Information Security Manager-IAM

Stellensuche erweiternZusammenfassung der TätigkeitPosition SummaryThe Information Security Manager role will oversee and manage our Identity and Access Management (IAM) programs and strategy including Privileged Account management, security awareness, and phishing initiatives across the organization. The ideal candidate will possess a strong background in information security and a proactive approach to safeguarding our company's digital assets. We particularly value excellent leadership skills in our ideal candidate, who will manage and lead a diverse team of IT Security Analysts in day-to-day operations, project planning, and execution of IT Security initiatives. IAM ActivitiesFacilitates the use of technology-based tools or methodologies to review, design and/or implement products and services to provide a strong IAM program that balances access with compliance and confidentiality and business requirementsIdentifies and evaluates complex business and technology risks, internal controls that mitigate risks, and related opportunities for internal control improvementIdentifies the broader impact of current decisions related to user access, data access and information securityActs as subject-matter-expert on all IAM disciplines including identity governance and administration, (IGA), Access Management, (SSO, MFA), privileged access management and identity verification, (ID Proofing, etc.)Provides management status reporting to include accomplishments, plans for upcoming activities and overall completion status on a regular basis ensuring all milestones and deliverables are achieved within communicated deadlinesOwn the lifecycle management of all IAM technologies and its associated infrastructureAligns IAM processes across the organization where applicable, and develops and documents standards for organizational useCollaborate with IT and other departments to integrate IAM solutions with existing systemsPartner with other business security units to gain alignment and support the overall strategy for internal and external IAM programBusiness StrategyEnvisions business outcomes and works with business leaders to create business initiativesAligns IAM processes across the organization, and develops and documents standards for organizational usePartners in an IAM selection process, evaluates existing and emerging technologies and tools in the selection of an IAM service offering for the business unitsUnderstands business and information technology management processes and demonstrates advanced understanding of business processes, identity-first security, internal control risk management, IT controls and related standardsAwareness, Training and Other CommunicationsFosters an understanding of the need for and application of the IAM system, and facilitates decision making with the business usersBuilds and nurtures positive working relationships with business unitsIdentifies opportunities to improve engagement with the business unitsDesign and deliver security awareness training programs for employees.Develop engaging content to educate staff on security best practices and emerging threats.Conduct regular phishing simulations and other security awareness exercises.Evaluate the effectiveness of security awareness programs and make improvements as necessaryVerantwortlichkeitenOversee team operational and project tasks by managing Kanban and sprint planning boards to help support the project management aspects of day-to-day operationsEnsure effective coordination and direction of team activities while actively participating in organizational, project, and team meetingsDevelop and execute information security plans that align with the company's goals. Guide the security team in their crucial role and collaborate with other departments to ensure unified security measuresOversee, develop, implement, and enforce the IAM program supporting the organization. The identity program includes privileged account management, user account management oversight, enhancement of authentication systems, and integration into the identity governance and administration solutionOversee the development and implementation of security awareness training programs, including phishing simulations, educational content, and program evaluationManage vendor relationships and collaborate across departments to ensure cohesive security practices. Prepare regular reports for management, stay informed about the latest security trends, and manage resource allocation for security programsManage the Zero Trust program to align with the company's objectivesMindestqualifikationenA bachelor's degree and 7 years of professional work experience (or equivalent experience) is required. 2 years management experience is required.Zusätzliche QualifikationenProven experience with operational management in diverse environmentsAutomating security processes and workflows for efficiency and repeatabilityExperience implementing security processes within CI/CD pipelines for cloud-native applicationsStrong analytical skills and the ability to work with teams on complex security tasksUnderstanding and experience with NIST CSF, SOC2, ISO27001, NIST SP800-171 and NIST SP800-53Experience of Ping Federation, SailPoint, and other Identify access management solutions.Experience in managing and implementing identity and access management solutions, identity governance, and administration systems.Professional certifications such as CISSP, CISM, or CISA are highly desirable.Knowledge in managing and implementing identity and access management solutions and identity governance and administration systems.Knowledge of Information Security best practicesStrong understanding of IAM principles and best practicesStrong knowledge of data security principles and best practicesExperience with management of IAM and data loss prevention systemsExtensive leadership experience in overseeing high-performing teams in a highly collaborative environmentWhy MathWorks?It's the chance to collaborate with bright, passionate people. It's the opportunity to accelerate the pace of discovery, innovation, and learning in engineering and science. And it’s a commitment to doing the right thing—for each individual, our customers, and the local community. We cultivate an enjoyable, participatory, and rational environment that champions individual growth, appreciates diversity, encourages initiative, values collaboration, shares success, and rewards excellence.MathWorks develops MATLAB and Simulink, the leading technical computing software used by engineers and scientists. The company employs more than 6,500 people in 16 countries, with headquarters in Natick, Massachusetts, USA. MathWorks is privately held and has been profitable every year since its founding in 1984.YOU + MathWorks = Unlimited PossibilitiesContact us if you need reasonable accommodation because of a disability in order to apply for a position. The MathWorks, Inc. is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other protected characteristics. View The EEO is the Law poster and its supplement. The pay transparency policy is available here. MathWorks participates in E-Verify. View the E-Verify posters here.