* Develop and lead the University’s IAM strategy to modernize and strengthen identity and access practices, ensuring it aligns with business goals, security requirements, and emerging technologies.* Facilitate the development and execution of strategic roadmaps and distributed IAM architecture to support critical services, updating priorities, and identifying resource requirements.* Participate in groups and committees to represent IAM both as an enterprise shared service and critical partner for other enterprise initiatives, projects, and business stakeholders.* Act as an expert resource for engineers and analysts working on complex technical issues spanning all information technologies for the university.* Embed Zero Trust principles into the University’s IAM strategy, ensuring continuous verification of users and devices.* Oversee the architecture and deployment of scalable, secure, and flexible identity solutions that support cloud, on-premises, and hybrid environments, and ensure that identity and access management tools and practices are aligned with overall security architecture.* Lead initiatives to integrate security-by-design principles into identity systems and processes, ensuring that security is considered at every stage of development.* Collaborate with cross-functional teams to integrate identity and access management (IAM) systems with other cybersecurity and business systems to enhance user experience and security.* Conduct reporting to ensure visibility for leadership, institutional affiliates, stakeholders, and customers. Regularly review and evaluate data to provide awareness, analysis, planning, set service expectations, and improve performance.* Lead the end-to-end management of the IAM program, including identity lifecycle management, authentication, authorization, and access control mechanisms.* Ensure effective identity governance through role-based access controls (RBAC), least privilege principles, and just-in-time (JIT) access strategies.* Manage and optimize the University’s IAM tools and platforms, such as Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), and Identity Governance and Administration (IGA).* Implement, manage and optimize the Privileged Access Management (PAM) solutions to control, monitor, and audit access to sensitive systems by privileged users.* Develop, implement, and enforce access management policies, standards, and procedures to ensure secure and compliant access to systems, applications, and data.* Ensure compliance with regulatory requirements and industry standards (e.g., GDPR, HIPAA, PCI-DSS, SOX) related to identity management and data access.* Lead periodic audits of access controls and identity management processes, ensuring adherence to internal policies and external regulations.* Lead the development and implementation of automated user provisioning and de-provisioning processes to manage user identities and access across all systems.* Ensure that identity governance policies are in place for monitoring and controlling user entitlements and certifications.* Drive the adoption of self-service access request and management tools to enhance user efficiency and reduce administrative overhead.* Ensure that identity and access management solutions are designed with user experience in mind, balancing security and ease of use.* Lead training and awareness efforts to ensure that employees understand and comply with access management policies and best practices.* Collaborate with the security operations team to monitor and detect identity-based threats, such as credential theft, account takeovers, and insider threats.* Oversee the implementation of identity analytics and behavior monitoring tools to detect anomalous access patterns and potential threats in real time.* Drive incident response efforts related to identity breaches and unauthorized access, ensuring rapid containment and remediation.* Manage relationships with IAM solution providers, ensuring that third-party tools and services are aligned with University security and performance requirements.* Conduct due diligence on identity-related vendors and third-party access to minimize risks associated with external partners.* Oversee the procurement and evaluation of new IAM technologies and solutions that align with the University’s strategic goals.* Be a fully present member of the Information Security (IS) leadership team and drive the embodiment of UWIT core values (Invested, Compassionate, Team Player).* Recruit, train, coach, motivate, and manage performance of permanent and temporary staff, providing guidance on skill and career development.* Ensure that the team is equipped with the necessary tools and training to manage the evolving identity and access management landscape.* Foster a collaborative and inclusive work environment that encourages innovation and continuous improvement.* Work closely with IT teams and business units to ensure that identity and access management solutions meet their needs while adhering to security best practices.* Partner with cloud and infrastructure teams to ensure seamless integration of identity solutions with cloud services (e.g., AWS, Azure, GCP) and SaaS applications.* Engage with HR, legal, and compliance teams to support identity management aspects of employee onboarding, offboarding, and role changes.* Bachelor’s degree in Information Security, Computer Science, or a related field.* At least 6 years of progressive technology, security, and professional services experience with the design, implementation, and management of identity and access systems inclusive of 5+ years in a leadership or strategic role with experience of managing, coaching, and developing high performing teams of security/technology/business professionals in complex environments to meet operations, enterprise, and strategic objectives.* Expertise in IAM tools and platforms, such as SailPoint, Okta, Ping Identity, Microsoft Entra ID, CyberArk, Twilio etc. or comparable systems.* Strong understanding of IAM concepts such as Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), and Zero Trust.* Strong experience with Identity Lifecycle Management (provisioning, de-provisioning, JML flows), including both event-based and state-based identity architectures.* Extensive experience and background with on-premise and cloud technology, operating systems, and applications, preferably including academic institutions and large healthcare systems.* Good understanding of distributed systems, APIs, and automation workflows.* Familiarity with major technology vendors and their products commonly used in academic institutions and large healthcare systems.* Experience with identity governance, role-based access control (RBAC), and automated provisioning/de-provisioning processes.* Knowledge of regulatory frameworks and compliance requirements related to identity and data access, such as GDPR, HIPAA, and SOX.* Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Identity and Access Manager (CIAM), or Certified Information Security Manager (CISM) preferred.* Extensive experience with project and program management in technical environments with diverse stakeholder groups.* Ability to design and implement long-term strategies that align with University business objectives.* Proven ability to lead teams and drive strategic initiatives in a complex environment.* Proven ability to make administrative/procedural decisions and provide guidance and leadership to staff.* Excellent ability to communicate complex technical issues to both technical and non-technical stakeholders.* Master’s degree preferred* 15+ years of progressive technology, security, and professional services experience with the design, implementation, and management of identity and access systems inclusive
#J-18808-Ljbffr