An exciting opportunity is available to join this group for a senior experienced leader with a technical background in Identity & Access Management. They will lead the team and provide the technical capability to support the execution of critical IAM processes across MUFG. This will include platform operations, supporting and maintaining the overall service health, managing vendors and driving the product direct and strategic delivery.
4 to 8 direct reports.
Main Purpose of the Role
The team handles day‑to‑day management of all Identity & Access Management needs of the business. They will need close coordination with other teams, maintain documentation, and develop strategy. The successful candidate will be an experienced leader familiar with the Bank’s processes, provide coaching, articulate complex technical matters, and drive improvements. Experience managing personnel onshore and offshore, senior leadership skills (~10 years) and in‑depth IAM knowledge are essential.
Key Responsibilities
- Own and run end‑to‑end IAM operations to deliver reliable, secure and scalable identity services across workforce and non‑human identities.
- Lead on IAM service delivery, automation and self‑service.
- Own day‑to‑day IAM operations across identity lifecycle (joiner‑mover‑leaver), access requests and fulfilment workflows.
- Run ITSM‑aligned operations: incident, problem, change, request and knowledge management with clear escalation paths and on‑call readiness.
- Own operational communications: status updates, planned maintenance notices, user‑impact messaging and post‑incident reviews with measurable corrective actions.
- Oversee operational stability and administration for IAM platforms and dependencies (SSO/MFA platforms, directories, IGA administration, ITSM workflows, HR source‑of‑truth, APIs/connectors).
- Lead audit and compliance execution for access controls: evidence collection, recertification operational execution, control testing support, remediation tracking and sustained audit readiness.
- Establish an automation‑first operating model targeting removal of repetitive manual tasks and reduction of ticket volume across IAM workflows.
- Expand end‑user self‑service capabilities to reduce Service Desk dependency.
- Implement a continuous improvement loop: analyse top ticket drivers, remove root causes, standardise processes, improve knowledge and automate recurring issues.
- Own operational risk posture for IAM services including access outages, mis‑provisioning, privileged drift, toxic combinations and non‑human identity sprawl.
- Ensure strong monitoring, alerting and telemetry for IAM services and integrations, and partner with SecOps where needed.
- Drive reduction in repeat incidents through disciplined root cause analysis, prevention and engineering partnership.
- Build strong partnerships across Security, Infrastructure, HR, application owners and enterprise service management teams.
Work Experience – Essential
- 12+ years in IAM, security operations or identity platform operations, with 5+ years leading teams.
- Proven experience operating IAM services at enterprise scale.
- Strong ITSM and operational management experience.
- Demonstrated ability to manage third‑party SI partners and/or managed services.
- Track record delivering automation and self‑service using workflows, APIs and orchestration.
- Experience supporting audits and compliance requirements (SOX, SOC 2, ISO 27001, PCI).
- Excellent stakeholder management and communication skills.
- High ownership and operational rigor with measurable outcomes.
- Structured problem‑solving and disciplined root cause analysis.
- Clear communicator under pressure with strong executive presence.
- Ability to balance reliability, security and user experience while driving standardisation.
- Talent builder who creates leaders and scales operating models globally.
- Strong prioritisation and roadmap discipline across run, improve and transform workstreams.
- Experience implementing privileged access operational controls.
- Experience operating in complex environments (multiple directories/tenants, M&A integrations, directory consolidation, app migrations).
- Familiarity with Zero Trust principles and identity‑centric security patterns.
- Experience applying AI agents or AI‑assisted support in IT or security operations.
- Sound understanding of Identity and Access Management processes and controls.
- Experience with critical production server support, application upgrades and project lifecycle/SDLC processes.
- Good knowledge of control frameworks such as NIST, CRI, DORA, SOX.
- Excellent written and verbal communication skills.
Work Experience – Preferred
- Knowledge of Privileged Access Management principles, process and tools.
- Exposure to cloud identity patterns (AWS, Azure, GCP) and CI/CD access models.
- Financial Services experience a bonus.
- Experience of Financial regulations, compliance and standards.
- Must have Experience of supporting Global Organisation (10,000 users+).
Education
- Educated to degree level.
- CISSP, CISM or equivalent professional qualifications desirable.
Skills And Experience – Essential
- Proven experience with running and managing leading IAM platforms (Saviynt, Sailpoint, Entra ID, AD, etc.).
- Strong IAM domain knowledge: JML, authorisation, lifecycle management, RBAC/ABAC concepts and access governance fundamentals.
- Strong understanding of Identity Governance and Administration (IGA) and entitlement management.
- Experience with application onboarding and integration through AD/Entra, REST/SCIM, DB, SAP and other connector frameworks.
- Experience with integration into authoritative sources such as HR (Workday).
- Experience in creating self‑service IAM forms, process automation and integration with ITSM tools such as ServiceNow.
- Experience with integration methodologies and tools (Informatica, Azure API Gateway, Mulesoft).
- Proficiency in database technologies (preferably Oracle), LDAP, Active Directory and scripting languages such as SQL, Java, PowerShell or Python.
Skills And Experience – Preferred
- Advanced hands‑on experience with RSA Governance & Lifecycle.
- Identity Access Management on Public Cloud such as AWS, GCP, Azure.
- Network concepts and understanding of networking devices.
Personal Requirements
- Excellent communication skills.
- Results driven with a strong sense of accountability.
- A proactive, motivated approach.
- The ability to operate with urgency and prioritise work accordingly.
- Strong decision‑making skills, the ability to demonstrate sound judgement.
- A structured and logical approach to work.
- Strong problem‑solving skills.
- A creative and innovative approach to work.
- Excellent interpersonal skills.
- The ability to manage large workloads and tight deadlines.
- Excellent attention to detail and accuracy.
- A calm approach, able to perform well in a pressurised environment.
- Excellent Microsoft Office skills.
Desirable
- A proactive, motivated approach, self‑managing.
- Going above and beyond core duties of the role.
We are open to considering flexible working requests in line with organisational requirements.
MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership. We make our recruitment decisions in a non‑discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.
#J-18808-Ljbffr…
