Senior Manager, Cybersecurity Identity Access Management
We are supporting a major law firm, seeking a strategic and technically proficient Senior Manager of Cybersecurity - IAM to lead their Identity & Access Management program. This role will oversee the engineering and operations of IAM and IGA capabilities, ensuring secure, compliant, and efficient access across the firm's systems. The ideal candidate will bring deep expertise in authentication, authorization, privileged access, and identity governance, along with strong leadership and agile delivery skills to drive innovation and operational excellence.
Responsibilities:
- Define and execute the IAM strategic roadmap aligned with cybersecurity and business objectives
- Lead IAM engineering and operations, ensuring scalability, reliability, and security
- Manage identity lifecycle processes including onboarding, RBAC, federation, and de-provisioning
- Administer and optimize current tools (Okta, SailPoint) and plan for future integrations (CyberArk)
- Support and enhance Active Directory/LDAP, MFA, and authentication protocols (SAML, OAuth, OIDC)
- Drive agile practices including sprint planning, backlog grooming, and iterative delivery
- Collaborate with stakeholders across IT, legal, and business units to align IAM solutions with firm needs
- Ensure IAM solutions meet compliance and regulatory requirements
- Lead incident response efforts related to identity and access breaches
- Inspire and mentor a high-performing IAM team, fostering a culture of excellence and innovation
Qualifications:
- Bachelor's degree in Computer Science, Information Technology, or related field
- Advanced degree or certifications preferred (CISSP, CISM, Okta/SailPoint certifications)
- 10+ years of experience in IAM or cybersecurity, with at least 5 years in a leadership role
- Proven experience managing engineering and operations teams in IAM
- Expertise in IAM, IGA, RBAC, lifecycle management, federation, and PAM
- Hands-on experience with Okta, SailPoint, and CyberArk
- Familiarity with authentication standards (SAML, OAuth, OIDC), MFA, APIs, and integrations
- Strong leadership, strategic vision, and tactical execution skills
- Excellent problem-solving, decision-making, and communication abilities
- Effective stakeholder management across technical and business domains
Sponsorship is not available now or in the future for this role. This would be a hybrid role, based out of NYC, Boston, Washington DC, or LA. If you or someone you know is interested, please apply in directly!
FAQs
Congratulations, we understand that taking the time to apply is a big step. When you apply, your details go directly to the consultant who is sourcing talent. Due to demand, we may not get back to all applicants that have applied. However, we always keep your CV and details on file so when we see similar roles or see skillsets that drive growth in organisations, we will always reach out to discuss opportunities.
Yes. Even if this role isn’t a perfect match, applying allows us to understand your expertise and ambitions, ensuring you're on our radar for the right opportunity when it arises.
We also work in several ways, firstly we advertise our roles available on our site, however, often due to confidentiality we may not post all. We also work with clients who are more focused on skills and understanding what is required to future-proof their business.
That's why we recommend registering your CV so you can be considered for roles that have yet to be created.
Yes, we help with CV and interview preparation. From customised support on how to optimise your CV to interview preparation and compensation negotiations, we advocate for you throughout your next career move.