Secrets Management Manager

The Secrets Manager will lead and drive a team of highly experienced private/public key vault and privileged access engineers and analysts in the delivery of the Enterprises Secrets Management solutions. This role will be the technical leader for Identity & Access Management (IAM) and associated services. The incumbent will need to influence and communicate with customers and stakeholders from all areas of the enterprise including technical resources and operational functional and IT leaders. This position is a member of the Enterprise Risk & Resliency Management Team directly reporting to the Director of Identity & Access Management working in alignment with the Identity & Access Management Program Leaders and will be responsible for enabling the program initiatives through implementing successful PKI Vault and PAM services.

The Secrets Manager will work closely with the Identity & Access Management (IAM) Leadership Team to define the strategic vision and roadmaps across IAM platforms and services fostering a culture of innovation standardization and execution of the the IAM strategy driving operational excellence showcased by metrics and create a curriculum to support talent development and retention. Manager is primarily responsible for managing and maintaining the CyberArk KeyFactor DigiCert and HashiCorp Vault infrastructure ensuring high availability scalability and security of secrets management for our enterprise systems.

• Manage a team of PAM PKI Vault engineers and analysts
• Manage daily operational maintenance and project work.
• Acts in the capacity as the most senior technical expert for secrets and privileged access management (PAM) public and private key (PKI) and vault technologies tools and processes.
• Research and evaluate new IAM standards and tools working with other technology leaders to make decisions
• Define and promote best security standards for Identity and Access Management.
• Ensure Privileged Access and Secrets Services are designed to be compliant with security and privacy standards and other industry standards and practices.
• Determine how to best apply technology capabilities to meet business requirements.
• Manage daily operational maintenance and project work.
• Plan and coordinate system upgrades that impact identity and access management architectures.
• Ensure architectural compliance and strategic alignment of an evolving solution through development and oversight of periodic review and governance processes.
• Generate and publish technical documentation including details of all dependencies and integration points.
• Define methodology and standards for interaction with the Secrets Management platforms.
• Partnering with the Identity & Access Management Leaders work to develop standardized and detailed design documentation including roadmaps business requirements technical design specifications process flow diagrams use cases etc..
• Collaborate with clients to understand document and provide standard practices to avoid reduce or remediate risk related to identity and access management practices.
• Perform client delivery & project execution in a fast-paced environment.
• Work with peers to reduce manual processes through automation.
• Develop and take ownership of the secrets management systems SOPs policies standards runbooks and incident response playbooks.
• Continuously consult with business owners when implementing access levels for new systems
• Participate in the definition of metrics and service levels and provide a daily health check status on all systems including number of incidents tickets closed system outages etc
• Collaborate continuously with business stakeholders to ensure requirements are captured priorities are understood and constraints communicated.
• Identify and correct problems uncovered by testing or end user feedback
• Communicate status of work to Enterprise Risk & Resiliency Leadership
• Occasional after hours work if needed
• Complete tasks consistently and on time to meet release schedules
• Review new business opportunities to gain and refine understanding of their value to establish preliminary estimates of opportunity effort and cost of delay.
• Able to speak to each and every project in business terms at an executive level
• Team building management and mentoring skills
• Evaluate emerging PAM PKI Vault technologies and vendors to inform roadmap decisions.
• Build PAM PKI Vault services that are resilient and resistant to evolving threats leveraging industry best practices and threat intelligence.
• Manage the prioritization and delivery of enhancements to PAM controls based on risk compliance and operational criteria.
• Provide support for automation of our systems that support our Secrets and Privileged Access Management solutions.

Formal Education & Certification

• Bachelors degree (or foreign equivalent) in a Computer Science Computer Engineering or Information Technology field of study (e.g. Information Technology Electronics and Instrumentation Engineering Computer Systems Management Mathematics) or equivalent experience.
• Certification in Information Assurance Management (CIAM) Certified Information Systems Security Professional (CISSP) and/or Certified Information Security Manager (CISM) a plus.

Knowledge & Experience

• 12 years IT and/or Business experience.
• 8 years in system integration or software engineering areas
• 8 years working with internal clients and/or external agencies/partners.
• 6 years of management experience with direct reports.
• 4 years of identity and access management experience working with CyberArk KeyFactor DigiCert HashiCorp Azure Key Vault or equivalent solutions .
• Demonstrated leadership experience on multiple large-scale IT projects.
• Knowledge and experience with Identity and Access Management systems.
• Strong technical knowledge and experience coupled with business intelligence and ability to understand customers needs.
• Strong ability facilitating process mapping activities and working knowledge of mapping techniques.
• Experience with Agile principles and practices preferred.
• Ability to effectively review project plans with project managers and make recommendations or provide feedback based on the needs of the program.
• Ability to develop and analyze requirements & design and work in conjunction with other developers to implement software solutions
• Well-versed in Microsoft Office applications.