Director of Information Security - Identity & Access Management (IAM) REMOTE

JOB REPORTS TO: The Chief Information Security Officer (CISO)

JOB SUMMARY: The Director of Information Security - Identity and Access Management (IAM) provides leadership to architect and mature our IAM program. This is an advanced role requiring leadership, collaboration, and team management skills, along with technical expertise, to lead a team tasked with architecture, engineering, administration, and governance responsibilities to ensure resilient and efficient IAM services are applied to enterprise assets as well as third-party entities. The ideal candidate will possess a deep understanding of IAM architecture, strong leadership skills, and the ability to drive cross-functional strategic initiatives while ensuring compliance and security best practices.

JOB ROLES AND RESPONSIBILITIES:

The Director of IAM will have a team and need to work with peers and relevant key stakeholders to achieve the following objectives:

1. Build, lead, and mentor a high-performing team of information security professionals, fostering a culture of collaboration, innovation, knowledge-sharing, and continuous learning.
2. Foster a culture of curiosity, continuous improvement, adaptability and teamwork, accountability, and service excellence within the team.
3. Work closely with relevant stakeholders to develop and execute an enterprise-wide IAM strategy and roadmap aligned with business objectives and security requirements.
4. Collaborate with security, application development, and infrastructure teams to architect and integrate IAM solutions that support business initiatives and technology transformations.
5. Lead the design and implementation of a robust and scalable IAM architecture, including identity lifecycle management, access governance, and privileged access management.
6. Evaluate and recommend IAM technologies, tools, and best practices to enhance security, compliance, and operational efficiency.
7. Develop, maintain, and enforce IAM policies, standards, guidelines, and procedures to ensure consistent and secure access management practices aligned with industry standards, regulatory requirements, and client obligations.
8. Ensure that regular access reviews and audits are conducted to identify and mitigate potential security risks and compliance violations.
9. Stay abreast of the latest IAM industry trends, emerging technologies, and security threats related to IAM.
10. Establish clear metrics to track the effectiveness of the IAM program and services.
11. Prepare and deliver executive-level reports and presentations on IAM activities and outcomes.
12. Contribute to the development and execution of the overall cybersecurity strategy.
13. Collaborate, coordinate, and communicate across disciplines and departments.
14. Ensure compliance with HIPAA regulations and requirements.
15. Demonstrate Company’s Core Competencies and values held within.
16. Please note due to the exposure of PHI sensitive data – this role is considered to be a High Risk Role.