Jul 14, 2024

Identity & Access Management Operations Team Lead

Full time Information Technology

Job Description

Overview

The ideal candidate for this position will assist in developing and maintaining a robust and highly integrated Identity and Access Management program, including Identity Operations operational activities (provisioning, de-provisioning, access changes, etc.), identity enforcement (segregation of duties, access reviews) and access governance (access auditing, logging, monitoring). In addition, the team lead will assist Identity management with team standups, project management, mentoring, team feedback, and driving improvement. An Identity Operations Team Lead will work closely with information technology teams and business stakeholders to enhance an identity program that aligns the information security strategy with business goals.

Responsibilities

  • Manage access to all designated systems and applications supported by Identity Operations throughout the user lifecycle (including non-integrated SaaS, PaaS, and IaaS accounts)
  • Control, monitor, and audit privileged access to systems and applications.
  • Assist with the design, creation, and implementation of security roles, profiles, and attributes.
  • Perform access reviews, compliance audits and investigations in partnership with internal and external audit and compliance teams.
  • Develop, document, and improve on policies, procedures, standards, and guidelines related to Identity Operations.
  • Plan, design, and drive implementation of automation for all employees and non-employees in the areas of onboarding/offboarding user accounts, user access provisioning/deprovisioning, and access reviews.
  • Work with end users, engineers, developers, and other teams on complex issues that are unable to be resolved by Analysts.
  • Provide and develop technical guidance and training for Analysts on the Identity Operations team.
  • Represent Identity Operations and act as liaison with app owners, vendors, and management for areas such as: onboarding new systems for Identity Operations to manage, improving onboarding/offboarding processes, integrating with ITSM solutions, project work, and implementing new regulatory/business/compliance requests for existing systems.
  • Foster a collaborative and high-performance team culture through regular feedback, standups, and providing local support for team members.
  • Act as a secondary escalation point expedited and complex requests.
  • Track and ensure team is completing operational activities per Identity and Access Governance SLAs.

Qualifications

  • 7 years hands-on information technology experience, with at least 2 years in the identity space.
  • Administrative experience with commercial IAM tools, such as SailPoint, Okta, Ping, CyberArk or Azure.
  • Knowledge in enterprise directory services and authentication/authorization integrations and protocols e.g. Active Directory, SSO/MFA, LDAP, PAM.
  • Knowledge in IAM concepts such as lifecycle management, access control, least privilege, and privileged access
  • Excellent understanding and aptitude with ticketing, information management and collaboration systems.
  • Experience leading team activities, managing team workload and independently driving work and improvement.
  • Ability to communicate technical information in understandable business terms.
  • Excellent interpersonal skills, presentation skills, and communication skills
  • Strong customer service abilities required.
  • Proven ability to work collaboratively with a broad range of staff both internal and external.
  • Strong desire to innovate and advance Identity Operations at StoneX.

Preferred

  • Experience with scripting languages like PowerShell.
  • Familiarity with information security policies, standards, industry best practices, and frameworks. (CIS, SOX, PCI-DSS, NIST, etc.)
  • General information security certification(s) (e.g., CISSP, GSEC, CISA, CISM etc.) not required but appreciated.