The IAM Analyst - Principal is accountable for delivery and implementation of IAM technologies across the bank.
Ensure that Huntington's Identity & Access Management (Identity Federation/SSO) services are designed to be compliant with security and privacy standards and other industry standards and practices.
Work with Portfolio Manager to deliver IAM program strategy, roadmap, objectives, and key milestones to provide business value and sustain identity and access management capabilities.
Collaborate with IAM architects, Enterprise Architects, and Application Architects to refine work needed to implement technologies in alignment with established designs and patterns.
Collaborate with business units when implementing Single Sign-On, Multifactor Authentication, or enabling authentication policies for new systems.
Collaborate with IT and development teams to ensure seamless integration of CIAM products with existing systems and applications.
Assist with vendor relationships and any evaluation or recommendations related to new vendors and technologies.
Provide leadership and guidance within the IAM team.
Foster a culture of continuous learning, skill development, and collaboration within the IAM team.
Support the response to IAM-related security incidents and implementing any necessary corrective actions.
Other duties as assigned.
8+ years of experience in Information Security or in management of a cross functional department.
8+ years of experience gathering requirements and demonstrating successful delivery.
6+ years of experience and understanding of various regulatory requirements and laws such as PCI, FFIEC, SOX, HIPAA, GDPR, and GLBA.
Experience delivering and sustaining cloud IAM lifecycle holistically throughout the enterprise including in AWS, Azure, and GCP.
Experience with Identity Federation/SSO specifically using leading IAM products on-premises and/or in the cloud.
Experience working with application teams to integrate SAML, OAuth, and OIDC.
Experience administering IAM systems, access controls, security, and risk management, as well as a security governance framework at scale.
3+ years of experience administering IAM systems, access controls, security, and risk management, as well as a security governance framework at scale.
Bachelor's degree in Computer Science, Information Security, or equivalent experience.
CISSP, CISM.
Experience with both Agile and Waterfall working methods.
Experience as a Product Owner for a combination or a specific aspect of Authentication technology.
Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
Extensive knowledge of Active Directory (AD) and LDAP Directories (e.g., Oracle Directory, Novell/NetIQ eDirectory) and use of SCIM.
Experience with SSL/TLS encryption, RADIUS, privileged accounts, SoapUI, and integration of vendor application program interface (API) capabilities.
Experience with SIEM products for reporting and dashboards or previous experience with SQL or other applicable query languages.
Experience working with application teams to integrate Single Sign-On and Multi-Factor Authentication.
Experience with Python, PowerShell, and/or JavaScript.
Experience with PingOne Advanced Services Platform.