The Cybersecurity Program Manager – Identity & Access Management (IAM) will lead enterprise-scale IAM Programs within a regulated financial services environment. The role is accountable for delivering secure, compliant, and resilient identity solutions aligned with UK regulatory expectations, including FCA, PRA, GDPR, and ISO 27001. This position works closely with CISO, Risk, Compliance, Audit, and Architecture teams to ensure IAM functions as a core control within the bank’s cyber resilience and Zero Trust strategy.
Key Responsibilities
- Own end-to-end delivery of IAM transformation and run programs across workforce, partner, and customer identities
- Establish program governance, delivery cadence, RAID management, financial tracking, and executive reporting
- Ensure IAM initiatives align with regulatory, audit, and risk management requirements
Identity & Access Management Domain Ownership
- Lead delivery across Identity Governance & Administration (IGA), Privileged Access Management (PAM), SSO, MFA, and CIAM
- Drive automated joiner-mover-leaver processes and periodic access certification
- Ensure least-privilege access and segregation of duties across critical banking systems
Risk, Compliance & Audit
- Support internal and external audits and remediate IAM control gaps
- Demonstrate compliance with FCA/PRA expectations, GDPR, SOX, ISO 27001, and NIST
- Partner with Risk and Compliance teams to improve identity-related risk posture
- Engage senior stakeholders including CIO, CISO, and Head of Risk with clear program updates
- Manage strategic IAM vendors such as SailPoint, Saviynt, Okta, Azure AD/Entra ID, Ping, and CyberArk
Required Skills & Experience
- 12+ years in cybersecurity or IAM with 5+ years managing large program
- Strong understanding of IAM architectures in financial services environments
- Experience working in FCA-regulated organizations or tier‑1 banks
- Excellent stakeholder communication and executive reporting skills
Qualifications & Certifications
- Bachelor’s degree in Computer Science, Information Security, or similar
- Professional certifications such as CISSP, CISM, PMP, SAFe, or IAM‑specific certifications
What Success Looks Like
- Reduced identity‑related risk and audit findings
- Improved regulatory confidence in IAM controls
- Secure, scalable identity services supporting business growth
#J-18808-Ljbffr