Identity Governance and Assurance Manager

How would you like to join one of the most highly regarded financial institutions in New Jersey with deep roots in the community?  Provident is a successful and highly regarded multi-billion-dollar bank that continues to grow with branches in New Jersey, Eastern Pennsylvania and New York.  Our longevity is a testament to our commitment to placing our employees, customers, and the communities we serve at the center of all we do.  At Provident Bank, we are committed to enhancing our customer and employees’ experience. 

POSITION OVERVIEW:

The Identity Governance and Assurance Manager, in conjunction with the Identity Governance & Assurance Director and organizational business units, is responsible for the planning, building, delivery and support of the IGA program. This manager will provide direction and guidance to the development, specifications and communications of the IGA application and architecture, as well as provide in-depth technical consultation to the business units and IT management and assist in developing plans and direction for the integration of information security requirements. A deep, end-to-end knowledge of the IGA operational processes is a necessity for this role.

The Identity Governance and Assurance Manager is a management position focused on delivering a best of breed identity governance and access management practices for the Bank while aligning its objectives with the strategic goals of the bank. The role is to facilitate the IGA program including the design, implementation and controls governing the employee onboarding lifecycle and user access entitlement reviews ensuring adherence to legal, audit and regulatory standards.

The manager will need to partner and establish influential relationships with IT management, regulators, internal audit, and business partners. Manages the people, process and technology supporting the IAM Governance Program, including IGA security compliance, vendor due diligence, and training and awareness efforts.
 

KEY RESPONSIBILITIES:

• Leads the design and implementation of processes along with other stakeholders to set up a strong IGA program that balances access with compliance and confidentiality.
• Design, implement, and maintain RBAC frameworks to ensure proper alignment with organizational policies and regulatory requirements.
• Define and document role hierarchies, entitlements, and associated policies for different user groups.
• Perform role engineering, mining, and optimization to ensure roles remain relevant and efficient.
• Facilitates the use of technology-based tools or methodologies as needed to review, design and/or implement products and services to provide continuous improvement of the IGA program.
• Identifies and evaluates complex business and technology risks, internal controls that mitigate risks, and related opportunities for internal control improvement.
• Identifies the broader impact of current decisions related to user access, data access and information security.
• Working with other stakeholders, aligns the IAM processes across the organization and develops and documents standards for organizational use.
• Understands business and information technology management processes and demonstrates advanced understanding of business processes, internal control risk management, IT controls and related standards
• Participates in the definition of policy, standards, and procedures utilized by the Bank. Builds strong partnerships with industry peers, government agencies, and risk management communities.
• Manages GRC capabilities that identify, analyze, and mitigate risk for various information security, technology, and business units. Leads the development and reporting of security metrics and risk information to executive leadership.
• Direct supervision of IGA staff while providing direction, motivation, and leadership to the IGA team’s daily cadence and manages the workload of internal & external resources.  Fosters superior working relationships with IT, Internal Audit and Line of Business stakeholders.
• Conduct periodic access reviews, audits, and certifications to ensure adherence to defined roles and compliance standards.
• Analyze and resolve access anomalies and violations to maintain the integrity of access controls.
• Collaborate with compliance teams to prepare for audits and ensure adherence to regulatory frameworks (e.g., SOX, GLBA and PCI).

Carries out supervisory responsibilities in accordance with the organization's policies. This includes interviewing, hiring, training and managing employees; planning, assigning and directing work; appraising performance; rewarding and disciplining employees and addressing and resolving employee complaints and concerns
 

MINIMUM QUALIFICATIONS:

•    Possess a minimum of 10+ years of progressive and current experience in financial services, especially in the technology area.

•    5+ years of proven track record of designing IGA roadmaps and leading broad adoption of Role-Based Access Control (RBAC) program and establishing operational processes for the Separation of     Duties (SoD) capabilities.

•    5 + years of related exposure working in a regulated financial industry and knowledge of SOX / GLBA / PCI regulations

•    Ability to develop and implement information security strategies in the banking industry while improving the security posture.

•    Effective at communicating audience-appropriate information to technical, management, and executive level stakeholders.

•    Proficiency in assessing risk and risk management concepts and supporting 1st, 2nd, and 3rd line risk functions.

•    Knowledge of IT policies, standards, and procedures as well as their development and alignment with banking and best practice frameworks like FFIEC, CIS, and NIST

•    Familiarity with Horizon core and IBS core

•    Knowledge of standard risk management or control frameworks such as COBIT, ISO, and ITIL, strong knowledge of regulatory requirements and guidelines 

•  Typing skills proficiency

PREFERRED QUALIFICATIONS:

• Certified Identity Access Manager (CIAM)

WORKING CONDITIONS

         Work is typically performed in an office environment.  Noise levels are usually moderate.

HAZARDS

         Mainly those present in a normal office setting.

This job description may not be all-inclusive. Employees are expected to perform other duties as assigned and directed by management. Job descriptions and duties may be modified when deemed appropriate by management.

Provident Bank recognizes and supports the importance of creating a socially and culturally diverse employee base. We understand, value, and appreciate the unique perspectives that a diverse workforce can contribute to our organization. We put the employee and the customer at the center of strategy because culture is a critical differentiator for why people choose to work here.    

We are an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to age 40 and over, color, disability, gender identity, genetic information, military or veteran status, national origin, race, religion, sex, sexual orientation or any other applicable status protected by state or local law.