Identity And Access Management (Iam) Governance Lead-Itdsg

Work for the IMF. Work for the World.

The Information Technology Department (ITD) at the IMF is more than just a support function; it is a critical catalyst for change. We champion the seamless integration of cutting-edge technology solutions, ensuring the IMF's mission is propelled by innovation and efficiency.

Within the IT department, the Information Security and Governance (ISG) division and other first-line cybersecurity teams stand as the guardians of integrity and a beacon of trust. We are not just about managing risks; we are about envisioning, enabling, and implementing a secure future for global economic stability. Our teams are dedicated to:

• Crafting and executing a forward-thinking and resilient Cybersecurity Strategy.

• Enacting inclusive governance that balances security needs with operational fluidity.

• Developing policies and standards that stay ahead of the threat landscape.

• Ensuring compliance, resilience, and agility in our cybersecurity posture.

• Engaging in relentless evaluation, management, and tracking of cybersecurity and digital risks linked to the utilization of the Fund's information assets, ensuring a secure operational framework.

• Continuously enriching our annual information security culture, awareness, and education initiative, fostering a security-conscious environment across the organization.

• Administering a compliance management program dedicated to maintaining firm adherence to the Fund's information security policies and standards.

• Preserving a solid enterprise security reference architecture that acts as a safeguard for the Fund's information assets against pertinent threats.

• Engineering, implementing, and sustaining secure and resilient technological solutions, spanning both on-premises and cloud infrastructures, to support the Fund's mission.

• Overseeing cyber threat intelligence, and incident management, digital forensics, and investigations, alongside championing innovation in cybersecurity practices to achieve operational excellence and deliver value promptly.

As we expand our efforts to serve the Fund's staff and its members more effectively, we invite seasoned cybersecurity professionals to our elite cybersecurity teams. We are looking for individuals with the requisite skills and expertise to address the current and forthcoming cybersecurity and business challenges faced by the Fund.

Job Summary

The Information Technology Department (ITD)'s Information Security and Governance (ISG) division of the International Monetary Fund (IMF) is seeking to fill an IAM Governance Lead position.

Under the general supervision of the Chief Information Security Officer, this role is responsible for overseeing and leading the IAM strategy and the implementation and management of identity and access management governance within the IMF, as a second line function. The candidate will work closely with technology, security, and business teams to ensure that access controls are effectively managed throughout the lifecycle, compliance requirements are met, and IAM policies, procedures and work practices are aligned with IMF's goals, stakeholder expectations, and industry best practices.

Major Duties and Responsibilities

1.Designs and operationalizes a tailored IAM governance framework in collaboration with IT and business departments, and in alignment with the IMF's Business Technology Strategy, ensuring clear delineation of IAM roles and responsibilities.

2.Oversees identity lifecycle and access governance activities including developing, maintaining, and facilitating the adoption of IAM policy standards, processes, and procedures.

3.Evaluates the effectiveness of the identity lifecycle management processes and risk reduction measures, advising on gaps in technology stack, process improvements, and service delivery.

4.Collaborates with business and IT stakeholders across the IMF to understand access needs, ensuring IAM strategies support business processes and productivity.

5.Engages with key stakeholders to ensure seamless collaboration on IAM-related topics and establishes central communication platforms for continuous information sharing.

6.As a second line function, oversees the implementation, integration and operations of IAM tools and technologies, ensuring they meet the IMF's business and security requirements.

7.In close collaboration with Enterprise Architecture, Enterprise Security Architecture and Engineering teams, influences the IAM enterprise architecture and principles and drives the IAM strategic technology roadmap.

8.Leads the IAM governance committee, communicating compliance expectations, providing strategic direction, and facilitating discussions and decision-making processes related to IAM policies, standards, and practices.

9.Identifies IAM-related risks and collaborates with Operational Risk partners on access-related compliance monitoring and testing activities.

10. Oversees foreseeable enterprise-wide or departmental changes that may impact the IAM program and/or identity lifecycle operations.

11. Regularly monitors the IAM program's operational health and maturity through key metrics and risk reporting. Evaluates the effectiveness of identity lifecycle management processes and risk reduction measures.

12. Leads the delivery of IAM governance training programs for IT, security teams, and end-users to foster awareness and adherence to IAM policies and procedures.

Minimum Qualifications

Advanced degree in information security, computer science, engineering, mathematics, or related field of study plus a minimum of 8 years of progressive information security work experience; or a bachelor's degree in information security, computer science, engineering, mathematics, or related field of study and minimum of 14 years of progressive information security work experience.

• Candidates should possess one or more of these certifications- CISSP, CISM, SABSA, CEGIT.

• Experience leading IAM related programs in mid to large organizations.

Relationship Management Skills

• Ability to establish and maintain effective partnerships and working relations in a multi-cultural, multi-ethnic environment with sensibility and respect for diversity.

• Demonstrates ability to represent the department fully and successfully to internal and external audiences.

Work Management Skills

• Navigates through obstacles and challenges effectively and demonstrates commitment to deliver successful results.

• Ability to lead, guide and mentor a diversified team of information security experts.

• Ability to collaborate with IT and business colleagues to prioritize work, develop roadmaps, enhance services, and contribute meaningfully to the department's service delivery.

• Ability to balance multiple priorities and demands.

• Analytical skills that enable synthesis of inputs from many sources and allow for strategic thinking and tactical implementation.

• Interpersonal skills that create openness and trust among colleagues.

• Facilitation and conflict management skills that enable effective working relationships.

• Spoken and written communications that are compelling, convincing, and reassuring, and skills to articulate complex technical ideas to non-technical stakeholders.

• Pragmatic security expert with an inherent ability to balance security demands with business reality.

Technical Skills

• Deep experience advising strategies related to authentication, privileged access management, and IAM enforcement in public clouds (Azure-preferred, AWS) are essential for this role.

• Robust understanding of and direct experience delivering IAM-related zero trust capabilities.

• Experience deploying and handling Policy-Based Access Control (PBAC).

• Experience with a variety of IT security and related concepts or technologies (e.g., SSO, ADFS, MFA, Privilege Access Management, RBAC/ABAC, PKI, etc.)

• Experience in implementing least privilege access, segregation of duties (SoD), and just-in-time (JIT) access controls to minimize potential security risks.

• Experience with one or more IAM platforms like Microsoft Azure Active Directory, Entra ID, Okta, SailPoint, Saviynt, and CyberArk.

• Understanding of security protocols such as OAuth, OpenID Connect, SAML, and Kerberos, and how they are applied in access management.

Department:

ITDSG Information Technology Department Information Security & Governance

Hiring For:

A13, A14

The IMF is committed to achieving a diverse staff, including age, creed, culture, disability, educational background, ethnicity, gender, gender expression, nationality, race, religion and beliefs, and sexual orientation. We welcome requests for reasonable accommodations for disabilities during the selection process.