Director of Identity and Access Management

We are seeking a strategic and experienced Director of Identity and Access Management (IAM) to lead the design, implementation, and governance of our enterprise IAM program. This role will drive the development and execution of IAM strategies to ensure secure, scalable, and compliant identity services across the organization. The ideal candidate will be a proven leader with deep expertise in IAM technologies, regulatory requirements, and cross-functional collaboration.

• Develop and lead the organization’s IAM strategy, aligning with enterprise security and business goals.
• Oversee implementation, administration, and lifecycle management of IAM tools and services (e.g., SSO, MFA, PAM, IGA).
• Define IAM policies, standards, and controls to ensure compliance with internal security policies and external regulatory requirements (e.g., SOX, HIPAA, GDPR).
• Manage IAM governance processes including access reviews, role management, and user provisioning/deprovisioning.
• Lead IAM risk assessments and audits, working closely with compliance, audit, and legal teams.
• Partner with IT, HR, and business units to ensure seamless onboarding, access provisioning, and role-based access controls (RBAC).
• Drive IAM modernization initiatives, including cloud IAM integration and Zero Trust architecture.
• Lead and mentor a team of IAM engineers and analysts; oversee vendor management and contract negotiations.
• Track and report on IAM metrics and KPIs to senior leadership and stakeholders.

• Bachelor’s degree in Computer Science, Information Security, or related field; Master’s degree or MBA preferred.
• 10+ years of experience in IT, with at least 5 years focused on IAM in a leadership capacity.
• Deep understanding of IAM concepts and technologies: SAML, OAuth, OpenID Connect, LDAP, Active Directory, Azure AD, Okta, SailPoint, CyberArk, etc.
• Proven experience with IAM in cloud environments (AWS, Azure, GCP).
• Excellent leadership, project management, and communication skills.
• Relevant certifications a plus (e.g., CISSP, CISM, CCSP, GIAC, Certified Identity and Access Manager).