IAM Senior Officer

• IAM Strategy and Implementation
• Platform Management: Design, deploy, configure, and maintain core IAM/IGA tools (e.g., SailPoint, ForgeRock) to automate identity lifecycle management, provisioning, and de-provisioning processes
• Privileged Access Security: Lead the implementation and operational management of PAM solutions (e.g., CyberArk) to tightly secure, monitor, and manage administrative and service accounts across critical infrastructure
• Access Architecture: Implement and manage advanced access control technologies, including Single Sign-On (SSO) via protocols (SAML, OAuth) and various Multi-Factor Authentication (MFA) methods
• Integration: Collaborate with application development and IT infrastructure teams to onboard new applications and systems onto the central IAM platform, ensuring seamless integration and centralized access control
• Governance, Risk, and Compliance (GRC)
• Access Governance: Define, enforce, and continuously refine access policies based on the Principle of Least Privilege and Segregation of Duties (SoD) requirements
• Regulatory Adherence: Ensure the IAM program is fully compliant with financial industry regulations and security standards (e.g., NIST, ISO 27001, COBIT, GLBA, SOX, etc.)
• Access Certification: Conduct and document regular User Access Reviews (UARs) or recertification campaigns to validate that users' access rights remain appropriate for their current role
• Audit and Reporting: Generate detailed audit trails and access reports for internal, external, and regulatory audits, actively supporting the remediation of any findings related to identity controls
• Operations and Support
• Troubleshooting: Serve as a subject matter expert (SME) to troubleshoot complex authentication and authorization issues related to IAM platforms, directory services (e.g., Active Directory, LDAP), and integrated applications
• Documentation: Create and maintain comprehensive documentation for all IAM policies, standards, processes, and system configurations
• Incident Response: Participate in security incident response activities related to compromised accounts, unauthorized access attempts, or IAM system failures
• Stakeholder Collaboration: Work closely with business owners, internal auditors, and risk management teams to gather access requirements and communicate security risks clearly

• Bachelor's degree in computer science, information technology or a related field from a reputable university
• 5+ years of relevant experience within banking environment
• IAM/IGA tools (e.g., SailPoint, CyberArk, ForgeRock)
• PAM, SSO, MFA implementation
• NIST, ISO 27001, COBIT knowledge

Financial services experience and IAM certifications (CIAM, CISSP) are highly valued