Information Security Identity And Access Manager

Doubleverify, Inc New York , NY 10007

Posted 2 months ago

Information Security Identity and Access Manager/Director

(IDAM Manager/Director)

Department: Information Security

Reports To: The CISO

Job Overview:

The IAM manager will be responsible for end to end management for assigned projects related to IAM Hygiene initiatives including project planning, delivery, client interaction, trouble shooting, execution, monitoring, control and people management. Provide security technical expertise and project leadership for the Identity and access management team. Review projects, new applications, and existing user access for appropriate security controls and segregation of duties. Establish and document policies, procedures and guidelines related to user and system access. Assist in compliance reviews and ensures processes and procedures are in compliance.

Responsibilities and Duties:

  • Implement a formal program to enhance and centralize the Identity and Access Management (IAM) function

  • Formulates and defines system's scope and objectives based on both user needs and a good understanding of the application, business, operational and/or industry requirements

  • Analyzes, defines, and prioritizes the business functional specifications for IAM initiatives. Helps to develops project scope, charter, constraints and assumptions for assigned projects

  • Responsible for stakeholder relationships to establish project expectations and priorities, coordinates and reports on project progress and accomplishments to the project team stakeholders, and sponsors

  • Demonstrates the ability to work with people and teams in a flexible, collaborative, and resourceful manner, with the ability to influence, to achieve project objectives

  • Centrally manages user security and entitlement reviews and certifications, as well as interfacing with internal clients and external vendors.

  • Meet with current application owners to analyze and create centralization plan and path to ensure compliance with existing procedures

  • Must understand all IAM functions including but not limited to user entitlement reviews and toxic combinations

  • Assist IAM team perform user entitlement reviews and certifications

  • Ability to work on Windows OS (active directory) and Linux environment is required

  • Security administration by securely provisioning user accounts and permissions for access into systems, services and shared folders for proper user access. Ensure that proper security settings are set up to reflect the functionality of the client requiring access

  • Assist to govern all system and user ID management processes along with monitoring the activity and requests where users require access in a timely manner.

  • Assist analyze potential security tools and applications to enhance and improve the processes, procedures and functions of security and identity management team

  • Work with team members and manager to design better systems and processes to improve efficiencies and automation


  • 5-10 years of experience in Information security including Identity and Access Management

  • Extensive experience in business analysis, documentation and user access review

  • Extensive knowledge of project management best practices, tools, and techniques

  • Extensive knowledge and experience with privileged identity management, access governance and other IAM solutions such as Activie Directory, Okta, Saviynt, Arcos, CyberArk, SailPoint, etc.

  • Mid to senior level IAM Security Administrator with 5-7 years of experience in production environment

  • Must be able to perform active directory functions such as adding users, disabling users, password resets, group management and application account provisioning and de-provisioning

  • Must be able to review application security and make recommendations for improvements

  • Strong communications skills (written and verbal) to be able to work with technical and non-technical team members

  • Ability to train, manage and assist co-workers and direct reports on all aspects of the program build and evolution

  • Exceptional organizational, interpersonal and team skills

  • Ownership orientation to solving problems

  • Education Bachelor's degree in computer science or related area

  • Industry recognized certification in security (e.g., CISSP, CISA, CISM, CEH, etc.)

  • Experience with MRC accreditation and deep understanding of the online advertising industry and ad platforms (networks, DSPs, ATDs, SSPs, Exchanges)

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Identity Access Managenet Engineer

New York Life

Posted 4 days ago

VIEW JOBS 11/18/2019 12:00:00 AM 2020-02-16T00:00 A career at New York Life offers many opportunities. To be part of a growing and successful business. To reach your full potential, whatever your specialty. Above all, to make a difference in the world by helping people achieve financial security. It's a career journey you can be proud of, and you'll find plenty of support along the way. Our development programs range from skill-building to management training, and we value our diverse and inclusive workplace where all voices can be heard. Recognized as one of Fortune's World's Most Admired Companies, New York Life is committed to improving local communities through a culture of employee giving and service, supported by our Foundation. It all adds up to a rewarding career at a company where doing right by our customers is part of who we are, as a mutual company without outside shareholders. We invite you to bring your talents to New York Life, so we can continue to help families and businesses "Be Good At Life." To learn more, please visit LinkedIn, our Newsroom and the Careers page of General Profile: * Recognized as a strong resource within the company for Identity & Access Management Services and Platforms * Implements the strategy to address internal or external business and regulatory issues * Proactively identifies and solves complex problems that impact the management and direction of the business * Contributes to the development of the IAM functional strategy * Accountable for leading/managing multidisciplinary projects and processes * Accountable for leading/managing a cross functional team across various workstreams   Functional Knowledge: * Perform the requirements, design, development, testing and implementation activities related to scalable IAM solutions that meet business requirements, policies, and IS standards. * Architect and design solutions that integrate with new or existing IAM platforms including provisioning, de-provisioning and integration of applications for authentication * Work with stakeholders to define and document business requirements and technical design documentation for the development of new connectors and robotics automation for business and technology applications * Work with stakeholders to define and document new applications within SailPoint Identity IQ for automated and semi-automated provisioning, including related SoD, custom provisioning forms/work items * Engineer, deploy, and maintain new data subsystems used in Identity Management and Access Management ecosystems, i.e. audit log repository and reporting, IAM Data Analytics capability that spans our multiple warehouses and repositories, ETL plant for effective and efficient data manipulation in and out of Identity Management and Access Management (IAM) context as well as between our own systems, and the seamless migration off and decommission of legacy repositories. * Assist with the development and maintenance of IAM related policies, standards and processes * Define and document requirements for enhanced IAM services such as base account provisioning and password sync (Password interceptor & Desktop Reset) * Maintain alignment of IAM vision with Information Security objectives and business requirements * Establish a continual service improvement plan and improve overall IAM service, focusing on operational, process and resource efficiency * Establish and provide metrics that provide visibility in to performance, control compliance and efficiency of the IAM effort * Assist with development and maintain process and control documentation supporting IAM services * Assist with the development and delivery of training materials related to IAM processes and technologies * Design, engineer and support a database to host Identity Management and Access Management (IAM) Reference Data required to support our Identity Management and Access Management business processes. This may be enhancements or an aggregation of existing repositories, EMP and EPR. * Consult with key business stakeholders to evaluate functional requirements and translate these requirements into information security solutions. * Provide guidance to business partners about applicability of information security to meet business needs. * Support the documentation and accreditation processes necessary to ensure that new IT systems meet the organization’s information security requirements. * Respond to crisis or urgent situations to mitigate immediate and potential threats. Investigates and analyzes all relevant response activities. * Ensure that IS security architecture, designs, plans, controls, processes are aligned with IS strategy and standards. * Represent Information Security in cross-functional meetings and projects. * Perform other duties and/or special projects as assigned * Advance IAM by driving policy and standard adoption and compliance   Core Technical Requirements: * 10+ years documenting business and technical requirements, project plans, issues/risks * 10+ years program management experience using both waterfall and agile methodologies * 10+ years of experience managing projects through the full system development lifecycle * 10+ years of experience with developing and maintaining run support procedures, standards and controls, including aggregation review and issue resolution, SoD violation reviews, NPE tracking and follow-up, native control reviews, password masking and encryption best practices * 10+ years of experience in information technology, with a focus on information security in one or more of the following areas:  IAM, cyber threats, security operations, data loss prevention, threat intelligence, security architecture, policy/governance * 10+ years of architecture experience in a hands-on role * 8+ years of experience with Active Directory, ODSEE or Ping * 8+ years of experience with Windows, Linux and Solaris Operating Systems knowledge * 8+ years of experience with one or more directories such as CA Directory, Oracle Directory, AD, Ping, or IBM Directory Server * 8+ years of experience with one or more databases such as Oracle, IBM and MS SQL etc. * 8+ years of experience with: major operating systems such as Microsoft Windows and Unix; mainframe security packages such as TopSecret, ACF2 and RACF; and/or leading packaged application solutions for ERP systems, Active Directory, Exchange, CRM systems or portals * 8+ years of experience in configuring and administering SailPoint IIQ and Security IQ * 8+ years of experience with configuring and maintaining SailPoint Identity IIQ, specifically performing role mining, RBAC, access certifications, workgroups, workflows * 8+ years of experience in deploying SailPoint IIQ and Security IQ, including full development of workflows, provisioning forms, provisioning policies, custom forms, base account provisioning, password management, reports, access certifications, out-of-the-box connectors, custom connectors * 8+ years of experience with federated identity and web services security concepts such as SAML, Liberty ID-FF and ID-WSF, WS-Federation, OpenID, OAuth and WS-Security * Familiarity of RPA tools and related implementations * Experience in SOX/MAR documentation and related controls * Experience with ABAC & Policy Based Access Control Solutions such as Axiomatics, Plain ID, etc.   * Familiarity with the JAVA programming language.  Hands on JAVA development experience a plus.   Qualifications: * Bachelor’s degree in Computer Science, Information Systems or equivalent related field preferred, with a minimum of 10+ years of experience in Information Technology OR in lieu of the Bachelor’s degree, a minimum of 15 years of experience in Information Technology * Master’s degree in Computer Science, Information Systems a plus * CISSP, CISA, J2EE or equivalent a plus SF: LI-CC1 EOE M/F/D/V If you have difficulty using or interacting with any portions of this Web site due to incompatibility with an Assistive Technology, if you need the information in an alternative format, or if you have suggestions on how we can make this site more accessible, please contact us at: (212) 576-5811. New York Life New York NY

Information Security Identity And Access Manager

Doubleverify, Inc