Plan and execute the delivery of Authentication services (both internal workforce and customer IAM).
Lead & oversee the design and development of Authentication solutions that enforce applicable organization security policies and access management requirements.
Lead and oversee the build, configuration, and architecture of one or more authentication platforms, such as Okta/Ping and Azure including integral technology components such as SSO (Single sign-on), registration, identity proofing, multifactor authentication, password resets, etc.
Demonstrate an understanding of Authentication services and integration with broader security solutions, such as Identity & Access Governance, Privileged Access and broader Cybersecurity services.
Defines, enhances, and oversees all enterprise-wide authentication processes, controls and follow-up, exception & risk acceptance approvals, and walkthroughs.
Oversees the development of technical authentication solutions, engaging service owners, architects, project managers, global infrastructure teams, regional IT teams and key IAM product vendors during the lifecycle of solutions delivery.
Responsible for business requirements to integrate authentication systems with in-house and third-party applications for provisioning, access requests, and certifications.
Represents the IAM organization on large scale technology projects implemented outside IAM, regulatory reviews and internal and external audits.
Ability to confidently articulate business risks and technical challenges to stakeholders.

Requirements

10+ years of overall experience in (or related experience) Cybersecurity and IAM managing engineering, strategy, process/controls and related services.
10+ years’ experience in supporting key IAM business processes supporting Identity Governance, Privileged Access, Access Administration & Authentication (inc. MFA), Directory Services, Enterprise-reporting for employees, non-employees and customers.
8+ years of production support or related experience with IAM business processes, defining requirements, and implementing and recommending control-based business processes.
8+ years’ experience in providing technical expertise in systems, technical infrastructure, tools, modelling, external interfaces, and other technical areas.
8+ years’ experience in Authentication products including Azure AD, Active Directory, role-based access control, multi-factor authentication, and SSO & related standards (e.g., SAML, OAUTH, NTLM, LDAP, Kerberos, PKI, etc.) is a must.
8+ years of engineering, production and operational support (or related experience) with PAM business processes, defining requirements, and implementing and recommending control-based business processes.
8+ years working with regulatory requirements (SOX, SOC1, NYDFS, PCI, MAS, etc.) and industry standard frameworks and methodologies, including NIST (National Institute of Standards and Technology), Information Technology Infrastructure Library (ITIL), Systems Development Life Cycle (SDLC), etc.
5+ years managing 20+ resources in a matrixed environment.
5+ years integrating applications and business services with IAM solutions.
5+ years of hands-on experience with platforms such as SailPoint, Okta, Ping, Quest (ARS, Change Auditor and Enterprise Reporter), Active Directory, AWS, Azure, Top Secret, ServiceNow, and related products.
5+ years working with IaaS, SaaS, PaaS service providers (Azure, AWS, Google GCE, Salesforce).

Benefits

Health and Wellness: We offer a range of medical, dental and vision insurance plans, as well as mental health support and wellness initiatives to promote overall well-being.
Retirement Savings: We offer retirement benefits options, which vary by location. In the U.S., our competitive 401(k) Plan offers a generous dollar-for-dollar Company matching contribution of up to 6% of eligible pay and a Company contribution equal to 3% of eligible pay (subject to annual IRS limits and Plan terms). These Company contributions vest immediately.
Employee Assistance Program: Confidential counseling services and resources are available to all employees.
Matching charitable donations: Corebridge matches donations to tax-exempt organizations 1:1, up to $5,000.
Volunteer Time Off: Employees may use up to 16 volunteer hours annually to support activities that enhance and serve communities where employees live and work.
Paid Time Off: Eligible employees start off with at least 24 Paid Time Off (PTO) days so they can take time off for themselves and their families when they need it.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills

CybersecurityIdentity and Access Management (IAM)Authentication solutionsMulti-factor authentication (MFA)Single sign-on (SSO)Role-based access controlActive DirectoryAzure ADPrivileged Access Management (PAM)Identity Governance

Soft skills

LeadershipCommunicationStakeholder engagementRisk managementTechnical expertise