Identity and Access Management Services Lead

Brighthouse Financial Charlotte, NC
Apply now


Please wait...

Identity and Access Management Services Lead

Req Id: 1003

Job Location:

Charlotte, NC, US, 28277

Brighthouse Financial is a new company established by MetLife. We're on a mission to help people achieve financial security. Built on a foundation of industry knowledge and experience, we specialize in offering essential annuity and life insurance products designed to help customers protect what they've earned and ensure it lasts more predictably. In an industry that often has a reputation for complexity, confusion, and cost, Brighthouse Financial is different. Our approach includes simplicity, transparency, and more value so customers can face the future with confidence.

Brighthouse Financial is seeking passionate, high-performing team members to help us carry out our mission and be part of an exciting journey toward improving the financial futures of our millions of customers. Sound like you? Read on.

Role Value Proposition:

Brighthouse Financial Services is looking for an Information Security leader, focused on Identity and Access Management (IAM) operational services to join our growing information security organization. In this role the selected candidate will operate independently and as part of a team to provide end to end delivery of IAM services, which includes; Identity Governance Administration (IGA), Access Management (Authentication, Authorization), Privileged Access Management and Data Access Governance (Access re-certification & compliance), and work closely with the compliance, internal audit and Information Security operations teams to continually maintain Brighthouse Financial interest. This position is both a governance and hands-on role in support of protecting the distributed cloud, vendors and managed service providers ecosystem. The candidate should have strong IAM delivery & operations background, information security skillset and a deep understanding of security capabilities and controls. This position will report directly to Assistant Vice President of Security Strategy Planning and Architecture.

The Director of IAM will have the accountability for day-to-day IAM service operations, technology governance, control enablement and enhancing technical controls where needed. This role will be responsible for the overall optimization of IAM capabilities for both internal associates, contingent workers and external advisors & customers; in addition to partnering with key solution providers. The Director will also be tasked with providing key performance and operational metrics in support of Brighthouse Financial control expectations.

The scope of the Director role includes establishing a consistent and reliable operational security environment and a proactive security monitoring approach in support of best in performance and cost cloud-security model. The Director will also be responsible for the enablement of IAM controls across all company information assets and platforms (technology platforms, cloud instances and data centers) associated with Brighthouse Financial. This also includes making recommendations on control lifecycle prioritization and optimization of cyber, regulatory -related control mechanisms.

Key Responsibilities:

* Implementing prioritized improvement opportunities that pertain primarily to changing processes or procedures

* Providing input and requirements during process and control design

* Preparing and maintaining relevant process and procedural documentation for IAM controls

* Contributing to analysis of periodic IAM performance metric reports

* Owning the activities of the operations analysts and 3rd party personnel who are supporting the execution of IAM services

* Leading outage response activities (support or commander roles) and reporting service restoration status

* Participating in audits and other compliance assessment activities as needed to assist with compliance deadlines

* Collaborate with Brighthouse control owners and cross discipline stakeholders across the enterprise to develop and maintain security controls specific to IAM to safeguard Brighthouse Financial data

* As appropriate - ownership, management, support and supervision of information security assessments, audits and ongoing monitoring and engineering activities

* Provide active monitoring and governance to ensure that third party technology providers adhere and align to Brighthouse Financials relevant security policies, standards and practices

* Support for Technology Strategic Initiatives including the application and infrastructure establishment and simplification, transparency and value

* Measures and supporting evidence of operational efficiency and excellence

Essential Business Experience and Technical Skills:

* Intelligent and persuasive manager with exceptional interpersonal, verbal, written communication and presentation skills

* ITIL-based operations experience with some or all of the IAM technologies described above. This experience should include managing Tier 2 (vendor) support teams during normal, day-to-day operations. We are also looking for an applicant who can lead outage response teams to restore service after interruption, execution of operational improvement projects, and testing

* Experience that demonstrates deep knowledge of leading practice IAM controls, processes, and procedures.

* Experience leading hybrid teams, 3rd party service providers, and IAM technology suppliers

* Working knowledge of networking concepts such as firewalls, network traffic redirectors, routers, network segmentation, well-known ports for Internet protocols, IP addresses, NAT, traceroute and packet captures, and DNS

* 12+ years of broad technology experience in information security and infrastructure services with a proven record of success in delivering and managing security services

* At least 5+ years of experience in managing and delivering IAM services. Should have experience in managing complex information technology programs, preferably within the financial services, insurance or information security industries

* A solid understanding on cloud services security (IaaS, PAAS, SaaS) and IAM's role in managing access to Brighthouse Financial data

* Accomplished and effective change manager with people management responsibility and ability to implement and drive adoption of IAM program as required for Brighthouse Financial

* Manages across vendor sourced solutions and consultants, ensuring vendor performance and deliverables meet specifications. Must direct members across the organization, ensuring alignment of resources across functions and matrix. Creative, innovative and thorough approach with the ability to operate autonomously

* Excellent understanding of underlying IAM standards, which includes but not limited to; Kerberos, SPENGO, SAML, OAuth, OpenID Connect, XACML, NGAC, SCIM, FIDO, etc.

* Sound working knowledge of industry best practices (General IT controls, NIST, ISO, SANS, COBIT, CERT) and Legislative and Regulatory and Industry Compliance Requirements (NY DFS, SOX, PCI-DSS, HIPPA, GLBA, etc.).

* Bachelor's degree and/or related field experience required, Master's degree in computer field is preferred

* CISSP, CISA, CISM, CRISC or related certifications is a plus

Salary Grade:


Nearest Major Market: Charlotte

Job Segment: Law, Internal Audit, Compliance, Information Security, Legal, Finance, Technology