Manager of Identity Access Management

Job Summary  Veritex Community Bank is seeking an experienced Identity and Access Management (IAM) Manager to lead our IAM program, ensuring the security, compliance, and efficiency of user access across banking and financial platforms. This position will oversee a small team of IAM Analysts and will be responsible fordeveloping, implementing, and maintaining IAM policies, Role-Based Access Control (RBAC) frameworks, and governance controls to meet regulatory and business requirements. The IAM Manager will play a critical role in SOC audit readiness, managing IAM processes, governance, and integrations across various financial and enterprise platforms, including legacy systems that may not have direct identity provider support.    Key Responsibilities  IAM Program Leadership & Strategy  Lead the IAM team in managing user provisioning, deprovisioning, and lifecycle management across on-premiseand cloud environments.  Define and implement Role-Based Access Control (RBAC) models, ensuring alignment with security best practices and compliance requirements.  Drive IAM integration with financial platforms such as Jack Henry, FiServ, and others, including solutions for legacy applications that lack direct integration with Identity Providers.  Develop and enforce IAM policies, standards, and procedures to support regulatory requirements (SOC, SOX, GLBA).  Ensure IAM controls align with Zero Trust security principles and industry standards such as NIST 800-53 and CIS Benchmarks.  Access Management & Security  Oversee the administration and governance of Privileged Access Management (PAM) solutions such as CyberArk, ensuring secure access to critical banking infrastructure.  Manage IAM platforms such as SailPoint, supporting automated access provisioning, certification campaigns, and identity governance.  Partner with security and compliance teams to support SOC audits, access reviews, and regulatory reporting.  Implement Multi-Factor Authentication (MFA), Conditional Access Policies, and other identity security measures to strengthen access security.  IAM Operations & Process Optimization  Lead initiatives to modernize IAM processes, including automation of access requests and approvals.  Establish identity lifecycle processes for employees, contractors, and third-party vendors to ensure appropriate accesscontrols.  Define and implement strategies for IAM integration with legacy applications, leveragingAPI-based, agent-based, or manual workflows where direct integration is not feasible.  Monitor IAM system health, ensuring high availability, scalability, and compliance with internal security policies.  ServiceNow Integration & Workflow Automation  Oversee IAM processes within ServiceNow, ensuring effective management of access requests, approvals, and compliance tracking.  Develop and maintain ServiceNow workflows for automated provisioning, role assignments, and access reviews.  Leverage ServiceNow reporting and analytics to provide visibility into IAM operations, ensuring compliance with SOC, SOX, and GLBA regulations.  Audit, Compliance, and Risk Management  Prepare and maintaindocumentation for SOC audits, regulatory exams, and internal risk assessments.  Partner with internal audit teams and external regulators to ensure IAM processes align with GLBA, SOX, and FFIEC guidelines.  Perform regular access reviews, entitlement audits, and least privilege enforcement to minimize risk exposure.  Lead remediation efforts for IAM-related audit findings, ensuring timelyand effective resolution of identifiedrisks.  Leadership & Team Development  Manage and mentor a team of IAM Analysts, providing guidance on best practices, project execution, and career development.  Develop training programs for IAM team members and stakeholders to enhance awareness of identity security risks and best practices.  Collaborate with IT leadership to drive continuous improvements in IAM governance and security architecture.  Qualifications & Experience  Bachelor’s degree in Information Security, Computer Science, or a related field (or equivalent work experience).  7 years of IAM experience, including leadership roles in financial services or highly regulated industries.  Strong expertisein RBAC implementation, especially within legacy banking platforms that lack direct IAM integrations.  Experienceworking with IAM and Privileged Access Management (PAM) solutions, such as SailPoint, CyberArk, and Microsoft Identity Manager (MIM).  Hands-on experience managing IAM for Jack Henry, FiServ, and other financial platforms.  Deep knowledge of SOC audits, compliance frameworks (NIST, CIS, FFIEC, SOX, GLBA), and IAM governance.  Strong understanding of Active Directory, Azure AD, SAML, OAuth, and modern authentication mechanisms.  Experience implementing identity automation and self-service IAM tools to enhance operational efficiency.  Excellent problem-solving skills, with the ability to analyze complex access management challenges and design secure, scalable solutions.  Strong leadership and communication skills, with the ability to engage stakeholders across IT, security, compliance, and business units.  Preferred Certifications (Not Required, but a Plus)  Certified Information Systems Security Professional (CISSP)  Certified Identity and Access Manager (CIAM)  Certified Information Systems Auditor (CISA)  SailPoint Certified IdentityNowEngineer  CyberArk Defender or Sentry Certification  Work Environment & Schedule  Hybrid role: 4 days in-office, 1 flex day per week.  May require occasional after-hours support for IAM system changes and security incidents.  Minimal travel requiredfor audits, training, and vendor engagements.