Identity & Access Management Supervisor

CAN-ON-Toronto-11 King Street W #700, Canada

RSM

RSM US LLP is the leading U.S. provider of assurance, tax and consulting services focused on the middle market.

Job Description:

We are seeking an experienced IAM Supervisor to join our team. The successful candidate will be responsible for configuring authentication and authorization platforms, identifying governance tools, and implementing privileged access management technologies. The ideal candidate will have 4-8 years of experience in the field, and a deep understanding of the latest IAM technologies and best practices.

Responsibilities:

• Building, leading and developing high performing teams.
• Mentoring and influencing others both internally within RSM and within client organizations.
• Serving as an ambassador and champion of IAM Services throughout RSM.
• Providing thought leadership collateral annually for distribution to clients and through our various marketing channels.
• Developing RSM’s market eminence as a leader in IAM Implementation services to the middle market.
• Ability to manage client work and drive client communications with little or no oversight from RSM Senior Leadership.
• Management and implementation experience in CyberArk, CyberArk Privileged Cloud, SailPoint IIQ, IdentityNow, Okta, Forgerock, Ping, OneLogin, and/or Azure Active Directory (AD).
• Leading IAM federated architecture design and implementation (including, but not limited to SSO/MFA, IAG/HRIS, AD/LDAP integration).
• Knowledge of key IAM concepts and protocols (AuthN, AuthZ, LDAP/SAML/Kerberos).
• Fluency in AWS IAM best practices, CyberArk leading practices, SailPoint IIQ/IdentityNow leading practices, Okta leading practices and/or Azure AD leading practices.
• Knowledge of common IAM processes (lifecycle events, request/approval, password management, provisioning/de-provisioning, governance and certifications).
• Knowledge of infrastructure sizing, hardening and configuration (e.g. VPCs, network topology, DBMS, API gateway, connectors).
• Familiarity with common IAM data schemas (e.g. Identity Cubes).
• Knowledge of IAM solution error/exception handling and troubleshooting.
• Solid understanding of NIST/ISO standards for IAM.
• Leading IAM maturity assessments to identify gaps, deficiencies and recommendations.
• Familiarity with IAM custom development and deployment.
• Basic knowledge of common compliance requirements (GDPR, CCPA, PCI, HIPPA, HITRUST, DFARS, CMMC, etc.) as they relate to IAM.
• IAM testing strategies and methods (user acceptance testing, integration testing, performance testing, high availability/failover testing).
• Knowledge of red team strategies and penetration testing of IAM Solutions.
• Excellent written and verbal communication skills.

Qualifications:

• Minimum B.A. or B.S. degree or equivalent from an accredited university or college by the time employment commences.
• Computer Science, Information Technology, Information Systems Management, or other similar degrees preferably with a focus on information security.
• Prior management experience building, mentoring and developing teams.
• Experience managing budgets and resource allocation including, but not limited to program and project management.
• 4-8 years of experience in IAM Implementations with leading IAM Solutions (e.g. CyberArk, SailPoint, Okta).
• Technical background in computer science and related fields.
• Strong knowledge of computer network technologies, protocols and topologies.
• Proficiency with a variety of Windows, Unix and Linux operating systems.
• The ability to interpret and convey technical information through written and oral communications to all levels of technical aptitude, including senior management.
• High degree of integrity and confidentiality, as well as ability to adhere to company policies and best practices.

Preferred Qualifications:

• Certification in one or more leading IAM solutions (e.g. CyberArk, SailPoint, Okta, ForgeRock, AWS IAM).
• Practical hands-on or lab experience with IT infrastructure components such as servers, firewalls, IDS systems and other network infrastructure components.
• Experience with testing and development frameworks such as the Open Web Application Security Project (OWASP), Open Source Security Testing Methodology Manual (OSSTMM), the Penetration Testing Execution Standard (PTES), Information Systems Security Assessment Framework (ISSAF), and NIST SP800-115.
• Familiar with security testing techniques such as network discovery, port and service identification, vulnerability scanning, network sniffing, penetration testing, configuration reviews, firewall rule reviews, social engineering, wireless penetration testing, fuzzing, and password cracking and can perform these techniques from a variety of adversarial perspectives (white-, grey-, black-box).
• Prior consulting experience (e.g. Big Four).
• Insatiable appetite for learning and professional development.

Compensation Range: $73,500 - $117,500

Individuals selected for this role will be eligible for a discretionary bonus based on firm and individual performance.