IAM Manager

We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, inclusive culture and talent experience and our ability to be compelling to our clients. You’ll find an environment that inspires and empowers you to thrive both personally and professionally. There’s no one like you and that’s why there’s nowhere like RSM.

RSM Security, Privacy and Risk Manager – Identity and Access Management (IAM)

To address the most critical needs of our clients, the RSM US LLP Security and Privacy Services group, comprised of more than 250 professionals, is looking to further expand our growing team. This group includes experienced consultants located throughout the country dedicated to helping clients with preventing, detecting, responding, and recovering to security threats that may affect their critical systems and data. We serve a diverse client base within a variety of industries, and we are relied upon to provide expertise within areas of security testing, architecture, governance and compliance, digital forensics, and security transformation.

We are seeking experienced individuals with both broad and deep IAM experience and skills to join our team and deliver strategy, assessment, implementation, and managed services to RSM clients in a variety of industries and geographic locations. Successful candidates will have experience leading teams of varying sizes, mentoring and developing junior staff, and performing daily managerial duties commensurate with the role. Candidates will have solid working knowledge of IAM leading practices, common business use cases, leading vendor products & solutions, federated and composite IAM architectures, IAM technology trends and innovation; and experience leveraging this knowledge to benefit clients.

As leaders within the Security, Privacy and Risk consulting practice, managers are responsible for developing strong working relationships with clients built on understanding their businesses and challenges. Managers will identify, pursue, and help close new opportunities with both existing and new clients and will provide subject matter knowledge support to pursuit teams. Managers will work across multiple client account teams within a wide variety of industries. These individuals will also work across multiple client account teams within a wide variety of industries. They are responsible for managing multiple team engagements simultaneously, including several pieces of any assignment—not just a single area of focus. Working in a mutually respectful team environment helps our associates perform at their best and integrate their career with their personal life. Managers typically have 7-10 years of experience in the following areas:

• Building, leading and developing high performing teams
• Mentoring and influencing others both internally within RSM and within client organizations
• Serving as an ambassador and champion of IAM services throughout RSM
• Providing thought leadership collateral annually for distribution to clients and through our various marketing channels
• Developing RSM’s market eminence as a leader in IAM implementation services to the middle market
• Ability to manage client work and drive client communications with little or no oversight from RSM Senior Leadership.
• In-depth understanding of authentication protocols (SAML, OAuth, OpenID Connect, etc.).
• Experience with implementation of one or more IAM technologies including: SailPoint IdentityNow, IdentityIQ, Okta, ForgeRock, Ping, Delinea, CyberArk, and/or Microsoft Entra ID.
• Leading IAM federated architecture design and implementation including, but not limited to SSO/MFA, IAG/HRIS, AD/LDAP integration.
• Knowledge of key IAM concepts and protocols such as AuthN, AuthZ, Role-Based Access Control.
• Fluency in SailPoint IdentityIQ/IdentityNow leading practices, Okta leading practices and/or Azure AD leading practices
• Knowledge of common IAM processes such as lifecycle events, request/approval, password management, provisioning/de-provisioning, governance, and certifications
• Knowledge of infrastructure sizing, hardening and configuration (e.g., VPCs, network topology, DBMS, API gateway, connectors)
• Familiarity with common IAM data schemas (e.g., Identity Cubes)
• Knowledge of IAM solution error/exception handling and troubleshooting
• Solid understanding of NIST/ISO standards for IAM
• Leading IAM maturity assessments to identify gaps, deficiencies, and recommendations
• Familiarity with IAM custom development and deployment
• Basic knowledge of common compliance requirements (e.g., GDPR, CCPA, PCI, HIPPA, HITRUST, DFARS, CMMC, etc.) as they relate to IAM
• IAM testing strategies and methods (user acceptance testing, integration testing, performance testing, high availability/failover testing)
• Excellent written and verbal communication skills

Basic qualifications for a manager-level position include:

• Minimum B.A. or B.S. degree or equivalent from an accredited university by the time employment commences
• Computer science, information technology, information systems management, or other similar degrees preferably with a focus on information security
• Prior management experience building, mentoring, and developing teams
• Experience managing budgets and resource allocation including, but not limited to program and project management
• 7-10 years of experience in IAM Implementations with leading IAM solutions (e.g., SailPoint, Okta)

• Strong knowledge of computer network technologies, protocols, and topologies
• Proficiency with a variety of Windows, Unix, and Linux operating systems
• The ability to interpret and convey technical information through written and oral communications to all levels of technical aptitude, including senior management
• High degree of integrity and confidentiality, as well as ability to adhere to company policies and best practices
• Possess a strong internal drive and motivation for continuous improvement

Beneficial, but not required, qualifications for a manager-level position include:

• Certification in one or more leading IAM solutions (e.g., SailPoint, Okta, AWS (Amazon Web Services) IAM)
• Practical hands-on or lab experience with IT infrastructure components such as servers, firewalls, IDS systems and other network infrastructure components
• Experience with testing and development frameworks such as the Open Web Application Security Project (OWASP), Open-Source Security Testing Methodology Manual (OSSTMM), the Penetration Testing Execution Standard (PTES), Information Systems Security Assessment Framework (ISSAF), and NIST SP800-115
• Familiar with security testing techniques such as network discovery, port and service identification, vulnerability scanning, network sniffing, penetration testing, configuration reviews, firewall rule reviews, social engineering, wireless penetration testing, fuzzing, and password cracking and can perform these techniques from a variety of adversarial perspectives (white-, grey-, black-box)
• Prior consulting experience
• Insatiable appetite for learning and professional development

At RSM, we offer a competitive benefits and compensation package for all our people. We offer flexibility in your schedule, empowering you to balance life’s demands, while also maintaining your ability to serve clients. Learn more about our total rewards at https://rsmus.com/careers/working-at-rsm/benefits.

As an Affirmative Action and Equal Opportunity Employer, all applicants will receive consideration for employment as RSM does not tolerate discrimination and/or harassment based on race; color; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender (including gender identity and/or gender expression); sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the US uniformed service; pre-disposing genetic characteristics or any other characteristic protected under applicable federal, state or local law.

Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/partnership. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please call us at 800-274-3978 or send us an email at careers@rsmus.com.

RSM does not intend to hire entry level candidates who will require sponsorship now OR in the future (i.e. F-1 visa holders). If you are a recent U.S. college / university graduate possessing 1-2 years of progressive and relevant work experience in a same or similar role to the one for which you are applying, excluding internships, you may be eligible for hire as an experienced associate.

RSM will consider for employment qualified applicants with arrest or conviction records in accordance with the requirements of applicable law, including but not limited to, the California Fair Chance Act, the Los Angeles Fair Chance Initiative for Hiring Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the San Francisco Fair Chance Ordinance.

At RSM, an employee’s pay at any point in their career is intended to reflect their experiences, performance, and skills for their current role. The salary range (or starting rate for interns and associates) for this role represents numerous factors considered in the hiring decisions including, but not limited to, education, skills, work experience, certifications, location, etc. As such, pay for the successful candidate(s) could fall anywhere within the stated range.

Individuals selected for this role will be eligible for a discretionary bonus based on firm and individual performance.