Project description
To lead the global delivery and oversight of the bank's Identity and Access Management (IAM) programme, ensuring that IAM capabilities are standardized and scalable across regions, and aligned with international regulations especially in the US. The role requires strong leadership across diverse regulatory landscapes, deep technical IAM expertise, and the ability to influence security posture globally.
Responsibilities
- Global IAM Strategy & Programme Leadership:Define and implement a unified global IAM strategy, balancing regional regulatory requirements, local IT landscapes, and global business priorities.Deliver key IAM capabilities including:Identity Governance & Administration (IGA)Role-Based and Attribute-Based Access Control (RBAC/ABAC)Privileged Access Management (PAM)Multi-Factor Authentication (MFA)Single Sign-On (SSO) across cloud and on-premise applicationsJML (Joiner-Mover-Leaver) lifecycle automationCoordinate global IAM programmes and initiatives across Americas, EMEA, and APAC regions.Regulatory Alignment & Risk ManagementEnsure IAM controls meet global compliance requirements in particular US.: FFIEC Cybersecurity Guidelines, GLBA, SOX, NYDFS Part 500Lead periodic access reviews, privilege management initiatives, and control remediation efforts across jurisdictions.Provide oversight for IAM risk assessments, audits, and regulator inquiries.Stakeholder ManagementEngage senior stakeholders across lines of business, IT, compliance, audit, and HR globally.Act as a strategic advisor to executive management on IAM trends, threats, and control effectiveness.Ensure alignment with enterprise risk appetite and business continuity requirements.Operational Governance & Delivery OversightSet governance standards for IAM roles, policies, and access certification processes globally.Oversee IAM project portfolios including vendor implementations (e.g., SailPoint, CyberArk, Okta, Azure AD, Oracle IDCS).Implement global KPIs, SLAs, and metrics for IAM operations, reporting at regional and global levels.Champion continuous improvement and threat-informed IAM evolution (e.g., adaptive access, AI-driven anomaly detection).Team ManagementLead a globally distributed team of IAM engineers, analysts, project managers, and third-party vendors.Promote knowledge-sharing, consistent delivery standards, and cybersecurity culture across regions.
SKILLS
Must have
- At least 10 years as a Program/Project Manager within the financial services, including 5+ years in IAM related function.Strong knowledge of IAM tooling and architecture (on-prem, hybrid, and cloud environments).Deep understanding of regulatory and compliance frameworks globally especially the U.S. (GLBA, SOX, FFIEC, NYDFS)Proven experience leading multi-region IAM transformations in banking or other highly regulated industries.
Nice to have
Experience with Zero Trust architecture, AI/ML in IAM, or CIEM (Cloud Infrastructure Entitlement Management).Familiarity with financial services IAM use cases such as trading systems, treasury platforms, and customer-facing identity platforms.Knowledge of DevSecOps and IAM integration in agile environments