Associate Director IT Security - Global Information Security Identity & Access Management

Location - Hybrid - Philadelphia PA, Waltham, MA or Kennesaw, GA

Wolters Kluwer Global Business Services (GBS) is designed to provide services to the business units in the areas of technology, sourcing, procurement, legal, finance, and human resources. These global centers promote team collaboration using best practices around a specific focus area to drive results and enhance operational efficiencies. There is a constant endeavor to benchmark against best-in-class industry standards to improve the quality of deliverables, increase cost savings, enhance productivity, and reduce time to market for products and applications.

We have an amazing opportunity for a Associate Director of Global Information Security Identity & Access Management available within our Global Business Services division! The Associate Director of Global Information Security Identity & Access Management will be responsible for managing a team and working closely with project teams as well as internal / external groups to protect and enhance the confidentiality, integrity, and availability of Wolters Kluwer assets.

This position will be staffed out of our Philadelphia PA, Waltham, MA or Kennesaw, GA office.

As the IT Security Delivery Manager, you will lead a team of information security professionals and be accountable for implementing programs to protect personal and confidential information at WK. In this role, you will be required to demonstrate proficiency in implementing IT risk mitigation strategies in every area of security management. Your role will also include interfacing with and responding to 3rd party audits and internal audits, conducting vendor due diligence, and interfacing with internal business unit IT representatives on global information security initiatives and compliance tasks and projects.

 

 Responsibilities:

Identity & Entitlement Management:

·       Responsible and accountable for centralizing, standardizing, and automating enterprise-wide entitlement management and associated processes globally. Integration of IGA system with ITSM, PAS and CIEM systems. Critical business application integration with IGA to include SAP, and Salesforce. Implementation of Policy based Attribute and Group access management facilitated by identity source of truth (birth right) or self-service request and approval management.

·       Responsible and Accountable for timely provisioning (within 24 hours with 95% SLA) of human and non-human accounts and entitlements ensuring fast and efficient resource onboarding.

·       Responsible and Accountable for Incident Management for all related IAM services including CIEM, AD, AAD, SSO, MFA, and all Authentication protocols, systems and tools.

·       Responsible for provisioning system design, optimization, resiliency, recovery and management

Accountable for Directory & Authentication Management:

·       Responsible for all directory services globally ensuring that the Active Directory footprint is reduced and optimized globally.

·       Responsible for all Directory Services (AD/AAD) system design, optimization, resiliency, recovery and management.

·       Responsible for IAM systems Disaster Recovery Planning and Readiness

Accountable for Identity Governance:

·       Global Directory Services compliance with GIS Identity Access standards.

·       Periodic review of access to functional accounts providing privileged access to global AD domains.

·       Periodic review of CyberArk administrator level access. Audit request demand fulfillment. Disaster recovery is continuously tested and optimized to its lowest possible RTO. Legacy protocols are continuously reviewed and upgraded to ensure CIA is maintained.

·       Change Management

·       Audit D&I

·       Continuous improvement of NIST compliance

Accountable for Privileged Access Management:

·       Responsible for Privileged Access Management system optimization, resiliency, recovery and management.

·       Providing JIT and PAM as a service to our business units for cloud management, cloud infrastructure and on-prem infrastructure. Privileged Access accounts for all WK critical applications and all GBS applications are managed by GIS and rotated every 24 hours.

·       Enforcement of privileged access, and application allow / deny lists on all workstations globally.

 

OTHER DUTIES

 

Performs other duties as assigned by supervisor

 

JOB QUALIFICATIONS

• Bachelor's degree in computer science/MIS or equivalent
• 10+ years of total experience in Information Technology
• 7+ years of professional experience managing an information security function, including analyzing and applying information security risk management, and privacy practices
• 7+ years in professional services with focus on security related global delivery
• 5+ years of experience working with national and international regulatory compliance frameworks such as ISO 27001, SOX, BASEL II, GDPR, HIPAA, and PCI DSS
• 5+ years' experience in planning, budgeting, and allocation
• 5+ years of relevant work experience, including consulting and general industry experience
• People management in projects, and direct reports in a matrixed environment
• An ability to motivate and manage information security staff supporting the organization's goals
• An ability to cultivate and build collaborative working relationships with a broad range of enterprise stakeholders

Compensation:

Target salary range CA, CT, CO, HI, NY, WA: $176,600-$249,950