Identity Security Manager – GOV
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Identity Security Manager leading IAM and PAM operations for PNC's secure payment integration technology. Overseeing access management and driving continuous improvement in security processes.
Responsibilities:
- Lead day to day IAM operations, ensuring reliable and secure access provisioning, modification, and deprovisioning across the enterprise.
- Own workforce and non-human identity lifecycle management, including joiner, mover, and leaver processes.
- Serve as the escalation point for access related incidents, outages, or high-risk access scenarios.
- Ensure IAM platforms operate with high availability, security, and performance, including on call readiness and operational support models.
- Own and mature the Identity Governance and Administration (IGA) program using SailPoint.
- Lead access certification campaigns, role modeling, entitlement management, and access reviews.
- Drive automation of access requests, approvals, and policy enforcement.
- Partner with Compliance and Audit teams to support evidence collection, remediation tracking, and control validation.
- Define and maintain identity governance policies aligned to least privilege and segregation of duties principles.
- Lead the design, implementation, and operation of PAM capabilities.
- Own privileged account onboarding, credential rotation, session management, and access approval workflows.
- Ensure strong controls for administrative, service, and emergency access.
- Partner with Infrastructure and Engineering teams to onboard platforms, applications, and cloud workloads into PAM.
- Develop metrics and reporting for privileged access usage, risk, and compliance.
- Own enterprise secrets management strategy and implementation using HashiCorp Vault.
- Ensure secure storage, rotation, and access control for application and infrastructure secrets.
- Drive best practices for non-human identities, dynamic credentials, and short-lived secrets.
- Define IAM architecture standards for workforce, application, cloud, and infrastructure access.
- Evaluate and implement new IAM technologies, integrations, and automation opportunities.
- Maintain IAM documentation including standards, procedures, and reference architectures.
- Lead and mentor IAM/PAM engineers and analysts, providing technical guidance and career development.
- Champion strong documentation, operational discipline, and security by design principles.
Requirements:
- CCSP, CISSP, GCIA, GCIH, GCFA, CySA+ or equivalent certifications.
- Hands‑on experience with SailPoint, CyberArk, and HashiCorp Vault in enterprise environments.
- Strong understanding of IAM concepts including identity lifecycle management, RBAC/ABAC, least privilege, and zero trust.
- Experience integrating IAM solutions with cloud platforms, SaaS applications, and on‑prem infrastructure.
- Familiarity with compliance frameworks such as PCI DSS, SOC 2, HIPAA, and other regulated environments.
- Experience supporting audits, access reviews, and regulatory evidence requests.
- Strong understanding of authentication, authorization, SSO, MFA, and directory services.
- Ability to translate technical IAM concepts into clear guidance for technical and non‑technical stakeholders.
- Excellent communication, organizational, and prioritization skills.
- Strong analytical and problem‑solving abilities with attention to detail.
Benefits:
- medical/prescription drug coverage (with a Health Savings Account feature)
- dental and vision options
- employee and spouse/child life insurance
- short and long-term disability protection
- 401(k) with PNC match
- pension and stock purchase plans
- dependent care reimbursement account
- back-up child/elder care
- adoption, surrogacy, and doula reimbursement
- educational assistance, including select programs fully paid
- a robust wellness program with financial incentives
- maternity and/or parental leave
- up to 11 paid holidays each year
- 9 occasional absence days each year, unless otherwise required by law
- between 15 to 25 vacation days each year, depending on career level; and years of service
Similar Jobs
Vice President – Technology and Security
Vice President of Technology and Security leading the technology strategy at NSTXL. Overseeing cybersecurity, AI strategy, and enterprise systems for government and defense environments.
Identity & Devices Security Architect – Client Consulting
Security Architect at Cyclotron designing Microsoft 365 Identity and Device Management tools. Collaborate with clients to improve security posture across Microsoft ecosystems.
Director of AI Security
Senior Leader for Securing AI responsible for defining and executing AI security strategy. Overseeing risk management for AI systems across the enterprise for leading healthcare technologies.
Cybersecurity Engineer II
Cybersecurity Engineer II responsible for security oversight and compliance of enterprise products and information systems. Collaborating with teams to ensure best security practices and address vulnerabilities.
Director of Cyber Security Architecture, Engineering Services
Director leading Cyber Security Architecture and Engineering at U.S. Fin Tech. Overseeing design and execution while ensuring compliance to cyber security policies.
Senior Security Engineer, GRC Automation
Senior Security Engineer designing and implementing GRC automation workflows at 1Password. Partnering with the Senior Manager of GRC to enhance security operations and compliance.
Lernbegleiter:in Sicherheit und Objektschutz
Trainer for security and protection at WBS TRAINING focusing on participants' competency development and utilizing various teaching methods. Providing specialist education from home office in WBS LearnSpace 3D.
AWS Cloud Security, ICAM Specialist
AWS Cloud Security and ICAM Specialist designing and managing secure authentication for cloud applications. Ensuring compliance with federal identity governance and cloud security principles.
Staff Security Engineer
Staff Security Engineer at Order.co driving security architecture and mentoring engineers. Overseeing technical improvements and complex security initiatives to protect company data.
Information Security Assessor – QSA Certified
Information Security Assessor leading PCI DSS assessments and client engagements in cybersecurity compliance at RSI Security. Collaborating with stakeholders and ensuring compliance with regulatory frameworks.
External Industry Risk & Security Governance Representative – ISO 17021, 17020, 42006
External Industry Risk & Security Governance Representative serving on the Impartiality Committee for RSI Security. Managing governance oversight and ensuring impartiality in certification processes with extensive industry experience.
Analista Blue Team – IBM QRadar
Analista Blue Team at It4us responsible for monitoring and incident response in corporate environments. Engage in high-criticality cybersecurity operations using IBM QRadar.
Especialista em Cyber Segurança – Resposta a Incidentes
Specialist in Cyber Security coordinating incident response operations at Grupo Casas Bahia. Evaluating and optimizing incident response processes and ensuring alignment with security policies.
Mid-level Information Security Analyst
Analista Pleno de Segurança da Informação focusing on CyberSecurity with Azure cloud security at Atlas. Seeking dynamic professionals for significant impact in security maturity.
Cybersecurity Architect – Senior
Cybersecurity Architect leading security architecture for critical operations in Brazil and Canada. Designing robust security solutions and ensuring compliance across complex environments.
Security Consultant
Security Consultant facilitating the day-to-day running of the Intruder platform, delivering consultancy services to customers and managing security projects.
Security Expert
Cybersecurity Consultant specializing in Microsoft Sentinel, Defender, and Purview technologies at Ontinue. Delivering high-impact projects and expert guidance to clients across various industries.
Microsoft 365 Security Engineer
Microsoft 365 Security Engineer responsible for securing and managing Microsoft 365 environments. Join RKD Group to make a positive impact in nonprofit sectors by enhancing security measures.
Application Security Project Manager
Application Security Project Manager leading enterprise-level App Sec efforts for federal customers. Proven experience in cybersecurity and service delivery required.
EC Payroll Security Resource
Remote position for ECP Security and RBP areas resource. Involves payroll security responsibilities with expected travel to Miami.