To lead the global delivery and oversight of the bank's Identity and Access Management (IAM) programme, ensuring that IAM capabilities are standardized and scalable across regions, and aligned with international regulations especially in the US. The role requires strong leadership across diverse regulatory landscapes, deep technical IAM expertise, and the ability to influence security posture globally.

Global IAM Strategy & Programme Leadership:

Define and implement a unified global IAM strategy, balancing regional regulatory requirements, local IT landscapes, and global business priorities.

Deliver key IAM capabilities including:

Identity Governance & Administration (IGA)

Role-Based and Attribute-Based Access Control (RBAC/ABAC)

Privileged Access Management (PAM)

Multi-Factor Authentication (MFA)

Single Sign-On (SSO) across cloud and on-premise applications

JML (Joiner-Mover-Leaver) lifecycle automation

Coordinate global IAM programmes and initiatives across Americas, EMEA, and APAC regions.

Regulatory Alignment & Risk Management

Ensure IAM controls meet global compliance requirements in particular US.: FFIEC Cybersecurity Guidelines, GLBA, SOX, NYDFS Part 500

Lead periodic access reviews, privilege management initiatives, and control remediation efforts across jurisdictions.

Provide oversight for IAM risk assessments, audits, and regulator inquiries.

Stakeholder Management

Engage senior stakeholders across lines of business, IT, compliance, audit, and HR globally.

Act as a strategic advisor to executive management on IAM trends, threats, and control effectiveness.

Ensure alignment with enterprise risk appetite and business continuity requirements.

Operational Governance & Delivery Oversight

Set governance standards for IAM roles, policies, and access certification processes globally.

Oversee IAM project portfolios including vendor implementations (e.g., SailPoint, CyberArk, Okta, Azure AD, Oracle IDCS).

Implement global KPIs, SLAs, and metrics for IAM operations, reporting at regional and global levels.

Champion continuous improvement and threat-informed IAM evolution (e.g., adaptive access, AI-driven anomaly detection).

Team Management

Lead a globally distributed team of IAM engineers, analysts, project managers, and third-party vendors.

Promote knowledge-sharing, consistent delivery standards, and cybersecurity culture across regions.