Sign in

Identity and Acess Management Senior Specialist, Cybersecurity

Capitol Recruiters Inc.
Los Angeles, CA
commensurate with experience.
February 03, 2023

Posted By Premium Recruiter


Identity & Access Management Senior Specialist, Cybersecurity Department for highly regarded global law firm in Washington, DC. This is a mostly remote position with occasional in office work. This role is responsible for ensuring that the Firm designs and implements appropriate identity and access management controls. Candidate will a conduct a risk and control program setting expectations for all identity and access management topics, including physical and logical authentication for employees and clients, access control, entitlements and recertifications, privileged user access, and identity proofing. This is a highly technical role requiring hands-on, collaborative work.

Duties: Defines, documents, and manages the Access Management security oversight programs, including charters, roadmaps, plans, and milestones for risk assessments and control implementations. Works with process and asset owners to ensure program goals are being achieved. This role will work with the Physical Security Operations, Risk Operations, Information Technology Services, Information Resource Services, Human Resources, and the Practice Services and Support teams. Regularly reports on program progress to the CISO and other senior stakeholders as appropriate, using defined Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) to highlight control adoption gaps, identify areas of strong or weak performance, or quantify risks, respectively. Develops and reviews processes for on-boarding new users to downstream application platforms. Evaluates and manages identities across complex applications.

**Ideal candidate has 5+ years of experience with full ownership of IAM platform. Full understanding and hands on experience with identity life cycle management. Must know entire lifecycle from when an employee starts at company and the creation of identity to termination. Understanding of managed group access, resource access, service account, etc. Hands on experience evaluating and assessing how current IAM is going. Providing KPIs to track and improve IAM. Expert understanding of key concepts, protocols, and frameworks behind: SAML, OIDC, OAATH

Position Requirements: Bachelor's degree required (Computer Science or Engineering preferred); advanced degree and CISSP certification ideal. Must have 15+ years of experience in cybersecurity, with 5+ years’ experience executing security advisory or oversight programs. Expert working knowledge in password managers, privileged user credential management systems, entitlement review systems, authentication technologies such as biometrics or hardware tokens, single sign-on (SSO) technologies such as SAML and OIDC, access brokers, physical access and/or identity proofing systems. Exceptional interpersonal and written communication skills; success in the role requires the ability to inform and influence. Ability to advise business and technology teams in matters of Identity Management including authentication, authorization, token management, API validation, and more. Salary is commensurate with experience.