VP, IAM Assurance Leader

📋 Description

• Develop and sustain Strategic Roadmaps: Formulate and implement multi-year roadmaps aimed at fostering innovation, enhancing security posture, complying with regulatory standards, and optimizing IAM operations—particularly concerning IAM assurance capabilities, control monitoring, and evidence automation.

• Stakeholder Relationship Management: Cultivate and maintain robust relationships across Security Operations, Technology Teams, Governance, Operational Risk, and Internal Audit to ensure program coherence, readiness for audits, and the capacity to effectively demonstrate IAM control efficacy to stakeholders and regulators.

• Risk and Progress Oversight: Identify, evaluate, and alleviate technical and organizational risks while consistently updating executive leadership on blockers, corrective measures, and program milestones; guarantee prompt resolution of control deficiencies and recurring issues.

• Solution Development & Automation: Spearhead and contribute to the design of technical solutions for intricate automation scenarios, enhancing operational efficiency and scalability—particularly automation aimed at detecting, tracking, and rectifying IAM control defects.

• Program Compliance: Guarantee that standards, policies, and procedures are precisely documented and officially upheld for audit and compliance purposes; propose modifications to IAM standards based on security threats, regulatory requirements, and industry advancements.

• Performance Monitoring: Establish, execute, and oversee Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs) to assess program maturity and overall success, encompassing assurance coverage, control pass rates, remediation SLAs, defect recurrence, and reporting timeliness/accuracy.

• Leadership in Assurance Operations: Direct assurance initiatives to monitor, validate, and rectify key logical access and authentication controls within centralized IAM services (e.g., Active Directory, Oracle LDAP, Beyond Identity) as well as decentralized implementations as necessary.

• Ownership of Assurance Reporting Platforms: Administer and enhance the IAM assurance reporting platform(s) utilized to track compliance with Synchrony standards, control design, and operational effectiveness; ensure reporting is precise, resilient, and audit-ready.

• Agile Collaboration with Product Owners: Collaborate with IAM product owners and delivery teams employing Agile methodologies to prioritize and implement control enhancements, balancing risk mitigation with service reliability and customer impact.

• Support for Control Evidence & Audits: Ensure the organization can swiftly generate high-quality evidence for SOX, PCI, and other assessments; proactively tackle audit challenges with root-cause analysis and sustainable control improvements.

• Documentation & Enablement Oversight: Supervise the creation, maintenance, and review of operational process documentation and end-user/training resources necessary for the consistent execution of IAM assurance activities.

• Problem-Solving: Effectively address technical issues independently while escalating problems with clarity when necessary.

• Undertake additional critical responsibilities or special projects as assigned.

⛳️ Requirements

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Business Management, or a related field, in addition to 10+ years of IT experience, OR a combination of 12+ years of IT experience demonstrating increasing responsibility in lieu of a degree.

• At least 5 years of experience leading multiple IAM service products (e.g., authentication, privileged access, identity governance) and achieving results across both centralized and distributed service models.

• Minimum of 5 years of experience in developing and refining IAM service processes and reporting on IAM service key controls (design and operational effectiveness).

• At least 3 years of experience leading operations or assurance teams, focusing on continuous monitoring, issue management, and control remediation.

• A minimum of 2 years of experience utilizing Agile methodologies in roles such as Product Owner, Scrum Master, or Technical Lead.

• At least 2 years of experience in people management, overseeing teams of 2 or more engineers or contractors.

• Strong familiarity with IAM directory services, including Active Directory, LDAP, Oracle LDAP, or similar.

• Experience in assurance reporting, control monitoring dashboards, and/or metrics platforms used to track compliance and remediation status.

• Practical experience in Security Control Design and Security Assurance Operations, including defining controls, validating operational effectiveness, and facilitating remediation efforts.

• Hands-on experience with Unix/Linux Server Access Administration and access security.

• Experience with supporting or integrating IAM platforms and processes such as ServiceNow, SailPoint IdentityIQ, privileged access tools (e.g., Bomgar/BeyondTrust), and authentication technologies (e.g., RSA Authentication Manager or equivalents).

🏝️ Benefits

• Comprehensive employee benefits and programs designed to promote work-life integration and overall well-being.

• Opportunities for career advancement and skill enhancement.