Identity and Access Management (IAM) Lead Identity and Access Management (IAM) Lead …

BNY Mellon
in New York, NY
Permanent, Full time
Last application, 04 Jan 21
BNY Mellon
in New York, NY
Permanent, Full time
Last application, 04 Jan 21
Identity and Access Management (IAM) Lead
BNY Mellon Data and Analytics Solutions is a public-and private-cloud-based software and content offering that buildsclient-centric data, technology, and content capabilities.

Operating with the skill and agility of afintech, Data and Analytics Solutions combines the expertise and resources ofthe Eagle product suite, Intermediary Analytics, and other BNY Mellontechnology and data assets. Moreover, the division further extends BNY Mellon'sAsset Servicing capabilities in securities and cash into the world's mostimportant asset class, data.

Data and Analytics Solutions helps firms toanalyze their data from different vantage points and transform it into actionsthat can achieve higher alpha and cheaper beta, with lower costs and less risk.Offering an ecosystem of proprietary and third-party business applications,Data and Analytics Solutions helps firms manage their core investment processesand beyond.

Identity and Access Management (IAM) is acritical service within the BNY Mellon Information Security Program (ISP) andthis IAM Lead role will be reporting to the Chief Information Security Officer(CISO) within the Data & Analytics Business.

What You Will Do and your KeyResponsibilities

  • Lead team and manage full scope Identity and AccessManagement (IAM) service (e.g., secure ops of multiple ADdomain/forests/tenants, User/Service Principle lifecycle management including:onboarding, offboarding, recertification, least privilege enforcement)
  • Collaborating with product owners, developers, technical operation teams within the bothProduct Development Lifecycle (PDLC) and Software Development Lifecycle (SDLC)to ensure User personas align to centralized Identity,authorization/entitlement rule engines, API key management
  • Continuous improvement and service delivery of the Identityand Access Management (IAM) program, aligning staff, tools, and processes tokey security metrics and controls within the PDLC/SDLC enabling timely and secure Product featurereleases.
  • Provide IAM security guidance and oversight across ProductManagement, Research & Development, and Operations teams to Influence thedesign and implementation of upcoming products and services with a mindset of"Security by Default"
  • Responsible for overall IAM integrations, assessments, andposture through maintaining user/service and application inventories,onboarding roadmaps for centralized identity (e.g, SAML, LDAP, certificate based auth)
  • Design and deploy state-of-art technology to meet thebusiness needs and interface with business units regarding technical planningand modern IAM topics.
  • Perform proof-of-concept and proof-of-technology testing forintegrating new 3rd party security products into the development and deploymentprocesses.
  • Perform validation of security controls to insure adherencewith compliance and industry best practices.
  • Perform hands on security testing and integrations ofproducts and services to proactively Client risk and track them to resolution.
  • Use a risk-based approach, advocate for and help prioritizeremediation of security findings and develop/report metrics measuring the stateof IAM program.


  • Previous experience in information security and Identity/Authentication/Authorization/Access/Entitlement domains

  • Experience working managing multiple Active Directories and Identity Federation integrations

  • Experience with Modern Authentication tooling (e.g., MFA, Push event, Security Token, SAML, OAUTH, Azure AD conditional access)

  • Experience with Public Cloud (e.g., Azure, AWS, and GCP) technologies

  • Experience with securing containers, host, databases, and application solutions for multi-tier and microservice systems.

  • Have a strong knowledge of building security into continuous integration and delivery (CI/CD) pipeline.

  • Ability to understand business requirements and apply security without adversely affecting the desired functionality

  • Experience with securing containers, host, databases, and application solutions for multi-tier and microservice systems.

  • Relevant security certifications a plus (such as: CISSP, GSEC, GPEN, GCIH)

  • High level of personal integrity, with the ability to professionally handle confidential matters, and reflect appropriate level of judgment as it pertains to security.

BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer.
Minorities/Females/Individuals With Disabilities/Protected Veterans.

Our ambition is to build the best global team - one that is representative and inclusive of the diverse talent, clients and communities we work with and serve - and to empower our team to do their best work. We support wellbeing and a balanced life, and offer a range of family-friendly, inclusive employment policies and employee forums.

Primary Location: United States-Massachusetts-Wellesley
Internal Jobcode: PTSG33
Job: Information Technology
Organization: Technology Services Group-HR06725
Requisition Number: 2011690
BNY  Mellon logo
More Jobs Like This
See more jobs