-factor authentication (MFA) systems to ensure they are functioning correctly and securely.
• Manage single sign-on (SSO) solutions to improve users experience and security.
• Monitor, maintain, and improve SSO systems to ensure they are functioning correctly and securely.
• Prepare monthly KPI and KRI metrics and reports for executive management.
• Create IAM presentations for an executive audience.
• Build business cases for any new capabilities or solutions needed.
• Collaborate with the Cybersecurity and solution architects to create and maintain the IAM strategy and roadmap.

What you will bring:

• Minimum of 10 years of experience in IT or Security, with at least 5 years in a management role overseeing IAM programs.
• Professional certification such as Certified Identity and Access Manager (CIAM) or Certified Identity Management Professional (CIMP), CISSP, or CISM is highly desirable.
• Experience with cybersecurity frameworks and standards, such as NIST, ISO 27001, or similar.
• General understanding of operational risk and risk-related control frameworks and practices such (ISO 27001, NIST SP 800-53, NIST CSF, COBIT, ITIL, etc.).
• Experience with IAM tools and technologies, such as Microsoft Entra ID (formerly Azure Active Directory), SailPoint, or similar.
• Experience with CyberArk for user and service account privileged access management.
• Excellent analytical, problem-solving, presentation, and communication skills.
• Ability to work collaboratively with cross-functional teams and stakeholders in a highly matrixed organization.
• Experience with managing an outsourced team.
• The ability to prioritize multiple IAM initiatives using a risk-based approach.
• Good technical background in a range of security, and IAM technologies, specifically within an Azure environment.
• Experience migrating to a password-less environment.
• Excellent understanding of IAM principles, technologies, and best practices.
• Strong and broad understanding of Cybersecurity and IAM methodologies, frameworks and best practices.
• Understanding of project management methodologies.
• Knowledge of M365/Azure AD conditional access policies.
• Knowledge of Azure security principles and best practices.
• Bachelor's degree in computer science, information technology, or a related field.
• Excellent organizational skills.
• Ability to lead and work in a geographically dispersed virtual team environment.
• Excellent Power Point presentation documentation, verbal communication and interpersonal skills.
• Excellent stakeholder management skills and management of expectations.
• Proven experience in dealing/working with 3rd party suppliers.