Identity and Access Management (IAM) Manager
Regions Bank · Nashville, TN · 2 wk ago
On-siteManagementFull-time
About the role
The Identity and Access Management (IAM) Manager position is responsible for leading a team in implementing IAM best practices across the enterprise and ensuring operating systems are secure. This role focuses on increasing efficiency and improving IAM capabilities for the organization.
Responsibilities
- Manages a group of analysts, engineers, or administrators to support the IAM, Mainframe or Operation Systems teams within the Information Security function.
- Develops and maintains Information Security standards related to Identity & Access Management.
- Ensures all processes are documented appropriately.
- Works closely with Risk/Audit partners to meet all compliance objectives related to access management.
- Develops Key Risk Indicators (KRI's) and Key Performance Indicators (KPI's) to ensure operational effectiveness.
- Identifies opportunities for improvement in the IAM processes and systems.
- Provides clear and effective communication with all levels of the organization.
- Fosters an inclusive, collaborative environment within the team, with Enterprise Architects, Infrastructure, Support, and with other IT teams.
- Serves as primary escalation point for IAM-related issues and provides solutions.
- Manages the teams through recruiting, training, coaching, communicating job expectations, and appraising associate performance.
- Promotes adoption of automated password and secrets management to eliminate manual processes and static credentials.
- Drives automation of secrets and vault operations through CI/CD pipelines, infrastructure-as-code, and DevSecOps best practices.
- Expands and matures enterprise secrets capabilities, promoting adoption of automated password and secrets management to eliminate manual processes and static credentials.
- Oversees administration and optimization of enterprise secrets platforms (HashiCorp Vault and CyberArk).
- Ensures disciplined change management by evaluating risk and control impacts when designing or implementing changes to processes, systems, products, and/or services.
Requirements
- Bachelor's degree in a related field and six (6) years of related experience.
- Two (2) years of lead or supervisory/managerial experience.
- Basic understanding of UNIX security, as it relates to user access and provisioning.
- Experience managing Information Technology and/or Information Security projects.
- Experience with Agile methodology.
- Experience with PowerBI/Tableau for reporting projects.
- Good understanding of network and infrastructure (Networking protocol knowledge is an advantage - TCP/IP, HTTP, HTTPS, DNS, firewalls, proxies, IDS, IPS etc).
- Recognized security industry certifications preferred (CISSP, CAP, etc.).
- Significant knowledge of Active Directory security, as it relates to user access and provisioning.
Skills and Competencies
- Ability to be broadly focused and manage multiple efforts concurrently.
- Work effectively to build relationships with colleagues, application owners, and executive management through positive interaction.
- Multi-task, to be self-initiated, and work independently.
- Show planning and project management skills.
- Excellent customer service and interpersonal skills.
- Proactive, decisive, action-oriented individual.
- Proven ability to set technology strategy.
- Strong attention to detail and outstanding analytical skills.
- Strong organizational skills.
- Strong written and verbal communication skills.
- Understand and interpret applicable rules, regulations, and industry guidance.
Additional Responsibilities
- Oversee administration and optimization of enterprise secrets platforms (HashiCorp Vault and CyberArk), ensuring high availability, scalability, and resilience.
- Drive automation of secrets and vault operations (onboarding, provisioning, lifecycle management) through CI/CD pipelines, infrastructure-as-code, and DevSecOps best practices.
- Lead the expansion and maturation of enterprise secrets capabilities, promoting adoption of automated password and secrets management to eliminate manual processes and static credentials.
- Partner with application, platform, and security teams to onboard services and scale secure secrets workflows across multi-cloud and on-prem environments, establishing standards for access, rotation, and usage.
- Build and lead a high-performing team with strong cloud, DevSecOps, and platform engineering expertise, providing technical leadership aligned to IAM strategy and modern security practices.