Technology Governance Manager – IAM Specialist at Equity Bank Kenya

Job Description

Role Description:

The IAM specialist is responsible for overseeing and ensuring the Governance of Identity and Access Management processes within the Organization.

He/she will define and implement an IAM Governance framework and initiatives to ensure continued effectiveness of the initiatives.

Role Purpose:   

Support in development and maintenance of a multi-year IAM strategic roadmap aligned with the organization’s business goals, digital transformation initiatives, and risk appetite.
Develop and implement IAM policies, procedures and frameworks that align with regulatory requirements and industry standards
Manage the access control lifecycle ensuring that user access to systems and data is appropriately granted, monitoring and revoked based on the principle of least privilege
Implement controls to prevent privilege escalation and unauthorized access to sensitive data.
Collaborate with various stakeholders to assess IAM risks, monitor compliance with access policies.
Conduct regular audits to identify vulnerabilities or inefficiencies in the IAM process and follow-up remediation efforts.
Adapt IAM policies, procedures, and systems to ensure ongoing compliance with all applicable regulations.
Maintain a comprehensive understanding of the legal and regulatory requirements impacting IAM both local and industry best practice.
Provide training and guidance on IAM best practices to various stakeholders,
Track the effectiveness of IAM governance initiatives and prepare reports for senior management
Ensure that IAM processes support the organizations security posture and business objectives while protecting sensitive information.
Develop and maintain a detailed compliance matrix that maps specific IAM policies and controls to the requirements of relevant regulations.
Support in the development of procedures for investigating and responding to IAM-related security incidents, such as unauthorized access attempts or privilege escalations.
Assess the security and compliance posture of IAM for vendors to ensure that they meet the organization’s requirements and regulatory obligations.
Define and track key IAM metrics that demonstrate the effectiveness of IAM controls and identify areas for improvement

Qualifications

Knowledge and Experience 

Bachelor’s Degree in Information Technology, Information Security, Engineering or similar area of study
Hold relevant industry certifications (ISO 27001, CRISC, CISM, CISSP, ITIL etc.)
Minimum 7 years of experience in Information Technology with at least 3 years of active involvement in IAM initiatives
Knowledge of Identity and Access Management concepts including RBAC, Privileged Access, Zero Trust Frameworks.
Experience with industry standard frameworks (ISO 27000, ITIL, NIST, PCI DSS).
Ability to effectively provide briefings to business and technical stakeholders on Identity & Access Management performance.

Key Critical Competencies & Skills 

Excellent in preparation of reports, dashboards and documentation
Excellent leadership, communication and problem-solving skills
Ability to handle high pressure situations and complex projects with key stakeholders.
Good analytical skills; ability to provide intuitive reports & dashboards from a variety of data sources. 
Proficiency in analysis and presentations skills using MS Excel, MS Word and MS PowerPoint.