Jobs · Management · Illinois

Head of Identity, Access and Authentication Services

JLL · Chicago, IL · 4 wk ago
On-siteManagementFull-time

Key Responsibilities

  • Evolve IAM for AI agents and non-human identities: Lead the evolution of JLL’s IAM strategy to address the growing presence of AI agents, service accounts, and automated workloads as first-class actors in the enterprise. Design and implement dynamic, context-aware access controls — including purpose-based and just-in-time authorization — for agentic and automated systems. Establish governance frameworks that ensure trust delegation, auditability, and least-privilege principles are maintained across AI-driven environments, partnering with security and engineering teams to build behavioral baselines and enforce policy at runtime.
  • Standardize and expand IAM, Authentication, Authorization, and Active Directory: Define and drive the enterprise-wide standardization of Identity Access Management, Authentication, Authorization, and Active Directory functions across JLL. Establish consistent platforms, policies, and operating models that reduce fragmentation and improve security posture globally. Position the function to absorb and govern additional IAM-adjacent products and capabilities as JLL’s identity landscape grows and matures.
  • Create and execute strategy: Create and communicate a pioneering vision for Application Services within the identity and access management domain, including the value proposition in digital transformation, optimization of cloud-based identity services, and adoption of innovative technologies such as generative AI and zero-trust frameworks. Optimize, redesign, and deliver engagement models for Application Services: Streamline engagement practices, enable a compelling digital employee experience, and improve the value the enterprise receives from IAM, authentication, authorization, and Active Directory platforms and services. Champion innovation: Take advantage of breakthrough technologies by embracing and driving automation, observability, and modern identity standards such as OAuth 2.0, SAML, OpenID Connect, and passwordless authentication.
  • Manage and optimize cloud and hybrid identity environment: Create and execute strategies for cloud, hybrid, and on-premises identity infrastructure, and maximize the value the enterprise receives from investments in identity and access platforms and services.
  • Develop and engage talent: Create future-proofing talent strategies to develop, upskill, and retain an adaptive workforce amid the impact of generative AI and automation. Adopt leadership principles that engage teams and executives to change culture, build soft skills, and improve the employee experience.
  • Achie operational excellence: Modernize to a cost-optimized, on-time, and stable identity and access management environment that addresses technical debt and minimizes risks of new initiatives. Build resilient platforms to power business growth. Drive and communicate outcomes: Build relationships and collaborate effectively across various levels of the organization. Able to convey complex technical concepts and strategies that resonate with technical and non-technical stakeholders.

Leadership Requirements

  • Strategic Vision: Has a clear strategic vision, with the ability to develop and communicate an Application Services vision for identity and access that inspires and motivates staff and aligns with the IT and business strategy.
  • Outstanding Communication: Exceptional communication skills and ability to effectively communicate complex concepts to various audiences, including board members, executives, technical teams, and non-technical staff; aptitude to facilitate collaboration and build relationships across business lines is critical.
  • Business Acumen and Subject Matter Expertise: Strong business acumen, including industry, domain-specific knowledge of the enterprise and its business units. Deep understanding of current and emerging IAM, authentication, authorization, and Active Directory technologies and practices, and how other enterprises are employing them.
  • Change Management: Skilled at driving cultural change; evangelizing and implementing transformational initiatives where the target state included zero-trust, cloud identity adoption at scale, and IAM standardization. Able to consolidate identity and access capabilities in large, complex enterprise organizations to deliver improved efficiency, while balancing customer preferences for agility.
  • Team Leadership: Successful history of building and leading diverse teams; including fostering a collaborative, inclusive, and innovative work environment, as well as providing mentorship and professional development opportunities.
  • Risk Management: Possess a deep understanding of risk management principles and methodologies; ability to assess and prioritize risks effectively, develop risk mitigation strategies, and ensure that in-place controls are aligned with governance and policy requirements, particularly in the context of identity and access security.
  • Continuous Learning: Committed to continuous learning and staying up to date with the latest trends, technologies, and threats in the field of identity and access management. Includes obtaining relevant certifications, attending conferences, and actively participating in industry forums and networks.

Additional Requirements

  • Bachelor’s degree in Science or Engineering; Master’s degree preferred
  • 10+ years of experience in Application Services or identity and access management, with at least 5 years in a senior leadership role, preferably in a technical capacity in IAM, cloud identity, or enterprise directory services
  • Strong knowledge of current and emerging technologies, including Identity Access Management platforms (e.g., SailPoint, Saviynt, Okta, Azure AD), authentication protocols (SAML, OAuth 2.0, OpenID Connect), authorization frameworks, Privileged Access Management (PAM), Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Active Directory/Azure Active Directory, with an understanding of related IT security strategies; comfort expanding scope to adjacent IAM products as needed
  • Experience designing identity and access governance for non-human identities, AI agents, and automated workloads, including just-in-time access, purpose-based authorization, and least-privilege enforcement at runtime
  • Strategic thinker with a proven track record of implementing large-scale IT initiatives
  • Strong analytical and problem-solving abilities
  • Experience as a collaborative and influential leader instilling confidence among stakeholders in FORTUNE 500 environments
  • Established reputation as a bold thinking, progressive executive exhibiting strong levels of insight and exceeding stakeholders’ expectations
  • Transformational leader who leads change with energy and resilience to propel the business forward; has the courage to make complex decisions and take calculated risks; adjusts style to accommodate individuals and the various phases of growth

Similar jobs

Account Executive, Agency

ScrunchUnited States· 2 days ago
RemoteBusiness Development$100k–$130k/yrapply on jobs.ashbyhq.com

Account Executive

BrokurzUnited States· 5 days ago
RemoteBusiness Developmentapply on brokurz.com

Account Executive

SERVPRO Team WallCamp Hill, PA· 5 days ago
Business Development$75k/yrapply on servpro-team-wall-9695.careerplug.com

Account Executive

OutcastSan Francisco, CA· 1 wk ago
Business Development$64k–$87k/yrapply on careers.thisisoutcast.com

Account Executive

Bosch Building Technologies North AmericaHayward, CA· 4 wk ago
Business Development$60k–$100k/yrapply on recruiting.adp.com