Lead IAM Governance Specialist
M&T Bank · Wilmington, DE · 3 wk ago
Information Technology$128k–$214k/yrFull-time
Primary Responsibilities
- Provide governance leadership across common IAM platforms (e.g., SailPoint, Azure AD / Entra ID, CyberArk, PAM solutions).
- Define expectations for birthright access, role models, entitlement management, and certification strategies.
- Ensure governance models are tool aware but tool agnostic, scalable, and not overly reliant on manual effort.
- Lead governance strategy for cloud identity, including Azure AD / Entra ID, RBAC, conditional access, and privileged role governance.
- Establish guardrails and standards for cloud-native access models, hybrid identity, and federated access.
- Serve as a senior advisor during complex access decisions, risk exceptions, and enterprise initiatives.
- Stay ahead of emerging risks in the workforce IAM space, including non human identities (NHI), AI/service accounts, cloud privilege sprawl, and over entitlement.
- Proactively identify control gaps and recommend governance enhancements.
- Contribute to IAM roadmaps, tooling strategy, and long term modernization efforts.
- Prepare reports through gathering, analyzing and summarizing data and information; prepares presentation materials for senior leadership reports.
- Partner with appropriate teams and leadership, First Line Risk, and Internal Audit to proactively mitigate risk through creation and enhancement of comprehensive policy framework.
- Execute comprehensive response to internal audit and regulatory requests, refining processes for efficiency and accuracy.
- Create remediation plans and supports team implementation, providing guidance to teams to ensure comprehensive execution against key actions and milestones.
- Foster strong partnerships with stakeholders in Cybersecurity teams to ensure successful development and implementation of the governance framework.
- Recommend key actions and milestones in project plan and leads execution of specification project milestones.
Scope of Responsibilities
- Partners with peers, manager, Cybersecurity team and leadership, First Line Risk team, Internal Audit team, and external auditors.
- Exercises judgement in selecting methods, techniques, and evaluation criteria in obtaining results.
- Exerts significant latitude in determining objective of assignment.
Education and Experience Required
- Bachelor's degree and a minimum of 5 years’ relevant work experience, or in lieu of a degree, a combined minimum of 9 years’ higher education and/or work experience inclusive of a minimum 4 years’ work experience in/with the specific Cybersecurity or Technology area and/or team.
- Demonstrated advanced knowledge of IAM cybersecurity principles and compliance requirements.
Education and Experience Preferred
- Subject matter expert on IAM platforms: SailPoint, Azure AD, Entra ID, CyberArk, PAM solutions.
- Familiar with cloud identity strategy including Azure AD, Entra ID, RBAC, conditional access, and privileged role governance.
- Experience with IAM road mapping, tooling strategy and modernization.