Our client, a leading financial institution, is currently seeking an IAM (Identity Access Management) Technology Lead to join the security technology team. You would be a leading person in driving a large-scale IAM Technology adoption.
Develop and implement comprehensive IAM strategies, policies, and procedures to protect critical assets and ensure compliance with industry regulations and internal policies.
Lead the design, architecture, and integration of IAM technologies to support effective user provisioning, authentication, access control, and identity lifecycle management.
Oversee the implementation and maintenance of IAM solutions, including user lifecycle management, single sign-on (SSO), multi-factor authentication (MFA), and privileged access management (PAM).
Establish and enforce standards for user access management, ensuring segregation of duties and least privilege principles are followed.
Collaborate with business and IT stakeholders to define IAM requirements, identify risks, and recommend solutions to enhance security posture.
Conduct regular risk assessments and vulnerability scans to identify potential threats and develop strategies to mitigate risks proactively.
Stay current with emerging technologies, industry best practices, and regulatory requirements related to IAM and ensure their integration into our systems and processes.
Provide leadership, mentorship, and guidance to the IAM team, fostering a culture of continuous improvement and collaboration.
Collaborate with internal audit, compliance, and legal teams to ensure IAM processes align with internal and external requirements.
Participate in incident response activities, assessing IAM-related security incidents, investigating root causes, and implementing necessary remediation measures.
Qualifications and Skills:
Bachelor's degree in Computer Science, Information Technology, or a related field. Master's degree preferred.
Proven experience (8+ years) in Identity Access Management, with at least 3 years in a leadership role within a financial institution or similarly regulated industry.
Strong knowledge of IAM principles, technologies, frameworks, and best practices, such as RBAC, ABAC, OAuth, SAML, LDAP, PKI, etc.
Extensive experience with leading IAM platforms, such as SailPoint IdentityIQ, Okta, or similar enterprise solutions.
Solid understanding of regulatory frameworks, including GDPR, SOX, PCI DSS, and industry-specific guidelines pertaining to IAM.
In-depth expertise in designing and implementing secure authentication and access control systems, including SSO, MFA, and PAM.
Proficient in scripting and programming languages (e.g., Java, Python, PowerShell) with experience in leveraging APIs for system integration.
Strong analytical, problem-solving, and critical-thinking skills, with the ability to evaluate complex technical and security challenges.
Excellent verbal and written communication skills, with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders.
Relevant industry certifications such as CISSP, CISM, or CRISC are highly desirable.