Company DescriptionFAB, the UAE's largest bank and one of the world's most secure financial institutions, is dedicated to creating value for its employees, customers, shareholders, and communities. Through innovation, agility, and differentiation, FAB is committed to fostering growth. We are looking for top talent and your success is our success. Accelerate your growth as you help us reach our goals and advance your career. Be ready to make your mark a top company, in an exciting and dynamic industry GROUP FUNCTION AND BUSINESS AREA PURPOSEThe Group Risk Management is responsible for measuring risks that the Bank may face in the course of its operations, developing corporate risk management policies and ensuring that risks remain within the limits in which the Bank prefers to bear such risks in line with its own strategic targets and risk appetite. Within the Risk Management Unit, Operational Risk is responsible for overall management of Operational Risk within bank's defined risk appetite and associated risk limits. Within Operational Risk, the Technology Risk is responsible for managing risk related to Information Technology.ROLE PURPOSE & KEY PRIORITIESIdentity and access management (IAM) is a key Information security function that enables the right bank's individuals to access the right resources at the right times for the right reasons. IAM addresses the mission-critical need to ensure appropriate access to bank's applications across increasingly heterogeneous technology environments, and to meet increasingly rigorous compliance requirements. This security practice is a crucial undertaking for the Bank as it is business-aligned, and it requires operational skills, not just technical expertise. This role will be responsible for supporting the planning, design and operation of enterprise-level identity and access management (IAM) capabilities within Enterprise Information Protection. This role will support the definition and deployment of IAM capabilities and processes with a focus on Classified: Internal\\ FAB Internal cloud-based identity and access management services, including cloud capabilities such as federated services and privileged access management.KEY ACCOUNTABILITIES

• Collaborate with leadership, third party vendors, and various technical teams in the bank to translate business requirements into technical IAM requirements.

• Perform daily health checks of IAM platform to ensure service is operating at optimum levels; generate daily, weekly and monthly reports to measure the IAM service against key performance indicators

• Accountable for the development and maintenance of system configurations and process design documentation, operating procedures and application integration documentation; recommend and participate in development, testing, implementation, and support of all enhancements to the systems, services and technologies used by the IAM platform.

• Participate in application architecture and design review working directly with internal application houses and business owners on the integration of their applications into the IAM platform; maintain and assess operational requirements and service issues for improvement opportunities; as well as help to ensure production implementation and maintenance activities are performed as required

• Provide senior level leadership (document, develop, plan, execute) of Active Directory Architecture / Operations and performance controls.

• Provide senior technical expertise when necessary to maintain the Active Directory environment.

• Provide leadership for a team of skilled SMEs in resolution of complex Active Directory service issues.

• Clearly communicate to key stakeholders including senior leadership and internal/external audit teams.

• Promote and work with team members to implement process improvement initiatives.

• Manage cross-functional teams, providing direction and leadership oversight in a matrix organization. Conducting operational and development support for deployed and upcoming IAM tools and technologies.

• Designing new user analytics, integrating PAM with IAM solutions, SoD policies, and RBAC models according to business needs across on-prem and cloud infrastructures.

• Plan and manage IAM budgets and forecasts, as well as reporting dashboards that align with service delivery guidelines

• Participate in IT and Cloud security strategy sessions to support capability delivery functions Create and/or partner with Automation stakeholders as appropriate.

• Design and manage the operation of services such as Privileged Identity Management and Conditional Access Policies

• Partner to drive the utilization of multifactor authentication technologies Consult on cloud-native RBAC roles and their alignment to business cases

• Consult with application development teams on the utilization of cloud-native services accounts, such as those deployed through automated pipelines

• Partner with Security Operations team to drive monitoring of anomalous access

• Support Cloud Security Capability Management team to identify improvement areas

• Support the integration of IT Service Management tools to drive operational process transformation

• Lead the IDM Operations team handling user provisioning based on approved access request on banking applications/systems for bank staffs with 24*7 support as per standard operating procedure.

• Demonstrate a deep understanding of risk and change management, security policies and controls, user account life-cycle management, roles based access, access management.

• Relationship management with internal and external stakeholders including auditors

QualificationsKnowledge & Experience:

• Knowledge of ISO27001, NESA, GDPR, PCI DSS, Central bank regulations and other relevant information security standards and the requirements necessary to meet them from IAM perspective.

• Must have 10+ years of technical Information security experience

• 4+ years of experience consulting or operating IAM solutions for cloud service providers (Microsoft Azure or AWS Cloud Platform)

• A solid understanding of IAM concepts and key IAM standards.

• Hands-on experience developing and deploying large-scale enterprise Identity & Access Management solutions; knowledge of enterprise security tools, including identity management, access control, security operations, and management tools; and experience integrating applications into shared services framework with focus on security access control products, system authentication methodologies, and Single Sign on.

• Expert knowledge of Information Security Domains and should be certified (Such as CISA, CISSP, CISM or any other relevant security certification)

• Experience in managing international security or regional security teams

• Professional level cloud engineering certifications

• Hands on experience operating, monitoring and troubleshooting IAM services in medium to large cloud environments

• Knowledge of IAM software and systems, such as OIM, SailPoint, Saviynt or One Identity. Experience in handling internal and external auditors

• Well-grounded technical know-how in IT Security (network, OS, databases, web technologies, application development)

Skills:

• B.Tech or Bachelor's in Information Technology, Security or related degree

• Leadership skills and Team Management

• Demonstrable experience of strategic and tactical thinking and working in information sensitive business(s)

• Highly developed communication skills, both verbal and written.

• Ability to communicate complex concepts clearly, both verbally and in writing

• Ability to approach problems from an IT security perspective coupled with sound business know-how.

• Proficiency in word processing, presentation and reporting with trend analysis.

• High degree of empathy, assertiveness, and persuasiveness and potential to lead team

First Abu Dhabi Bank