Identity And Access Management Business Engagement Lead - Manager

Deloitte & Touche L.L.P. Chicago , IL 60602

Posted 2 weeks ago

Deloitte leads with purpose, solving complex issues for our clients and communities. Across disciplines and across borders, Deloitte Touche Tohmatsu Limited (DTTL) Global supports our network of national member firms by developing and driving global strategy, programs, and platforms, and creating new solutions and transformational experiences. Our people share a passion for igniting change and a strong service orientation that shapes our organization and those it supports.

The Deloitte Global Cybersecurity function is responsible for the firm's overall objectives of enhancing data protection, standardizing and securing critical infrastructure and gaining cyber visibility through security operations centers. The Cybersecurity organization delivers a comprehensive set of cybersecurity services to Deloitte member firms through regional delivery hubs and a Global Fusion Center. We are seeking an Identity and Access Management Business Engagement Lead to join the team.

The IAM Business Engagement Lead reports to the Business Engagement Senior Manager. The role fosters the adoption of IAM best practices across Deloitte. This person work with cross-functional teams to develop and maintain controls that effectively reduce security risk while supporting business initiatives.

Responsibilities

As part of the Global IAM team, this professional will:

Strategic

  • Translate IAM strategies and direction into actionable, measurable controls

  • Ensure the alignment of IAM controls across Deloitte

  • Advance the IAM program by driving policy and standard adoption and compliance

  • Work with limited supervision to continuously improve the IAM posture at Deloitte from a technical and functional perspective

Operational

  • Proactively identify control gaps and opportunities for improvement

  • Document and translate business needs into technical requirements for IAM controls, metrics, and solutions

  • Assist with control implementation and remediation by reviewing system documentation, evaluating compensating controls and identifying residual risk

  • Collect and publish metrics to measure IAM control compliance

  • Assist with the development and maintenance of IAM-related policies, standards and processes

Relationship Management

  • Provide solution consulting with business stakeholders

  • Serve as the first point of contact between IAM and other organizations

  • Work with key stakeholder groups to demonstrate the effectiveness of IAM controls

  • Govern and advocate holistic IAM service delivery

  • Communicate complicated technical concepts effectively to a broad group of stakeholders

  • Establish relationships with both technical and business leaders to advance the adoption of IAM services

Expectations from the Professional

Our purpose is to make an impact that matters and our aspiration is to be the undisputed leader in professional services. At the root of these goals are our Shared Values, which describe the distinctive Deloitte culture. Our Values are timeless, all-encompassing and embrace the cultures in which Deloitte member firms operate. We expect all professionals to live our purpose and shared values and be the brand ambassadors holding Deloitte Global and member firms together.

Integrity

At Deloitte, everything we do starts with integrity. In our marketplace, nothing is more important than our reputation and, accordingly, we commit to conducting business with honesty, distinctive quality, and high levels of professional behavior.

Outstanding value to markets and clients

We play a critical role in helping both the capital markets and our member firm clients operate more effectively. We consider this role a privilege, and we know it requires constant vigilance and unrelenting commitment.

Commitment to each other

We are proud of our culture of borderless collegiality and work hard to support our people. We strive to create an inclusive environment that reflects our strong, clear expectations about diversity, respect, and fair treatment.

Strength from cultural diversity

Our member firm clients' business challenges are complex and benefit from the innovation and varied perspectives that our practitioners bring. We understand that working with people of different backgrounds, cultures, and thinking styles helps our people grow into better professionals and leaders.

#GLBGTI

#GLBCyber

Education

  • Bachelor's degree: degree in information security, information systems, computer science, or related field

  • Master's degree preferred

Work experience

  • Minimum of five years experience in the Information Security / Cybersecurity with a focus on strategy development, governance and identity management

  • At least one year experience in a management / leadership role

  • Working knowledge of IAM concepts and technology, including but not limited to:

  • Authentication, authorization and accounting

  • Identity lifecycle management

  • Cloud identity services

  • Single Sign On

  • Federation

  • Privileged Access Management

  • Multi-factor authentication

  • Identity analytics

  • Proven track record and experience of the following in a highly complex and global organization:

  • developing and driving information security / cybersecurity strategy

  • designing and driving implementation of a tailored governance framework

  • connecting closely with operational leadership to make strategy and governance relevant for day-to-day operations

Certification

  • Professional security management certification strongly desirable, such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM)

Skills/abilities

  • Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate strategic information security topics, policies and standards as well as risk-related concepts to technical and nontechnical audiences at various hierarchical levels

  • Sound knowledge of business management and an expert knowledge of information / cybersecurity strategy and governance

  • Knowledge and understanding of information security and privacy legal and regulatory requirements

  • Knowledge of common information security management frameworks, such as ISO/IEC 27001, COBIT, and NIST, including 800-53 and the Cybersecurity Framework

  • Experience interacting, presenting and working with C-level executives (CEO, CIO, etc.)

  • Ability to work with and lead a global team in a matrix environment

  • Ability to travel as needed up to 10%

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Disclaimer: Nothing in this job description/posting shall constitute an offer or promise of employment. If you are not reviewing this job posting on our Careers' site (jobs2.deloitte.com) or one of our approved job boards we cannot guarantee the validity of this posting. For a list of our current postings, please visit us at jobs2.deloitte.com

Requisition code: DE20GLBGTS005JD0447


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Identity And Access Management Sr Architect

Bank Of America Corporation

Posted 2 weeks ago

VIEW JOBS 11/26/2019 12:00:00 AM 2020-02-24T00:00 Job Description: The Cyber Security Technology (CST) function within Global Information Security (GIS) is responsible for technology research and innovation, architecture, engineering, solutions development and deployment, maintenance and support of information technology security controls, along with strategic plan development across the GIS organization. This position is for a Sr. Architect who specializes in Identity and Access Management (IAM) technologies and has the capabilities to lead complex projects which span across multiple lines of business throughout the globe. Must be able to meet demands of working across multiple work streams, communicate effectively with senior technology leaders and business partners. The candidate for this position must be effective in articulating strategy, developing roadmaps, and influencing the direction for IAM technologies. Key Responsibilities: * Define, document, and publicize strategic roadmap for various IAM technology stacks * Influence to ensure alignment & effective prioritization of Product Roadmaps to IAM Strategy * Continuously follow and evaluate IAM technology landscape (market/best practice) for gap/opportunity development * Bridge the gap between various development teams for designing solutions and business partners to fully understand their requirements * Define enterprise wide standards and policies in respect to emerging technologies and provide the control framework to ensure adherence Required Skills: * Strong understanding of industry standard SSO technologies and protocols (OAuth, OpenID Connect, FIDO, SCIM, LDAP, SAML) * Experience with multi-factor authentication technologies and privileged access management * Understanding of API design concepts and modern application interaction patterns * Strong knowledge across the technology stack such as web protocols, multiple operating systems, hypervisors and distributed systems architecture. * Proficient in Windows, Midrange and Mainframe access provisioning and security systems * Familiarity with deployments and integrations of IAM solutions within the cloud (Azure or AWS) * Strong discipline regarding enforcement of access management core principles * Experience deploying large-scale, global projects and programs * Familiarity with IT security and risk management practices Desired Job Skills: * 10+ years working in Information Technology * 5+ years working in Identity & Access Management * Understanding of financial services regulatory and legal environment Education/Certification: * CISSP Certification * Bachelor's degree in Information Technology or related field Shift: 1st shift (United States of America) Hours Per Week: 40 Bank Of America Corporation Chicago IL

Identity And Access Management Business Engagement Lead - Manager

Deloitte & Touche L.L.P.