Job Summary
We are seeking an Identity Management, Authentication & Authorization SME to serve as the technical authority for Identity and Access Management (IAM), authentication, authorization, and entitlement governance within a recovery environment. This role requires broad expertise across IAM architecture, governance, identity protocols, and security frameworks to ensure alignment with security, compliance, and operational resiliency objectives.
Key Responsibilities
• Serve as the Subject Matter Expert (SME) for Identity and Access Management (IAM), authentication, and authorization technologies.
• Oversee IAM governance, including user provisioning, deprovisioning, and access certification processes.
• Implement and manage Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Privileged Access Management (PAM).
• Define, maintain, and enforce authentication and authorization standards, policies, and best practices.
• Implement and support identity protocols including SAML, OAuth 2.0, OpenID Connect, Kerberos, and LDAP.
• Partner with cybersecurity, infrastructure, and application teams to ensure secure identity and access management.
• Provide guidance on Zero Trust principles and identity-centric security strategies.
• Support audit, regulatory, and compliance activities related to identity and access controls.
• Troubleshoot complex IAM issues and perform root cause analysis.
• Contribute to the implementation of governance standards across enterprise IAM environments.
Required Qualifications
• Extensive experience in Identity and Access Management (IAM), authentication, and authorization.
• Strong understanding of Identity Governance and Administration (IGA), access lifecycle management, and entitlement models.
• Hands-on experience with IAM platforms such as SailPoint, Okta, Ping Identity, Microsoft Entra ID (Azure AD), CyberArk, ForgeRock, or Saviynt.
• Expertise in authentication and federation standards including SAML, OAuth 2.0, OpenID Connect, LDAP, Kerberos, and JWT.
• Experience with directory services such as Microsoft Active Directory.
• Strong understanding of IAM governance, identity protocols, authentication, authorization, and enterprise security best practices.
• Excellent analytical, troubleshooting, and communication skills.
• Experience collaborating with cross-functional security, infrastructure, and application teams.
Preferred Qualifications
• Experience with Zero Trust Architecture and identity-centric security frameworks.
• Familiarity with DevSecOps practices and IAM integration within CI/CD pipelines.
• Knowledge of API security and machine-to-machine authentication.
• Experience working in regulated industries such as financial services.
Certifications
• Certified Information Systems Security Professional (CISSP).
• Certified Information Security Manager (CISM).
• Certified Identity and Access Manager (CIAM) or equivalent identity management certification.
• Vendor-specific certifications from SailPoint, Okta, Microsoft, or CyberArk.