Manager, Identity & Access Management

At VyStar, we offer competitive pay, an excellent benefit package that includes a 401(k) Plan, an extensive paid technical and on-the-job training program, and tuition reimbursement--available to all full and part time employees. Part time positions start at a minimum of 30 hours per week.

We encourage you to become a part of VyStar Credit Union's family of employees.

Manager, Identity & Access Management

ACCOUNTABILITY STATEMENT The Manager of Identity and Access Management has primary responsibility for the management and operation of VyStar's Identity and Access Management (IAM) systems and tools. Incumbent is responsible for the overall strategic direction of the IAM function to support internal business partners and customers while adhering to the established security and risk policies and standards throughout the enterprise. The IAM manager will provide leadership direction and subject matter expertise on all aspects of Identity Access Management including innovation, development, implementation, ongoing account lifecycle management, access management, privileged account management, platform identity management and administration. They will also be required to carry out other duties, projects, or activities as specified by management. This position leads the IAM team and is responsible for managing and developing team personnel. Incumbent's assigned hours will primarily be 8:30 a.m. to 5:00 p.m., Monday through Friday, but will also include evenings, nights and weekends, as required for project completion and/or business support. The incumbent will be available for 24-hour after hours support for critical incidents.

ESSENTIAL JOB FUNCTIONS

• Establishes an IAM vision for the organization
• Develops IAM roadmap and strategies for meeting business demand and improving IAM capabilities within the organization
• Develops and manages annual budget for IAM systems and staffing
• Conducts staff performance reviews
• Directs, manages and coaches staff to optimum performance
• Evaluates and optimizes team processes and performance
• Demonstrates the ability to think and act under pressure.
• Demonstrates effective verbal and written communication skills with ability to take highly technical information and present to all levels of management, technical staffs, and business/professional contacts.
• Leads by influence, adapts to multiple styles of management and decision authority
• Develops IAM processes and procedures that improve the access management posture at VyStar
• Evaluates and recommends new IAM technologies for adoption
• Collaborates with IT peers and business partners to understand IAM needs/wants
• Participates in technical IAM projects
• Develops metrics and KPIs
• Interfaces with Internal Audit staff during audits requiring IAM team participation
• Performs other duties as assigned.

Incumbent is expected to demonstrate each of the following VyStar Excellence behaviors in performing the duties and responsibilities of their job.

• Focus: Focus your full attention by carefully listening to and observing your client or member.
• Connect: Consistently be friendly and approachable. Demonstrate you care.
• Understand: Listen empathetically and ask questions. (70%/30%)
• Counsel: Recommend solutions based on your client's or member's needs and objectives.
• Advance: Ensure that member's expectations were exceeded.

JOB KNOWLEDGE, SKILLS & ABILITIES

• 4 years of experience in multiple disciplines of information security and/or identity and access management with at least two years of leadership responsibility in a IAM capacity.
• Demonstrated expert knowledge and understanding of the key principles of Identity Access Management.
• Demonstrated in-depth knowledge of Authentication, Authorization, and Accounting implementation and governance.
• Demonstrate in-depth knowledge of industry frameworks or standards related to security like NIST 800-53r4 with additional focus in IAM like NIST 800-63-3.
• Expert in Identity Management and Web Security technologies
• In-depth knowledge of Directory Services engineering and LDAP identity store
• In-depth knowledge of multifactor authentication (MFA) architectures, implementations and best practices
• Working knowledge of multiple IAM systems (traditional and cloud) such as Okta, ADFS, AWS Cognito, and SailPoint
• In-depth knowledge of Role-based Access Control (RBAC) and Attribute-based access control (ABAC)/Policy-based access control (PBAC)
• Experience migrating applications from RBAC to ABAC is preferred
• Knowledge of information security program management and Project Management principles and techniques
• Knowledge of resource management principles and techniques
• Knowledge of enterprise incident response, roles, and responsibilities with a focus on identity and attribution aspects
• Knowledge of network and host security architecture concepts and access controls
• Knowledge of basic system administration, network, and operating system hardening techniques
• Knowledge of new and emerging IAM and information security technologies
• Reliable, punctual attendance is an essential function of the position
• Ability to collect, analyze and assess information to draw meaningful conclusions
• Ability to learn quickly and thoroughly in rapidly changing conditions
• The ability to accept and manage changing priorities and address issues quickly and professionally.
• Strong customer-service orientation and a commitment to lead others to achieve outstanding customer satisfaction.
• Demonstrated project management experience in organizing, planning and executing large-scale projects from conception through implementation.
• Analytical abilities, result-focused, action oriented, and ability to work effectively with customers and IT Leaders.

EDUCATION

• Bachelor's degree in computer science, engineering or other technology related degree. Hands-on experience in Information Security or IAM would be in lieu of a degree on a case by case basis.
• CISSP or CISM Preferred Specialized Skills & Knowledge Required

DISCLAIMERS AND WORK ENVIRONMENT

Nothing in this position description is an implied contract for employment. The position description is intended to be an accurate account of the essential functions. The functions are not all encompassing and are subject to change at any time by management.

The work environment characteristics described are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

As required or requested, may exert up to 20 pounds of force occasionally and/or a negligible amount of force constantly to lift, carry, push, pull or otherwise move objects.