VP Identity and Access Management

If you are motivated and believe in the credit union philosophy of "People Helping People," join our team!

Dimensions:

The Identity and Access Management (IAM) Manager is responsible for leading a team of engineers to build, enhance, and deliver IAM products and services focused on access provisioning, deprovisioning, access reviews, authentication, identity management, privileged access and service account management, monitoring, and reporting.  This person must be a strategic, thought leader, overseeing, and implementing industry standard best practices applicable to the SECU environment.  This manager must oversee the development of security solutions that adhere to applicable policies and comply with information security requirements while supporting the SECU IT transformation that is underway.  IAM Manager must recruit, lead, mentor, and develop a best-in-class technology team, providing opportunities for growth to ensure continuity of IAM’s leadership.  Responsibilities also include working with IT teams to consult and partner on solutions with appropriate access controls, along with managing control design patterns that enable IT asset owners’ adoption of IAM enterprise control solutions.  The candidate will also work with key stakeholders to extend the IAM control solutions to technology assets while working with other subject matter experts and engineers. This position is a direct report to the Head of IAM.  Some of the primary areas of responsibility of the IAM team that this manager must direct and lead include …

Duties:

• Provide technical expertise automating processes related to IAM and developing control solution integrations.
• Drive strong functional and privileged account as well as service account access management processes.
• Build comprehensive, modern, automated IAM products and services while collaborating with vendors and internal teams.
• Develop working relationship with IT engineering resources to drive solution features and architectures.
• Identify inadequacies within the environment and construct solutions to address IAM shortfalls.
• Develop and generate reporting metrics which drive continuous improvements in IAM controls.
• Partner with Information Security (IS) and line of business (LOB) leadership to understand requirements, enterprise IT standards and other considerations that influence how IAM solutions and services should perform and operate.
• Generate and maintain documentation for IAM control solutions configurations, operational support processes, business continuity plans and control procedures.
• Review existing IAM services to ensure those solutions are optimized for the highest level of service and establish an ongoing practice to perform periodic reviews.
• Interpret policies and standards with InfoSec, Risk and Compliance teams, ensuring policies and standards are properly followed by IAM control solutions.
• Promote security policies, standards, and best practices across the organization.
• Track, monitor and report IAM financial industry related environment threats, control solutions, regulatory changes, and technology updates.
• Formulate and manage a business and resource plan for the team to ensure appropriate resources are aligned to support IAM strategic plans, goals and objectives.
• Establish, review and document performance feedback and coaching for direct reports while utilizing HR processes for underperforming and overachieving resources.

Requirements:

• Minimum 10 years’ experience with developing and implementing identity and access management tools and solutions.
• Minimum 8 years’ experience managing and developing strong information security and/or technology teams.
• Understanding of IAM relevant technical solutions (such as SailPoint, MFA, Privileged Access Management: CyberArk).
• Demonstrated experience with infrastructure technologies including Cloud, Lightweight Directory Access Protocol (LDAP), Security Assertion Markup Language (SAML), and MFA/SSO.
• Ability to think strategically and communicate effectively at the most senior levels of the company to communicate the value and benefit of IAM solutions.
• Possess strong knowledge of industry best practices, technology, and evolving threats to enhance defenses for SECU’s information systems and resources.  Advises management on security protocols and incidents.  Mentors and trains to ensure team knowledge and effectiveness.
• 3-5+ years of troubleshooting and investigating complex issues within a highly regulated and secure environment.
• Strong organizational, time management, negotiation, and resource management skills.
• Customer service driven, quality focused, and team oriented with effective and persuasive written and oral communication skills.
• Strong knowledge and experience with incident/problem management processes
• Possess critical thinking and business risk analysis skills.
• Strong functional knowledge of MS Office Suite software products, Jira, and Confluence.
• Strong communications skills, oral and written.
• Ability to collaborate and interact productively with team members and key stakeholders.
• Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood and actionable manner.
• Ability to effectively influence and convince others to make appropriate changes in their priorities and behaviors for the benefit of the organization.
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business.

Desired Skills:

• Bachelor’s degree in Computer Science, Information Technology or related field.
• Specific experience with NIST, PCI, ISO 27001, COBIT or other information security related framework.
• Strong analytical skills with high attention to detail.
• Ability to convey technical information to all groups and individuals concisely and clearly both verbally and in writing to individuals with limited technical experience.
• CISSP, CISM, SANS GSEC, Cloud Security (CCSP, CCSK), or other information security related certification(s).

Job Environment and Physical Demands:

• Remote working and remote options are available.
• Office setting with physical proximity to other employees is also intermittently required.
• Some background noise from other employees and their activities can be expected.
• Must be able to comprehend and carry out verbal and written instructions.
• Job requires a substantial amount of sitting.
• Use hands and fingers to press keys on a computer keyboard to enter or retrieve information.
• Use hands and fingers to press telephone keypad and lift telephone receiver.
• Must be able to comprehend phone calls.
• Must be able to lift 5 pounds.

SECU provides equal employment opportunity to all qualified persons regardless of race, color, religion, age, sex, sexual orientation, gender identity, national origin, genetic information, disability, veteran status, or other classification protected by law.

Disclaimer

State Employees' Credit Union reserves the right to fill this role at a higher/lower level based on business need.