Director, IAM Security Operations Leader

Who We Are

At Corebridge Financial, we believe action is everything. That’s why every day we partner with financial professionals and institutions to make it possible for more people to take action in their financial lives, for today and tomorrow.

We align to a set of Values that are the core pillars that define our culture and help bring our brand purpose to life:

• We are stronger as one: We collaborate across the enterprise, scale what works and actdecisively for our customers and partners.
• We deliver on commitments: We are accountable, empower each other and go above and beyond for our stakeholders.
• We learn, improve and innovate: We get better each day by challenging the status quo and equipping ourselves for the future.
• We are inclusive: We embrace different perspectives, enabling our colleagues to make an impact and bring their whole selves to work.

Who You’ll Work With

The Information Technology organization is the technological foundation of our business and works in collaboration with our partners from across the company. The team drives technology and digital transformation, partners with business leaders to design and execute new strategies through IT and operations services and ensures the necessary IT risk management and security measures are in place and aligned with enterprise architecture standards and principles.

About The Role

Reporting to the Global Head of Identity & Access Management, the Director of IAM Security Operations, will work closely with executive management and the security leadership team to operate and mature IAM services for cybersecurity. This person will be responsible for 24/7/365 production support of Identity & Access Management (IAM) solutions for globally dispersed businesses, personnel and customers. This role works closely with business stakeholders, applications teams, architects, application developers, consultants and vendors to operate IAM solutions that meet the business needs of the enterprise, ensure appropriate controls built into related processes, and align and be consistent with enterprise IT strategies and plans.

The Director will bring extraordinary people leadership skills and utilize their technical management skills to build and lead a large diverse agile team. In addition, be a good influencer and strong operations background with the ability to support the latest technologies, best practice business processes, and create a fast-paced development cycle which allows the team to brainstorm/research (independently and as a team), articulate effectively to varying audiences, offer technical acumen, and assist in the implementation, education and rollout of the IAM platform.

Responsibilities

• Manage on-going relationship with a business units and applications teams with highly complex needs. Researches, investigates, conducts quality reviews, analyses, recommendations for information security issues
• Perform problem tracking, diagnosis and root-cause analysis, replication, troubleshooting, and resolution for highly complex issues
• Engage and manage external vendors and stakeholders
• Drive support of IAM services 24/7/365
• Lead and resolve P1 and P2 incidents, producing details RCAs (root cause analysis’s) and action plans upon incident completion
• Work with the IAM delivery leads to on boarded supportable applications
• Drives communication to audiences during incidents and related follow-ups with RCAs
• Follow Change Management processes
• Oversee end to end testing and QA functions supporting IAM services
• Support technical IAM solutions, engaging during the lifecycle of solutions delivery, service owners, architects, project managers, global infrastructure teams, regional IT teams and key IAM product vendors
• Support the integrations with IAM systems with in-house and third-party applications for provisioning, access requests, and certifications
• Work with application developers and IT operations to develop, test, roll out and maintain enterprise wide IAM solutions and services
• Lead quality control and quality assurance activities that are complex in nature, across multiple technologies and organizational units
• Solve complex IAM problems
• Represent IAM organization on large scale technology projects implemented outside IAM, regulatory reviews and internal and external audits
• Work with the broader IT security, risk and compliance organization (ITSRC) to interpret policies and standards, ensuring policies and standards are properly followed by new and existing IAM solutions
• Contribute to evaluation, selection and configuration of IAM products and services from vendors
• Support in troubleshooting and resolving complex authentication, authorization and integration problems
• Identify opportunities and outline action plans to improve how existing IAM solutions are implemented
• Lead and/or execute of daily, weekly and monthly support activities to maintain the overall global IAM environment, in coordination with IT operations and regional IT teams
• Provide insights and recommendations to managers, third parties, and other business resources in support of information security needs to meet Production Support objectives
• Ability to coach and manage others. Ability to communicate tactfully in sensitive situations
• Set the team's direction and communicates individual and team priorities
• Ensure operations and related SLAs are well defined and operate within the required ranges with agreed upon quality.
• Support, enhance and implement training, FAQs, white glove sessions and related communications for IAM services.
• Support operations of the strategic multi-year roadmap for IAM
• Support complex solutions for business requirements to ensure that IAM service perform according to defined processes, meet business needs, follow defined policies and comply with applicable information security requirements
• Integrate IAM systems with in-house and third-party applications for various IAM services.

Skills and Qualifications

• 15+ years’ experience in overseeing (or related experience) production support or engineering IAM security services w/ a 24/7/365 SLA
• 15+ years’ experience in IAM products including Azure AD, Active Directory, role-based access control, multi-factor authentication, and SSO & related standards (e.g. SAML, OAUTH, NTLM, LDAP, Kerberos, PKI, etc. is must.
• 15+ years’ experience in supporting key IAM business processes supporting Identity Governance, Privileged Access, Access Administration & Authentication (inc. MFA), Directory Services, Enterprise-reporting for employees, non-employees and customers
• 15+ years of production support or related experience with IAM business processes, defining requirements, and implementing and recommending control-based business processes
• 15+ years’ experience in providing technical expertise in systems, technical infrastructure, tools, modelling, external interfaces, and other technical areas. Completes complex development, design, implementation, architecture design specification, and maintenance activities. Participating in projects and initiatives working with IAM team members, architectural, development and engineering teams, service owners, and business stakeholders to provide enterprise IAM solutions that are scalable and adaptable with the ever-changing business needs and industry demands
• 10+ years’ experience of development and/or operations framework methodologies, including Information Technology Infrastructure Library (ITIL), Systems Development Life Cycle (SDLC), etc.
• 10+ years of end-to-end access (re)certification experience with a strong understanding of completeness and accuracy validation procedures
• 10+ years working with 3rd parties providing management oversight of IAM services, technologies, processes and controls
• 10+ years advance understanding of business processes, internal control risk management, security and IT controls and related standards
• 10+ years’ experience interpreting architecture, designs and business requirements to develop and implement IT security solutions that span multiple technologies, businesses and geographies
• 7+ years’ experience engineering and designing Identity and Access Management (IAM) platforms, solutions and services
• 7+ Years managing 50+ resources in a matrixed environment
• 7+ years integrating applications and business services with IAM solutions
• 7+ years of hands-on experience with platforms such as SailPoint, CyberArk, CAPAM, CyberArk, Okta and related platforms
• 7+ years’ experience with SailPoint with RACF, Okta, Active Directory, AWS, Azure AD, Top Secret, SAP, ServiceNow etc., for access requests, certification and provisioning
• Experience with the following web technologies: XML, SPML/SOAP, Web and Application Servers, HTML
• Demonstrated experience supporting many of the following products and related IAM services: CA, Ping, OATH, RSAA, Azure AD, OAM, ADFS, Windows, Linux, VMware, AWS, Azure, Oracle, MSSQL, MySQL, Sybase, Db2, ACF2, Tomcat, JBoss, Websphere, WebLogic, and Apache
• General knowledge of cryptography including RSA-ACE, ECC, 3DES, IDEA, AES256/1024, SEAL
• Demonstrated experience with 7+ years IaaS, SaaS, PaaS service providers (Azure, AWS, Google GCE, Salesforce) -
• Experience with Databases (Oracle, MSSQL, MySQL)
• Experience with Directories (LDAP, AD)
• BA/BS degree in Computer Science, Engineering, or related discipline or equivalent work experience
• Strong interpersonal skills, with the ability to work with many levels of management and across multiple lines of business and corporate functions
• Hands-on experience troubleshooting IAM solutions and services
• Can dissect complex situations and guide teams to focus on most critical tasks
• Well organized, with good attention to detail
• Good communication skills, both written and oral

Compensation

The anticipated salary range for this position is $155,000 to $205,000 at the commencement of employment. Not all candidates will be eligible for the upper end of the salary range. The actual compensation offered will ultimately be dependent on multiple factors, which may include the candidate’s geographic location, skills, experience and other qualifications.

In addition, the position is eligible for a discretionary bonus in accordance with the terms of the applicable incentive plan.

Corebridge also offers a range of competitive benefits as part of the total compensation package, as detailed below.

Work Location

This position is based in Corebridge Financial’s Jersey City, NJ, Houston, TX, or Durham, NC office and is subject to our hybrid working policy, which gives colleagues the benefits of working both in an office and remotely.

Estimated Travel

May include up to 25%.

#LI-SAFG #LI-CW1 #LI-Hybrid

This role is deemed a “covered associate” under SEC Rule 206(4)-5, 17 CFR § 275.206(4)-5, Political contributions by certain investment advisers, and other federal and state pay-to-play rules. Candidates for the role must not have made any political contributions that, under 17 CFR § 275.206(4)-5 or other federal or state pay-to-play regulations, would disqualify the candidate or Corebridge Financial from conducting Corebridge Financial’s business, or that would otherwise create a conflict of interest for Corebridge Financial. Applicants who are selected to move forward with the application process will be required to disclose all U.S. political contributions they and their household family members have made over the past two years.

Why Corebridge?

At Corebridge Financial, we prioritize the health, well-being, and work-life balance of our employees. Our comprehensive benefits and wellness program is designed to support employees both personally and professionally, ensuring that they have the resources and flexibility needed to thrive.

Benefit Offerings Include:

• Health and Wellness: We offer a range of medical, dental and vision insurance plans, as well as mental health support and wellness initiatives to promote overall well-being.
• Retirement Savings: We offer retirement benefits options, which vary by location.In the U.S., our competitive 401(k) Plan offers a generous dollar-for-dollar Company matching contribution of up to 6% of eligible pay and a Company contribution equal to 3% of eligible pay (subject to annual IRS limits and Plan terms). These Company contributions vest immediately.
• Employee Assistance Program: Confidential counseling services and resources are available to all employees.
• Matching charitable donations: Corebridge matches donations to tax-exempt organizations 1:1, up to $5,000.
• Volunteer Time Off: Employees may use up to 16 volunteer hours annually to support activities that enhance and serve communities where employees live and work.
• Paid Time Off: Eligible employees start off with at least 24 Paid Time Off (PTO) days so they can take time off for themselves and their families when they need it.

Eligibility for and participation in employer-sponsored benefit plans and Company programs will be subject to applicable law, governing Plan document(s) and Company policy.

We are an Equal Opportunity Employer

Corebridge Financial, is committed to being an equal opportunity employer and we comply with all applicable federal, state, and local fair employment laws. All applicants will be considered for employment based on job-related qualifications and without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, neurodivergence, age, veteran status, or any other protected characteristic. The Company is also committed to compliance with all fair employment practices regarding citizenship and immigration status. At Corebridge Financial, we believe that diversity and inclusion are critical to building a creative workplace that leads to innovation, growth, and profitability. Through a wide variety of programs and initiatives, we invest in each employee, seeking to ensure that our colleagues are respected as individuals and valued for their unique perspectives.

Corebridge Financial is committed to working with and providing reasonable accommodations to job applicants and employees, including any accommodations needed on the basis of physical or mental disabilities or sincerely held religious beliefs.If you believe you need a reasonable accommodation in order to search for a job opening or to complete any part of the application or hiring process, please send an email to .Reasonable accommodations will be determined on a case-by-case basis, in accordance with applicable federal, state, and local law.

We will consider for employment qualified applicants with criminal histories, consistent with applicable law.

To learn more please visit:

Functional Area:

IT - Information TechnologyEstimated Travel Percentage (%):Relocation Provided:American General Life Insurance Company