Job Search

Our Wheeling, WV client has a contract opportunity for an IAM Director who will oversee the strategic development, implementation, and governance of the client’s IAM program. This role ensures secure, compliant, and efficient access to systems and data while mitigating risks associated with identity and access lifecycle management.

• This role is remote – MAY be asked to travel for quarterly meetings to Wheeling, West Virginia (this is not a solid requirement)
• Eastern Time Zone

Responsibilities:

• The IAM Director is responsible for leading the bank’s Identity and Access Management program, ensuring that only authorized individuals and systems access critical resources in compliance with banking regulations (e.g., FDIC, OCC, FFIEC) and industry standards (e.g., NIST 800-53, ISO 27001).
• This role involves developing IAM strategies, overseeing program execution, managing a team of IAM professionals, and collaborating with cross-functional stakeholders to address risks, compliance, and technological advancements.
• The IAM Director plays a critical role in safeguarding customer data, protecting against cyber threats, and supporting the bank’s digital transformation initiatives.

Key Responsibilities

1. Strategic Leadership and Governance:

• Develop and execute the client’s IAM strategy, aligning with business objectives and regulatory requirements.
• Establish and maintain IAM policies, standards, and procedures, including role-based access control (RBAC), least privilege, and identity federation.
• Partner with senior management and regulatory teams to prepare for audits, compliance reviews, and regulatory exams.
• Define metrics and KPIs to measure IAM program effectiveness and report progress to executives.

2. Program Management:

• Oversee end-to-end IAM operations, including user provisioning, access certification, single sign-on (SSO), multi-factor authentication (MFA), and privileged access management (PAM).
• Manage the IAM technology roadmap, integrating solutions like Active Directory, Azure AD, Okta, Ping Identity, or SailPoint.
• Lead IAM projects, such as cloud IAM adoption or zero-trust architecture implementation, ensuring timely delivery and risk mitigation.
• Monitor and address IAM-related incidents, driving remediation and process improvements.

3. Team Leadership:

• Manage a team of IAM analysts, engineers, and specialists (typically 3–10 staff in a medium-sized bank), providing mentorship, training, and performance evaluations.
• Foster a culture of security awareness and collaboration within the IAM team and across IT, compliance, and business units.
• Coordinate with external vendors and contractors to scale IAM capabilities as needed.

4. Compliance and Risk Management:

• Ensure adherence to banking regulations (e.g., GLBA, SOX, GDPR for international operations) and industry frameworks (e.g., NIST, COBIT).
• Conduct regular access reviews, audits, and risk assessments to identify and remediate vulnerabilities.
• Develop and maintain IAM compliance reports, including incident analyses and recommendations for improvement.
• Collaborate with risk management and audit teams to address findings and implement controls.

5. Stakeholder Collaboration:

• Work with IT, cybersecurity, HR, and business units to integrate IAM into workflows, such as onboarding/offboarding and application access.
• Engage with senior leadership, providing insights on IAM trends, threats, and innovations (e.g., AI-driven identity analytics, blockchain-based identity).
• Represent the client in industry forums or regulatory discussions to enhance IAM practices.

6. Innovation and Technology:

• Stay abreast of emerging IAM technologies, such as cloud-native IAM, zero-trust models, and automation tools.
• Evaluate and recommend new IAM tools or upgrades to enhance security and efficiency.
• Drive digital transformation initiatives, ensuring IAM supports mobile banking, online platforms, and customer-facing applications.

Qualifications

• Bachelor’s degree in Computer Science, Information Security, Information Technology, or a related field. A master’s degree (e.g., MBA, MS in Cybersecurity) or advanced certifications are preferred.
• Professional certifications such as CISSP, CISM, CISA, CRISC, or Certified Identity Governance Expert (CIGE) are highly desirable.
• Minimum of 7–10 years of experience in information security or IAM, with at least 3–5 years in a leadership role.
• Proven experience implementing IAM solutions (e.g., SSO, MFA, PAM) in a financial services or regulated environment.
• Familiarity with banking operations, regulatory compliance, and financial technologies (e.g., core banking systems, digital banking platforms).
• Experience managing teams and leading cross-functional projects.

Technical Skills:

• In-depth knowledge of IAM concepts (e.g., SSO, RBAC, identity federation, privileged access management).
• Expertise with IAM tools, such as Microsoft Active Directory, Azure AD, Okta, Ping Identity, SailPoint, or Saviynt.
• Strong understanding of authentication protocols (e.g., SAML, OAuth, OpenID Connect, Kerberos).
• Familiarity with cloud platforms (e.g., AWS, Azure) and their IAM frameworks.
• Knowledge of scripting/programming languages (e.g., Python, PowerShell, Java) for automation and troubleshooting.
• Understanding of networking concepts (e.g., firewalls, VPNs, DNS) and security protocols (e.g., TLS, SSH).

Soft Skills:

• Exceptional leadership, communication, and interpersonal skills to engage with technical and non-technical stakeholders.
• Strong analytical and problem-solving abilities to address complex IAM challenges.
• Ability to manage multiple priorities in a fast-paced environment.
• Strategic thinking with a focus on risk management and business alignment.
• Commitment to fostering a diverse and inclusive team culture.