Sr. Manager for Workforce and Client Identity and Access Management

About Us: First Horizon Bank is a mid-size regional bank committed to providing secure and innovative financial solutions to our customers. We operate in a highly regulated environment, emphasizing the importance of robust cybersecurity measures. As part of our ongoing commitment to enhancing security, we are seeking a skilled and experienced Workforce Identity and Access Management Leader to join our dynamic team.

Job Summary: The Workforce Identity and Access Management (GIAM) Leader will own the strategy and operational excellence across both workforce and customer identity for First Horizon Bank. You will play a crucial role in maintaining the security and compliance of the bank's information systems, as well as exercising deep expertise in managing IAM processes, technologies, and solutions. The role will require familiarity with the Transmit Security (FlexID and BindID), SailPoint, CyberArk, and Azure AD platforms. The ideal candidate will also have experience with SSO protocols, SIEM, and configuring/securing public cloud tenants.

Responsibilities:

1. IAM Strategy and Oversight:

• Develop and implement a comprehensive Workforce and Client IAM strategy aligned with industry best practices and regulatory requirements.
• Produce and iteratively refine a roadmap to delivering process and capability improvements in the areas of governance, authentication, authorization, and PAM.
• Oversee the Workforce and Client IAM framework, policies, and procedures, ensuring adherence to security standards and alignment with Digital and Fraud roadmaps.

1. Technology Integration and Management:

• Manage and optimize First Horizons Identity Access Management platforms which deliver governance, authentication, PAM, and authorization (Transmit Security, Sail Point, Azure AD, Cyber Ark, Hashi Vault, etc.), to effect continuous improvement and operational excellence.
• Lead the integration of IAM solutions with Azure cloud services, ensuring a secure and compliant transition.
• Collaborate with Digital and Fraud teams to produce an iterative response to fraud threats, using fraud case data, user analytics, and third party risk data.

1. Compliance and Risk Management:

• Stay current with industry regulations and standards related to IAM, ensuring the bank's compliance (e.g. NIST, FFIEC).
• Conduct regular risk assessments and implement mitigation strategies to address potential vulnerabilities.

1. Incident Response and Investigation:

• Develop and implement incident response plans for IAM-related security incidents.
• Investigate and resolve security incidents, providing detailed reports to stakeholders.

1. Collaboration and Communication:

• Partner with business analysts, systems analysts and engineers to define and review all access and provisioning requirements
• Advises and consults senior leadership on benefits, and implementation of access and provisioning solutions
• Recommend changes in process, policies, and standards as they relate to access and provisioning principles and operations
• Provide technical leadership on various business and enterprise applications
• Work with architecture, development, and infrastructure teams to ensure processes that support the access management services requirements can be operationalized and still meet our controls requirements
• Serve as a key stakeholder in the development of enterprise level access and provisioning solutions that integrate across applications, systems and platforms
• May manage relationship with outside vendors
• Direct Access Management Services Team in assisting and providing evidence for audit related requests
• Perform other job-related duties as assigned

1. Training and Awareness:

• Develop and deliver training programs to enhance workforce awareness of IAM policies and best practices.
• Foster a security-conscious culture within the organization.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, or a related field. Advanced degree or relevant certifications (CISSP, CISM, etc.) is a plus.
• Proven experience in IAM leadership roles within the banking or financial industry.
• In-depth knowledge of Transmit Security, Azure AD, SailPoint, CyberArk, and Hashi Vault platforms.
• Strong understanding of regulatory requirements, such as GLBA, PCI-DSS, and other financial industry standards.
• Bachelors degree in Computer Science or Business Administration, or relevant educational or professional experience
• Minimum of 5+ years experience in technical leadership and/or technology consulting on large enterprise projects around infrastructure architecture and/or server administration
• Technology architecture subject matter experience across IAM and PAM systems, preferably SailPoint IdentityIQ, integrating identity management, access management and access governance software into clients' infrastructure and applications
• Robust team and project management skills
• Experience in architecture standards design and implementation (including strategy, user experience, performance, controls, stability, quality, innovation, and enterprise security requirements)
• Experience in working in large enterprise environment across multiple domains
• Intermediate to Advanced MS Office; Advanced proficiency of software development lifecycle, email technologies
• Experience with analytic and business intelligence and robotics software
• Good understanding of ITIL framework
• Experience integrating IAM into cloud solutions
• Experience in encryption, multi-factor authentication
• Knowledge of complex application, network, virtual environment security, and systems operations

Benefit Highlights

• Medical with wellness incentives, dental, and vision
• HSA with company match
• Maternity and parental leave
• Tuition reimbursement
• Mentor program
• 401(k) with 6% match
• More --FirstHorizon.com/First-Horizon-National-Corporation/Careers/Our-Benefits

Follow Us
Facebook --facebook.com/FirstHorizonBank
Twitter --twitter.com/FirstHorizonBnk
LinkedIn --linkedin.com/company/first-horizon-bank
Instagram --instagram.com/first_horizon
YouTube --youtube.com/channel/UCEVs5OMj-b0H9Dr5Q209_-Q

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractors legal duty to furnish information. 41 CFR 60-1.35(c)