See yourself in our team:The Identity and Access Technology (IAT) Teams are an integral part of the wider Group Security practice. IAT consists of 3 Crews focused on Identity Lifecycle Management, Workforce Authentication, and Privileged Access Management. These Crews are supported by 3 enabling teams, focused on Identity Adoption, Oversight, and Access Design. Together they deliver a range of critical services to the organization ensuring our staff and partners have the right access, to the right systems, at the right times.Do Work that matters:The Authentication and Access Control Lead is responsible for designing, implementing, and managing the organization's authentication and access control frameworks. This role ensures that only authorized users have access to systems, data, and applications, thereby protecting the organization from unauthorized access and security breaches. The Lead will collaborate with various IT and security teams to develop robust access policies and ensure compliance with security regulations and standards.Develop and maintain a comprehensive access control strategy that aligns with the organization's security policies and regulatory requirements. Ensure that access control mechanisms are robust, scalable, and adaptable to emerging threats.Oversee the deployment, configuration, and maintenance of authentication systems, including multi-factor authentication (MFA), single sign-on (SSO), identity and access management (IAM) solutions, and directory services.Establish and enforce access control policies and procedures across the organization. Regularly review and update these policies to adapt to changing security landscapes.Conduct regular audits of access controls and authentication systems to ensure compliance with internal policies and external regulations. Generate reports on access control activities and present findings to senior management.Lead investigations into access control and authentication incidents, working with cybersecurity teams to address vulnerabilities, mitigate risks, and implement corrective actions.Work closely with IT, HR, legal, and business units to ensure access control policies support business operations while maintaining security. Serve as a point of contact for internal and external auditors regarding access control issues.Evaluate new access control and authentication technologies, recommend solutions, and oversee their implementation. Ensure that new systems integrate seamlessly with existing infrastructure.Develop and deliver training programs to educate employees on secure access practices and the importance of strong authentication measures.We are interested in hearing from people who have:Demonstrated experience in access control, identity management with exposure to CIAM (Customer Identity & Access Management) is preferable.Deep understanding of authentication technologies, IAM solutions, access control models (e.g., RBAC, ABAC), and directory services (e.g., LDAP, Active Directory).Strong knowledge of regulatory requirements related to access control and data protection and exposure to NIST standards.Proven experience in managing access control systems and technologies, including MFA & SSO.Excellent problem-solving, analytical, and decision-making skills.Strong communication skills, with the ability to explain complex technical concepts to non-technical stakeholders.Ability to lead and collaborate with cross-functional teams in a fast-paced environment.
#J-18808-Ljbffr
