Be an early applicantLess than 25 applicants

Company

KeyBank · 5 hours ago

Information Security Senior Consultant (IAM Cloud Security)

United States

Full-time

Remote

Mid, Senior Level

3+ years exp

Maximize your interview chances

Banking

Actively Hiring

Insider Connection @KeyBank

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Designs and executes access control provisioning and governance reviews for all applications hosted in the KeyBank cloud ecosystem. The scope of these reviews includes both the people (workforce) as well as service accounts (non-human) that interface with the applications.

Establishes the detailed IAM governance policies and procedures applications for cloud environments including Google Cloud Platform (GCP), Microsoft Azure and Office 365.

Works closely with Security Architecture and Engineering, Application Security, and Code Automation teams to build, enhance, and monitor detective and preventative controls to ensure programmatic and manual (human) interaction with cloud APIs and configurations meet IAM guidelines for privileged access.

Creation and regular review/tuning of IAM guardrails and procedures to maintain an up-to-date security posture that adjusts to changes made by the underlying cloud provider.

Implement centralized review/approval of high/medium risk privileges before application team applies the access in their environment(s).

Visibility, monitoring and preventative controls for resource-level (i.e. GCE instance) IAM policy

Collaborates with code automation and application security to enforce consistent security policies across application code deployment pipelines.

Knowledgeable of relevant industry regulations and standards such as NIST CSF, FFIEC CAT, Sarbanes-Oxley (SOX) and Payment Card Industry Data Security Standard (PCI DSS)

Communicates down, sideways, and upwards to effectively keep all stakeholders engaged and informed of program effectiveness, metrics, and issues.

Coordinates with other IAM managers and subject matter experts to manage and update metrics (e.g. KRIs, KPIs) to track and report risks and report metrics to senior management.

Facilitate identification, documentation and mitigation of SoD risks with business process owners and stakeholders, through annual business process questionnaire completion and follow-up.

Partner with Business Process Risk Identification Program to provide/update content for stakeholder training on roles relating to SoD processes and annual certification, and lead change management initiatives related to SoD program.

Perform validation of controls within IIQ

Handle troubleshooting and issue resolution related to IAM processes, ensuring the smooth functioning of the SoD program.

Maintain IT policies and standards that include SoD requirements

Enhance and maintain IAM operating model to include roles and responsibilities to manage SoD risks

Manage and update metrics (e.g. KRIs, KPIs) to track and report SoD risks and report metrics/ risks to senior management.

Champions and maintains effective communication with lines of business and technology groups

Participate in technology and line of business projects.

Create/own new security standards and provide security requirements and decisions as required.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Access ManagementCloud IAM governanceGoogle Cloud PlatformMicrosoft AzureSailpointCyberarkRisk managementNIST CSFFFIEC CATSarbanes-Oxley (SOX)PCI DSSMicrosoft Active DirectoryIBM RACFLDAP directoriesOktaPingBusiness acumen

Required

Bachelor’s Degree or equivalent work experience required.

Three plus years of Identity and Access Management experience in a large, highly-regulated environment.

Identity and Access Management experience or background.

Subject matter expert knowledge of both the business and technical aspects of Identity & Access Management and/or Information Security and technology with experience in cloud IAM governance.

In-depth knowledge of security and technology, with strong understanding of risk management.

Ability to make decisions based on prior experience in a large enterprise environment and solid understanding of the technologies and risks involved.

Familiarity with industry-standard Identity Providers including Microsoft Active Directory, IBM RACF, LDAP directories and cloud-based Identity solutions such as Okta or Ping.

Excellent communication and leadership skills. Being able to convey complex concepts to executive management (C-suite and above) and influence direction.

Demonstrated commitment to high professional ethical standards and a diverse workplace.

Proven knowledge and experience in maintaining a high level of operational effectiveness and excellence.

Proven budget development and oversight experience.

Demonstrated ability to work effectively in a matrix reporting environment to drive results.

Ability to interface with regulators and other corporate oversight groups.

Works autonomously and demonstrates solid Key leadership competencies; organized, leads others towards common outcomes and execution.

Demonstrates strong critical thinking and problem solving skills to understand and analyze complex business processes and technologies to make sound recommendations.

Possess strong written, verbal, and presentation skills.

Ability to effectively communicate with lines of business and technology groups at all levels of the organization.

Strong understanding of risk management with ability to identify and assess risks and issues and manage to resolution.

Ability to create and implement new processes and procedures.

High level of business acumen, preferably in a regulated/financial industry.

Strong risk-based analysis and decision making skills.