Manager - Information Security Identity & Access Management

Benefits:

• Competitive compensation

• Medical, dental, and vision insurance

• 401(k) retirement savings plan with substantial company match

• Life and travel insurance

• Tuition assistance

• Wellness reimbursement program

• Paid holidays and vacation

What is a Manager – Info Sec Identity & Access Management?

The Manager – Info Sec Identity & Access Management in conjunction with organizational business units, is responsible for the planning, building, delivery, and support of the Identity and Access Management (IAM) program. The Manager – Info Sec Identity & Access will provide direction and guidance to the development, specifications, and communications of the IAM application and architecture, as well as provide in-depth technical consultation to the business units and IT management and assist in developing plans and direction for the integration of information security requirements.

A key element of the Manager – Info Sec Identity & Access role is working with leadership to proactively evaluate risks, identify operational weaknesses, and support resiliency and ongoing improvement of the company’s identity platforms. They will work proactively with business, Information Security, Infrastructure, and Application partners to implement solutions and processes that meet agreed-on security policies and standards. The Manager – Info Sec Identity & Access should understand and articulate the impact of Identity and access management on digital and operational business and be able to communicate this to senior stakeholders.

What does a Manager – Info Sec Identity & Access Management do?

• Leads the IAM functional team and operation within the technology department to ensure consistent and high-quality management in support of the business and departmental goals

• Supports team members through effective coaching and development

• Facilitates the use of technology-based tools or methodologies to review, design, and/or implement products and services to provide a strong IAM program that balances access with compliance, confidentiality, and business requirements

• Identifies and evaluates complex business and technology risks, internal controls that mitigate risks, and related opportunities for internal control improvement

• Acts as subject-matter-expert on all IAM disciplines including identity governance and administration (IGA), Access Management (SSO, MFA), privileged access management, and identity verification

• Provides management status reporting to include accomplishments, plans for upcoming activities, and overall completion status on a regular basis ensuring all milestones and deliverables are achieved within communicated deadlines

• Owns the lifecycle management of all IAM technologies and solution components

• Develops and maintains documentation, runbooks, and standard operating procedures for identity services and processes

• Influences decision makers, including directors and VPs, through effective communication and documentation

• Envisions business outcomes and work with business leaders to create IAM business initiatives to improve role-based access controls and mitigate access risks

• Aligns IAM processes across the organization and develop and document standards for organizational use

• Understands business and information technology management processes and demonstrate advanced understanding of business processes, identity-first security, internal control risk management, IT controls, and related standards

• Fosters an understanding of the need for and application of the IAM system, and facilitates decision making with the business users

• Builds and nurtures positive working relationships with business units

• Identifies opportunities to improve engagement with the business units

• Provides support for storm restoration efforts

What does it take to be a Manager – Info Sec Identity & Access Management?

Required:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology or a related field of study and 5 years of relevant experience. In lieu of a bachelor’s degree, an associate degree in the aforementioned fields and 7 years of relevant experience or a high school diploma or equivalency degree and 9 years of relevant experience will be considered

• Proven leadership, facilitation, mentorship, and organizational skills with 3+ years in a leadership role

• Identity management familiarity in one or more of the following areas: Identity Management, single sign-on (SSO), multi-factor authentication (MFA), Identity/Account data management, identity federation, enterprise directory architecture and design, including directory schema, directory services, namespace and replication topology experience, resource provisioning, ITIL, and process integration

• Experience with administrating authentication technologies, such as Microsoft Active Directory/Windows authentication, Microsoft Entra, Kerberos, Okta, OpenID Connect, OAuth, SAML, SCIM, and federated identity management

• Expert understanding of IAM concepts, including federation, authentication, authorization, access controls, access control attacks, identity and access provisioning life cycle

• Experience with automation tools or scripting languages used for identity tasks

• Experience in creating and maintaining relationships with key stakeholders

• Strong understanding of Information Security frameworks, best practices, and IAM security controls

• Experience in communicating, defining, training, implementing, and improving IAM practices

• Excellent communication skills, both written and oral; ability to interact effectively with individuals at all levels

• Familiarity with regulatory requirements and compliance frameworks

• Analytical mindset with the ability to assess complex situations and make informed decisions

• Strong background in the intersection of business and IAM

• Ability to influence decisions with data analytics and metrics

• Results-oriented mindset with problem-solving and decision-making skills,

• Ability to work independently and respond to feedback professionally

• Valid driver’s license

Preferred:

• Experience in Energy & Utilities or services industry

• Experience with Microsoft PowerBI

• Experience with data visualization tools

• Experience in risk management

• Relevant certifications such as CISSP, CISM, or comparable

Applications will be accepted until August 12, 2025. 

Pay range: $140,900 - $218,300

Please go to https://www.cenhud.com/employment. Click the “Search Career Opportunities” button. Follow the directions to submit an application and upload your resume for the desired position.

Applications sent via e-mail and US Mail will not be accepted.  No phone calls or agencies, please.  All replies will be held in strict confidence.

All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, creed, color, ethnicity, arrest or conviction record, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, citizenship, genetic information, familial status, marital status, pregnancy-related condition, domestic violence victim status, veteran or military status, or any other characteristic protected by federal, state or local laws. Central Hudson Gas & Electric Corporation takes affirmative action in support of its policy to employ and advance employment in individuals who are protected veterans and individuals with disabilities.

VEVRAA FEDERAL CONTRACTOR