Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!Lead Corporate IT Security (Identity & Access Management and IT Audit Focus)Position OverviewWe are seeking an experienced and proactive IT Security Leader specializing in Identity and Access Management (IAM) and IT Audit. This individual will be responsible for driving both strategic and operational security initiatives across our enterprise systems. The role emphasizes the design and maintenance of robust IAM solutions and the oversight of comprehensive IT security audit programs. Leadership in this position is critical to ensuring policy compliance, safeguarding organizational assets, and maintaining a strong security posture in alignment with regulatory requirements.Key ResponsibilitiesIdentity and Access Management (IAM) LeadershipThe Lead will take ownership of designing, deploying, and continuously enhancing IAM solutions throughout the enterprise. This includes overseeing user provisioning, authentication, authorization, and privileged access management for both on-premises and cloud-based environments. The individual will ensure that strong controls are in place for Single Sign-On (SSO), Multi-Factor Authentication (MFA), and compliance with relevant regulations. Collaboration with IT and business stakeholders is essential to align IAM initiatives with the organization's broader security objectives.IT Audit ManagementThis role involves leading the planning, execution, and follow-up of IT security audits. The Lead will develop and maintain comprehensive audit programs to ensure compliance with internal policies and external standards, such as ISO 27001, SOC 2, and GDPR. Responsibilities include coordinating with internal and external auditors, managing the remediation of audit findings, and communicating outcomes to senior leadership. Audit results will be leveraged to drive continuous improvement in security controls and risk mitigation strategies.IT Systems Security Policy ManagementThe Lead will maintain responsibility for the IT Systems Security Policy and related procedures, ensuring they remain up to date and effective, with particular attention to IAM and audit requirements.Security Audits, Risk Assessments, and Vulnerability ManagementPlanning and overseeing security audits and risk assessments will be a key function, with a focus on IAM systems and processes. The Lead will identify, assess, and remediate vulnerabilities to ensure strong controls over identity and access.Cross-functional CollaborationThe Lead will work closely with teams across the organization to support the development of secure system architectures and data protection strategies, especially regarding access controls and audit readiness.Incident Response and Forensic InvestigationsIn the event of security incidents, particularly those involving identity compromise or access breaches, the Lead will direct the response and manage forensic investigations to determine root causes and implement effective corrective actions.Vendor Security Compliance and Third-Party RiskOversight of vendor security practices and third-party risk assessments is required to ensure that external partners meet the organization's standards for IAM and audit compliance.Strategic Security PlanningThe Lead will contribute to the development of the overall security roadmap, prioritizing initiatives related to IAM and audit. In addition, the role will participate in security-related budget planning processes.Team Leadership and MentorshipThis position includes mentoring junior security engineers and analysts, especially in IAM and audit disciplines. The Lead will foster professional growth and support the effectiveness of the team.
Major Skills & Qualifications
- Bachelor's or master's degree in computer science, information security, or a related field.
- Demonstrated expertise as an Okta Admin, with proven ability to configure, manage, and troubleshoot complex IAM workflows on the Okta platform.
- At least eight years of experience in IT security, including a minimum of three years in a leadership role and substantial experience in IAM and IT audit.
- Strong knowledge of enterprise security frameworks and compliance standards such as ISO 27001 and SOC 2, with a focus on access management and audit controls.
- Hands-on experience with security information and event management (SIEM), endpoint protection, identity management, and cloud security solutions.
- Preferred certifications include CISSP, CISM, or equivalent.
- Excellent communication skills and ability to manage stakeholder relationships effectively.
- Experience with Workday security workflows, ticketing systems, and IT audit documentation.
- Familiarity with Jira and internal audit processes.
- Ability to perform effectively in a fast-paced, global environment.
Leadership & Soft Skills
- Demonstrated leadership, mentoring, and team-building abilities.
- Excellent problem-solving and analytical skills, particularly in IAM and audit contexts.
- Strong communication and collaboration skills.
- Ability to work independently and guide teams toward achieving organizational goals.
- Displays adaptability, curiosity, and a proactive approach to professional growth and innovation.
