Identity & Access Management Director
Flagstar Bank FSB

Job Info

---

Job Summary
The Identity and Access Management (IAM) Director is responsible for developing and leading the evolution and automation of the Identity and Access Management (IAM) program, by leveraging key technologies and IAM best practices. Oversees the IAM strategy, implementation, and operationalization of IAM technology and processes. Oversee resolution of operational issues with IAM technology and processes.

Job Responsibilities:

• Define, select and guide IAM technology and process integrations
• Manage the projects and tasks coordination related to IAM technology, processes
• Utilize effective people leadership and influencing skills to successfully carry out IAM and the overall Cybersecurity mission
• Establish, document, and communicate IAM services, capabilities, policies, and procedures to key IAM stakeholders and consumers.
• In concert with Security Architecture & Engineering, establish, build out and oversee the IAM function and its related activities including planning, testing, reporting, and delivering IAM services
• Manage a staff of access management professionals, which includes but is not limited to, recruiting, hiring, and training new staff, conducting performance reviews, and providing leadership and coaching for team members
• Ensure IAM systems are adequate, maintained, backed up and supported
• Ensure processes for access provisioning and access certifications are consistent and repeatable
• Manage and coordinate IAM projects to mitigate threats and risks to the organization's operations, assets, and data
• Ensure information security systems are functional and maintained
• Responsible for managing the Information Security personnel, projects, and tasks
• Ensures compliance with applicable federal, state and local laws and regulations. Completes all required compliance training. Maintains knowledge of and adhere to Flagstar's internal compliance policies and procedures. Takes responsibility to keep up to date with changing regulations and policies.

Job Requirements:

• Bachelor's Degree required preferably in Information Science or Technology, MIS, Computer Science or Business Administration
• 10+ years of overall IT or IT Security experience with 5+ years in a Bank or Financial Services environment
• 5+ years of experience directly leading and developing a team of application development professionals
• Demonstrate extensive understanding of IAM concepts such as directory services, SSO, federation, MFA, provisioning, access re-certification, role-based access control (RBAC) and separation of duties (SOD).
• Functional areas and work experience should include fine-grained access control, policy driven security, Identity Governance, Access Management, and Privileged access management, user provisioning/de-provisioning, and federation.
• Expertise in Active Directory and/or LDAP management, Azure AD, SSO across multiple domains, MFA, Identity Governance
• Expertise in implementing IGA / IAM tools such as SailPoint, Microsoft Identity Manager etc.
• Expertise in and/or experience with PAM tools
• Develop and administer IAM security policies, standards, and procedures to protect information assets.
• Identify, recommend, and implement corrective actions in response to security violations.
• Perform security assessments to determine vulnerabilities in identity and access management systems and applications.
• Serve as the central point of contact for information security and IAM policy and process related issues.
• Partner with HR for seamless onboarding and offboarding of IAM resources.
• Establishing and producing metrics and KPIs.
• Support Governance, Risk & Compliance (GRC) and Disaster Recovery (DR) efforts and initiatives.
• Stay abreast of industry trends, solution landscape and market conditions and update peers and management accordingly
• Knowledge of Information Security methods and procedures.
• Knowledge of Cyber Security offensive and defensive security controls.
• Excellent oral and written communication skills.
• Ability to adapt and manage frequent change, delays, or unexpected events.
• Knowledge of methods for evaluating, implementing, and disseminating IT security procedures
• 5 - 10% travel required

For Internal use only: Job Band B

This job has expired.