Identity Access Manager

Manager: CISO
Department: Cyber Security
Division: Enterprise Information Technology Services
Location: London, Hybrid

Identity is a core security component in any modern IT estate, ensuring the right people, machines, and software components have access to the correct resources at the appropriate time, while preventing unauthorised access and maintaining a secure environment. The Identity and Access Manager role heads up this crucial security function within the Cyber Security Team and will:

• Lead strategic development and operational management of identity services.
• Develop and manage identity and access related tooling and processes to ensure mature, efficient, and secure working practices.
• Be an advocate for best practices in Identity and Access Management.
• Ensure compliance and risk management standards are met.

• Lead the Identity and Access function within the Cyber Security team, including:
  • Access Management
  • Identity Governance and Administration
  • Role Based Access Control
  • Privileged Access Management
  • Identity Threat Detection and Response
  • Access Certification
  • Identity Data Management & Analytics
• Ensure that only authorised identities have access to relevant data and systems, working with department heads, team leads, and system owners to establish appropriate access levels.
• Develop and maintain the IAM roadmap to deliver key initiatives, collaborating with Enterprise Architects to embed identity security principles by design.
• Manage external suppliers to mature identity security and test processes regularly.
• Coordinate with Cyber Security and wider Enterprise Information Technology Services (EITS) teams to ensure smooth identity security operations and investigate identity security events.
• Provide regular MI and reporting on identity-related risks and controls, managing a program to reduce these risks continually.
• Stay informed of emerging threats, tactics, and techniques, assisting senior leadership in understanding potential security issues, including those from acquisitions or business initiatives.
• Oversee the management and development of identity security tooling.
• Assist the CISO in broader Cyber Security management as needed.

• Proven experience in a similar role within a mid/large organisation, preferably in Financial Services or Insurance sectors.
• Strong technical skills with IAM technologies such as Sailpoint, CyberArk, & Entra ID.
• Deep knowledge of identity and access management concepts like RBAC, Conditional Access, and Zero Trust.
• Experience in streamlining processes and automation.
• Cyber security SME with relevant certifications (e.g., CISSP, CISM, CSSP).
• Extensive project consulting experience, integrating security requirements and ensuring secure go-lives.
• Good understanding of emerging cyber threats and technologies.
• Knowledge of UK Insurance and Financial Services legislation and relations.
• Strong analytical, problem-solving, and strategic skills with attention to detail.
• Excellent communication skills, capable of explaining complex concepts to non-technical stakeholders.

• Strong collaborator with excellent relationship-building skills across diverse cultures and levels.
• Adaptable to the changing cyber landscape and corporate objectives.
• Self-motivated and able to work independently or in project teams within tight deadlines.

Roles such as IAM Manager, Identity Security Manager, Access Management Lead, Cyber Security Manager, etc.

• Automation
• CISSP

City of London, England, United Kingdom

• Cyber Security Specialist
• Security Analyst

• English