Sr. Manager, Identity & Access Management

Job Summary & Objectives

The Senior Manager, Identity & Access Management (IAM) is responsible for developing and leading a robust, global IAM program to protect access to systems, applications, and data resources. This role oversees a team that designs, implements, and manages enterprise-wide identity governance, access provisioning, privileged access management, and authentication strategies. The person in this role will partner with IT HR, and Business stakeholders to lead IAM modernization efforts and ensure secure and compliant access management practices across the Firm.

The ideal candidate is a highly skilled, hands-on technical leader with strong interpersonal skills and a proven track record delivering enterprise IAM initiatives. They must be intimately familiar with technical aspects of all security domains and be able to drive consensus and collaboration among diverse teams, individuals, and business stakeholders to achieve desired results. The candidate must be detail-oriented with the ability to adapt rapidly to new challenges, think creatively and holistically, and quickly resolve unforeseen issues. 

Essential Job Duties & Responsibilities

• Develop and maintain an enterprise IAM strategy and roadmap aligned with business objectives and risk management priorities
• Lead the implementation and operation of identity governance solutions, access reviews, and provisioning/de-provisioning processes for workforce and third-party identities
• Oversee the design and enforcement of role-based access controls (RBAC), least privilege principles, and segregation of duties
• Lead selection and management of IAM tools and technologies, including Active Directory, Entra, SAML/SSO, multi-factor authentication (MFA), PAM programs, and identity governance solutions
• Lead the integration of IAM controls with cloud platforms, SaaS applications, and hybrid IT environments
• Partner with application owners and IT teams to enforce consistent authentication and authorization mechanisms across platforms
• Ensure timely and secure onboarding and offboarding of users, including employees, contractors, and vendors
• Develop and maintain policies, standards, and procedures related to identity lifecycle management and access security
• Design, implement, and manage Firm PKI solutions; Manage digital certificate inventory and lifecycle, including issuance, renewal, and revocation; Monitor IAM systems for anomalies, unauthorized access, and policy violations;
• Partner with SOC, IR, and VM teams to respond and resolve IAM and certificate related issues and vulnerabilities
• Promptly troubleshoot and resolve IAM related issues
• Maintain compliance with regulatory, privacy, and audit requirements, including ISO 27001, NIST, GDPR, and client-imposed security obligations
• Deliver reporting and dashboards to provide visibility into access patterns, risks, and compliance gaps to technical and non-technical stakeholders
• Stay informed of industry best practices, threat landscapes, and emerging IAM technologies to continuously improve the Firm’s IAM framework, program maturity, and efficiency
• Implement technical controls and solutions as needed to remediate cyber risks identified in security assessments, audits, and security testing
• Collaborate with and influence cross-functional IT stakeholders to adopt a security mindset, abide by security policies and standards, and identify and remediate security weaknesses
• Report on key information security KRI/KPI metrics and performance indicators
• Analyze information to proactively identify risks, trends, and opportunities for process improvements
• Promote a secure-by-design framework across IT development lifecycles
• Provide leadership, direction, and mentorship to the IAM team
• Make decisions and recommendations based on risk assessment, trend analysis, and industry best practices; communicate appropriate context to technical and non-technical stakeholders

Education

• Bachelor’s degree in information security, IT, risk management, related discipline, or equivalent experience

Preferred

• Professional certifications such as CISSP, CISM, or similar

Skills and Experience

• 15+ years of experience in IT or Information Security, with at least 5 years in a leadership role focused on IAM or access governance
• Proven ability to build and lead enterprise IAM programs at scale, ideally in a hybrid or cloud environment
• Deep understanding of identity lifecycle management, SSO, MFA, directory services (e.g., Active Directory, Azure AD), federation protocols (SAML, OAuth, OIDC), and PKI/certificate infrastructure
• Experience implementing and managing IAM tools and platforms (e.g., SailPoint, Okta, CyberArk, Ping Identity, Microsoft Entra, BeyondTrust, etc.)
• Strong understanding of NIST identity assurance levels and digital identity guidelines
• Familiarity with compliance frameworks and standards such as NIST CSF and ISO 27001
• Strong background in user access review, entitlement management, and policy enforcement
• Experience working in a global organization and collaborating across diverse business units
• Strong leadership, project management, and vendor management skills
• Passion for innovation, automation, and driving continuous improvement in IAM processes
• Excellent interpersonal, leadership, presentation, and collaborative skills
• Excellent written and verbal communication skills
• Ability to manage multiple concurrent objectives and activities, and make effective judgments in prioritizing and time allocation
• Must be able to execute with limited information and ambiguity
• Must have a continuous learning mindset and a demonstrated aptitude for understanding new vulnerabilities, threats, and attack vectors

• Must be able to build collaborative relationships and is comfortable interacting frequently with leadership and internal/external stakeholders

NY Only: The estimated base salary range for this position is $190,000 to $220,000 at the time of posting.