IAM Lead

Job Title: IAM Lead (Operations/Support)
Location: Juno Beach FL (Fully Onsite)
Interview Process: 1 2 Rounds (1st Virtual 2nd In-Person)

Local to FL

Scale: Enterprise Windows Enterprise Linux hybrid AD/Azure AD SailPoint Identity Security Cloud One Identity Safeguard (including Safeguard for Sudo and Safeguard Authentication Services) SSO/MFA HRIS integrations (SAP SuccessFactors SAP Fieldglass) CyberArk PAM
Coverage: 24x7 operations global user base regulated utility environment

Define IAM operations strategy service catalog SLAs/SLOs/SLIs and operational roadmaps
Establish SRE practices for availability performance and resilience
Maintain end-to-end service architecture and dependency maps

Lead operations for AD/Azure AD SailPoint ISC SSO/MFA PAM Linux/macOS integrations
Manage L1/L2/L3 model on-call rotations runbooks KB articles self-service tools
Drive monitoring alerting and proactive detection with SIEM/observability tools

Serve as Major Incident Commander; reduce MTTR
Lead problem management RCAs and post-incident reviews
Govern changes through CAB/ECAB and release calendars

Ensure health of SailPoint ISC Azure AD/AD One Identity Safeguard
Oversee upgrades patching HA/DR backups and configuration baselines
Manage API usage throttling and integration resiliency

Operate joiner mover leaver processes via SAP SuccessFactors/Fieldglass
Ensure accurate provisioning/deprovisioning across directories SaaS on-prem apps
Govern AD group hygiene and automated role assignments

Enforce vaulting rotation session recording JIT elevation via One Identity Safeguard
Standardize sudoers policies and Safeguard Authentication Services
Integrate PAM telemetry with SIEM; enforce least privilege

Maintain SOX NERC-CIP NIST controls; keep services audit-ready
Support access certifications entitlement reviews SoD controls
Partner with security and audit teams on assessments and remediation

Implement policy-as-code and configuration-as-code
Automate monitoring provisioning workflows and evidence collection
Lead automated deployments UAT frameworks and regression testing

Publish service health dashboards KPI reports and executive briefings
Coordinate with Security HR IT Ops and application teams
Manage service intake and communicate risks/trade-offs

Maintain DR/MCBP plans and cyber recovery posture
Conduct tabletop/failover exercises and close gaps
Ensure privileged recovery capabilities are tested and documented

Bachelors in CS IS Cybersecurity or equivalent experience
8 years in IAM with 3 years leading operations/support teams
Platforms: SailPoint ISC (or IdentityNow/IIQ) Azure AD/AD One Identity Safeguard SSO/MFA LDAP/Kerberos SAML/OIDC/OAuth2 SCIM PKI
HRIS lifecycle integrations: SAP SuccessFactors SAP Fieldglass
Systems: Windows Linux macOS identity integration
ITIL/SRE: Major incident leadership SLAs/SLOs problem/change mgmt observability
Automation: PowerShell Python APIs config-as-code CI/CD
Compliance: SOX and NERC-CIP controls
Strong executive and technical communication

Certifications: CISSP CISM ITIL v4 Entra/Azure Admin SailPoint One Identity Safeguard SAFe
Cloud: AWS/Azure/GCP IAM secrets management conditional access
Tools: SIEM/SOAR Splunk/Elastic Prometheus/Grafana/Datadog ServiceNow ITSM/CMDB
Delivery: UAT/regression suites PI Planning Agile release trains

Security-first mindset
Strong ownership and calm incident leadership
Metrics-focused and data-driven
Collaborative diplomatic influential

On-call rotation
Off-hours maintenance as needed
Occasional travel for teams vendors or audits

Service availability/SLO performance
Reduced MTTR and incident trends
Change success rate
Provisioning SLA compliance
On-time certification completion
Privileged account coverage and policy adherence
Audit findings reduced/cleared
Automation coverage and toil reduction