Identity Access Management (IAM) Manager - Information Technology

SUMMARY: The Identity and Access Management (IAM) Manager oversees the strategic development, implementation, and governance of the bank’s IAM program. This role involves developing IAM strategies, overseeing program execution, managing a team of IAM professionals, and collaborating with cross-functional stakeholders to address risks, compliance, and technological advancements. The IAM Manager plays a critical role in safeguarding customer data, protecting against cyber threats, and supporting the bank’s digital transformation initiatives.

• Carries out supervisory responsibilities in accordance with the organization's policies and applicable laws. Responsibilities include interviewing, hiring and firing, planning, assigning, and directing work; appraising performance; rewarding and disciplining employees; addressing complaints and resolving problems.

• Develops and executes the Bank’s IAM strategy, aligning with business objectives and regulatory requirements.
• Establishes and maintains IAM policies, standards, and procedures, including role-based access control (RBAC), least privilege, and identity federation.
• Partners with senior management and regulatory teams to prepare for audits, compliance reviews, and regulatory exams.
• Defines metrics and KPIs to measure IAM program effectiveness and report progress to executives.
• Oversees end-to-end IAM operations, including user provisioning, access certification, single sign-on (SSO), multi-factor authentication (MFA), and privileged access management (PAM).
• Manages the IAM technology roadmap, integrating solutions like Active Directory, Entra, Okta, Ping Identity, or SailPoint.
• Leads IAM projects, such as cloud IAM adoption or zero-trust architecture implementation, ensuring timely delivery and risk mitigation.
• Monitors and addresses IAM-related incidents, driving remediation and process improvements.
• Manages a team of IAM analysts, administrators, and engineers and provides mentorship, training, and performance evaluations.
• Fosters a culture of security awareness and collaboration within the IAM team and across Information Technology (IT), compliance, and business units.
• Coordinates with external vendors and contractors to scale IAM capabilities as needed.
• Ensures adherence to banking regulations (e.g., GLBA, SOX, GDPR for international operations) and industry frameworks (e.g., NIST, COBIT).
• Develops and maintains IAM compliance reports, including incident analyses and recommendations for improvement.
• Collaborates with risk management and audit teams to address findings and implement controls.
• Works with IT, cybersecurity, human resources, and business units to integrate IAM into workflows, such as onboarding/off-boarding and application access.
• Stays abreast of emerging IAM technologies, such as cloud-native IAM, zero-trust models, and automation tools.
• Drives digital transformation initiatives, ensuring IAM supports mobile banking, online platforms, and customer-facing applications.

• Bachelor’s Degree in Computer Science or other computer-related field; or minimum of four years of related experience and/or training; or equivalent combination of education and experience; required.
• Minimum three years of experience in IAM or IT security roles required.
• Experience managing teams and leading cross-functional projects required.
• Professional certifications such as CISSP, CISM, CISA, CRISC, or CIGE are desirable.
• Proven experience implementing IAM solutions (e.g., SSO, MFA, PAM) in a financial services or regulated environment a plus.
• Familiarity with banking operations, regulatory compliance, and financial technologies (e.g., core banking systems, digital banking platforms) a plus.
• Willingness to learn new technologies and keep up with industry trends.
• Willingness to travel quarterly for onsite meetings.
• Computer skills include in-depth knowledge of IAM concepts (e.g., SSO, RBAC, identity federation, privileged access management), tools (e.g., Microsoft Active Directory, Azure AD, Okta, Ping Identity, SailPoint, Saviynt), authentication protocols (e.g., SAML, OAuth, OpenID Connect, Kerberos), cloud platforms (e.g., AWS, Azure) and their IAM frameworks, scripting languages (e.g., Python, PowerShell, Java) for automation and troubleshooting, networking concepts (e.g., firewalls, VPNs, DNS) and security protocols (e.g., TLS, SSH), and Microsoft Office products including Word and Excel.