(Enter skills, job title, etc.)

Identity and Access Management (IAM) Technical Lead - 252102

Job Title:

Identity and Access Management (IAM) Technical Lead - 252102


New York, NY


Information Technology

Job Description:

Area Overview:

The position is the technical integration lead of the Bank’s Identity and Access Management (IAM) group that resides within the Information Security Function. The position will work with the National IT function, which provides a number of core IAM technology services to the Bank.

The candidate will work closely and collaboratively with the Bank’s business areas and control functions to develop, integrate, and apply technical IAM solutions towards an optimal future state design, accomplished through a multi-phase portfolio of projects. The scope includes the protection of mission-critical applications and systems that support market operations, financial institution supervision, services to banking organizations, services to the U.S. Treasury Department, and internal Bank operations.  

The successful candidate will be a leader who has extensive understanding of IAM technologies, concepts, policies, processes, best practices, and solutions.  The candidate should also have working knowledge of the broader information security field, including the cyber threat environment.

  Principal Duties and Responsibilities:

·         Develops and implements security standards, procedures, and guidelines for multiple platforms and diverse systems environments (e.g., corporate, distributed and client server systems). 

·         Reviews the development, testing and implementation of security plans, products and control techniques.

·         Investigates and recommends appropriate corrective actions for data security incidents. 

·         Provides technical expertise and support to client and IT management and staffs in risk assessments and the implementation of appropriate data security procedures and products. 

·         Maintains an awareness of existing and proposed security standard setting groups, State and Federal legislation and regulations pertaining to information security. 

·         Identifies regulatory changes that will affect information security policy, standards and procedures and recommends appropriate changes. 

Job Requirements:


·         Excellent communicator in writing and in person, able to communicate difficult technical issues to stakeholders and higher management.

  • Proven experience gathering IAM business requirements and driving standardization to support business activities while maintaining security of the application and data systems.
  • 3+ years of technical architecture experience integrating identity management, access management and access governance software into infrastructure and applications.
  • 3+ years of experience with installation, integration and deployment of Sailpoint IdentityIQ  and SecurityIQ product in MS Active Directory and Oracle Enterprise Directory environments, including workflow and request process automation.
  • Expertise in technical implementation of a centralized IAM program to improve access controls across information systems while ensuring alignment with  existing security policies.
  • Experience in implementing access controls for Windows, Linux, AIX, Openshift PaaS and Cloud (AWS/Azure) systems.
  • Working knowledge of Splunk and experience implementing monitoring dashboards for event-driven IAM compliance.
  • Ability to integrate information systems with HR on-boarding and off-boarding processes.
  • Expert knowledge of Active Directory, Oracle Enterprise Directory, SAML , Single Sign On and Multi-Factor Authentication technologies.
  • In depth understanding of IAM best practices for integrating Java, Sharepoint and other applications with Active Directory; Java development background a plus.
  • Knowledge of technology trends and developments in the areas of IAM, and knowledge and experience with formal security and control frameworks such as ISO 17799, COSO, ITIL, and NIST SP 800-53 that have applicability to the discipline;
  • In depth understanding of capabilities and limitations of a wide range of technologies, platforms, architecture, methodologies; well-versed in current and emerging information security technologies;
  • Experience with Cloud Identity as a Service such as Microsoft Azure Active Directory, and Identity Federation protocols such as SAML2, WS-Federation, OAuth 2, OpenID Connect, etc.
  • Bachelor's Degree in a relevant field of work or 7-9 years of equivalent relevant work experience.
  • Possession of or the ability to obtain and maintain national security clearance.
  • Possession of a CISSP/CISM or similar security certification.


Tip of the Week

Make sure your LinkedIn profile is identical or similar to your resume. Consistency is key!


View Starpoint's Top Tips.

Send Us Your Resume

Let Starpoint's expert recruiters help you land your next job.


Submit Your Resume