Asst Dir, Identity & Access Mgmt
College Town 40 Celebration Drive, United States
University of Rochester
With just over 4,500 undergraduates, Rochester is one of the smallest and most collegiate in character among the nation's top research universities.As a community, the University of Rochester is defined by a deep commitment to Meliora - Ever Better. Embedded in that ideal are the values we share: equity, leadership, integrity, openness, respect, and accountability. Together, we will set the highest standards for how we treat each other to ensure our community is welcoming to all and is a place where all can thrive.
Job Location (Full Address):
40 Celebration Dr, Rochester, New York, United States of America, 14642Opening:
Worker Subtype:
RegularTime Type:
Full timeScheduled Weekly Hours:
40Department:
100110 University IT / CTSWork Shift:
Range:
UR URG 117Compensation Range:
$122,044.00 - $183,065.00The referenced pay range represents the minimum and maximum compensation for this job. Individual annual salaries/hourly rates will be set within the job's compensation range, and will be determined by considering factors including, but not limited to, market data, education, experience, qualifications, expertise of the individual, and internal equity considerations.
Responsibilities:
The Assistant Director Identity and Access Management is primarily responsible for providing strategic leadership as well as operational and tactical direction to diverse teams, including analysts, engineers, and architects. This role provides strategic direction and management of the enterprise-wide Identity and Access Management program. The Assistant Director is responsible for maintaining a high level of customer service and managing process improvements. Additionally, the Identity and Access Management Assistant Director manages the team and executes the security strategy as directed by senior management. Facilitates the use of technology-based tools or methodologies to review, design and/or implement products and services to provide a strong IAM program that balances access with compliance and confidentiality.The Identity and Access Management Assistant Director, in conjunction with the Chief Technology Officer and organizational business units, is responsible for the planning, building, delivery and support of the Identity and Access Management (IAM) program. This role provides direction and guidance to the development, specifications, and communications of the IAM application and architecture, provides in-depth technical consultation to the business units and provides technical leadership on Identity & Access management, directory services, Privileged Access Management (PAM), Multi-Factor Authentication (MFA), Azure Active Directory (Entra ID), Federated Identities and emerging technologies in the identity space.
The ideal candidate is technical and possesses experience in information technology, ITIL change managements and problem management best practices as well as security administration across large heterogeneous networks, including third-party entities. Additionally, as a senior member of the team, leadership skills to coach and mentor less experienced employees is required. The Identity and Access Management Assistant Director is expected to manage a team and execute the IAM strategy as directed by senior management. Consequently, the Identity and Access Management Assistant Director must identify and effectively communicate an actionable workload for team members that adheres to business initiatives, balancing business risk and IAM security best practices. The IAM manager is a subject matter expert for colleagues and is expected to deliver on line-of-business expectations.
RESPONSIBILITIES:
- Provides operational leadership and direction for a team of security professionals
- Conducts weekly 1:1s with direct reports and periodic 1:1 meetings with all staff
- Directs, recruits and evaluates team staff. Conducts performance reviews. Conducts performance management conversations as needed
- Ensures employee engagement and motivates team members to achieve organizational excellence
- Contributes to a world-class information technology organization, assisting in continuous process improvement initiatives and refinement of service offerings
- Collaborates with multiple IT Departments
- Follows established procedures and attends routine meetings in both Univ IT and ISD including change control meetings, project meetings, leadership meetings, workgroup meetings, architecture meetings and the Technology Advisory Council
- Identity and Access Management Planning
- Facilitates the use of technology-based tools or methodologies to review, design and/or implement products and services to provide a strong IAM program that balances access with compliance and confidentiality
- Identifies and evaluates complex business and technology risks, internal controls that mitigate risks, and related opportunities for internal control improvement
- Identifies the broader impact of current decisions related to user access, data access and information security
- Works in tandem with leadership for annual strategic technology and budgetary directives.
- Maintains up-to-date knowledge related to identity and access management; Active Directory design and configuration, Information security best practices, Multi-factor authentication technologies, LDAP protocol and identity federation, Active Directory, Microsoft client operating systems and circulates this knowledge through the business units.
- Envisions business outcomes and facilitates alignment with them
- Aligns IAM processes across the organization, and develops and documents standards for organizational use
- Co-leads an IAM selection process, evaluates existing and emerging technologies and tools in the selection of an IAM service offering for the business units
- Understands business and information technology management processes and demonstrates advanced understanding of business processes, internal control risk management, IT controls and related standards
- Other duties as assigned.
QUALIFICATIONS:
- Bachelor's degree in related discipline required; Master's degree preferred.
- 4 years of progressive experience at a supervisory level in a technology environment required;
- or an equivalent combination of education and experience required.
- 10 years of related experience preferred;
- 4 years of supervisory experience preferred.
- Expertise in IDM technology design, implementation, and delivery required
- Expertise in IDM solutions both on-premises and in the cloud required
- Ability to learn new technologies quickly required
- Strong understanding of various regulations and laws such as Health Information Portability and Accountability Act (HIPAA), Family Educational Rights and Privacy Act (FERPA), and General Data Protection Regulation (GDPR) preferred
- Excellent verbal and written communications skills; excellent presentation skills required
- Ability to handle multiple tasks simultaneously and meet required deadlines required
- Ability to contribute both individually and provide technical leadership as part of a team required
- Ability to interact with all levels of staff, as appropriate, to communicate and to process communications from others on technical change required
- Ability to present technology in non-technical terms and recognize the extent to which a given audience requires this required.
- CITM, AMA, CRISC, CISM, CISA, GSEC preferred
Schedule: 8 AM-5 PM
EOE Minorities / Females / Protected Veterans / Disabled:
The University of Rochester is committed to fostering, cultivating, and preserving a culture of equity, diversity, and inclusion to advance the University’s mission to Learn, Discover, Heal, Create – and Make the World Ever Better. In support of our values and those of our society, the University is committed to not discriminating on the basis of age, color, disability, ethnicity, gender identity or expression, genetic information, marital status, military/veteran status, national origin, race, religion/creed, sex, sexual orientation, citizenship status, or any other status protected by law. This commitment extends to the administration of our policies, admissions, employment, access, and recruitment of candidates from underrepresented populations, veterans, and persons with disabilities consistent with these values and government contractor Affirmative Action obligations.
Tags: Active Directory Azure CISA CISM Cloud Compliance CRISC GDPR GSEC HIPAA IAM ITIL LDAP Privacy Risk management Security strategy Strategy
Perks/benefits: Equity / stock options
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.