Senior Manager, IAM Process & Control Assessment (IAM Process & Compliance)

About The Position

Requirements

• 5+ years of experience in a comparable role, with a proven track record of identifying actionable insights and presenting findings to senior leadership to support informed decision making
• 3+ years in dedicated control assessment, compliance gap analysis, control deviation management, or IAM governance roles
• 3+ years designing, documenting, or improving IAM processes across platforms
• Deep knowledge of LASS (RBC Logic Access Standard), SOX IAM controls (230.x series), and NIST SP 800-53 Rev. 5
• Track record of creating process documentation, workflows, and Visio diagrams for compliance or operations teams
• Ability to create standardized Visio swimlane diagrams for key IAM processes showing actor roles, decision points, system interactions, and control checkpoints; design reusable visual templates for process documentation; use diagrams for stakeholder communication and training
• Demonstrated project leadership managing cross-functional process improvement and automation initiatives
• Ability to translate complex technical concepts into clear insights for IT and business leadership
• Strong collaboration skills to influence and drive change
• Expertise preparing high-impact presentations for senior leadership audiences
• Proven ability to deliver results across multiple initiatives
• Commitment to continuous learning and rapidly acquiring new technical domain knowledge
• Motivation to develop new or additional IAM expertise

Nice To Haves

• Risk management oversight and control remediation
• Advanced analytics expertise to identify trends and develop actionable remediation plans using AI, Excel, Tableau, or Power BI
• Understanding of IAM concepts (authentication protocols, PAM, user lifecycle management)
• Experience with IAM platforms (SailPoint, Active Directory, Entra ID, ServiceNow, PAM Vault)
• Familiarity with IAM process design methodologies (swimlane flows, decision logic, control integration)
• Relevant certifications (CISSP, CISM, CRISC, CISA)
• Familiarity with IT standards (NIST Cybersecurity Framework, COBIT, ISO 27001)
• Experience with Agile or Lean methodologies for process improvement
• Experience with collaboration tools (MS 365/SharePoint, Confluence, Jira)

Responsibilities

• Receive, triage, and analyze all Control Impact Assessment requests; perform structured gap analysis identifying impacted IAM controls (LASS, SOX, NIST); evaluate compensating controls for adequacy and residual risk; maintain centralized exception registry; coordinate annual attestations; communicate decisions to stakeholders; track exception trends to identify systemic compliance gaps.
• Maintain centralized registry of all CIA requests, approvals, and exceptions for audit trails and compliance reporting.
• Coordinate annual attestation cycles requiring application custodians to confirm approved deviations remain within scope and mitigation strategies are active.
• Track and report on exception trends to identify systemic control gaps and process design issues requiring remediation.
• Communicate assessment progress and decisions to application owners, IAM teams, and IAM Governance.
• Prepare impact summaries and remediation checklists for executive decision-makers.
• Partner with stakeholders to ensure understanding of control requirements and compliance obligations.
• Develop enhanced CIA templates and process documentation toolkits that standardize best practices and reduce documentation time.
• Innovate control assessment and process design methodologies (e.g., semi-automated gap analysis, risk-scoring algorithms, AI-assisted control assessments).
• Manage project timelines and stakeholder adoption with full accountability for project outcomes.
• Partner with IAM operations and platform teams to design end-to-end IAM processes (provisioning, deprovisioning, access review, authentication, PAM, attestation); create comprehensive process documentation with narrative workflows, RACI matrices, and explicit control mappings; establish process documentation standards; contribute to the authoritative IAM Process Library.
• Lead cross-functional process improvement projects autonomously with minimal oversight from Director, Process Services.
• Identify and execute process enhancement initiatives (e.g., process flow redesign, access provisioning standardization, deprovisioning acceleration).
• Design CIA workflow automation using ServiceNow, Power Automate, or RBC-approved tools to reduce manual effort, improve SLA compliance, and automate control checkpoints.
• Provide support for all IAM controls related audit, regulatory, and third-party requests for evidence.

Benefits

• bonuses
• flexible benefits
• competitive compensation
• commissions
• stock where applicable
• Leaders who support your development through coaching and managing opportunities
• Ability to make a difference and lasting impact
• Work in a dynamic, collaborative, progressive, and high-performing team
• A world-class training program in financial services
• Opportunities to do challenging work