The IAM Programme Manager is accountable for the strategic planning governance and delivery of the organisations Identity Access Management IAM programme This role oversees multiple IAM workstreamstechnology process governance and organisational changeto ensure secure compliant and efficient identity services across the enterpriseThe Programme Manager will drive alignment between business security architecture and operational teams ensuring IAM capabilities are delivered in line with regulatory requirements security standards and business outcomesKey Responsibilities:Programme Leadership GovernanceLead the endtoend IAM programme ensuring delivery of agreed outcomes capabilities and benefitsEstablish programme governance steering groups reporting structures and decisionmaking frameworksMaintain programmelevel plans roadmaps RAID logs dependency maps and financial trackingEnsure alignment with enterprise security strategy architecture principles and PMO standardsStrategic Planning Road mappingDevelop and maintain the IAM strategy and multiyear roadmap covering identity lifecycle access governance authentication authorisation privileged access and federationPrioritise workstreams based on risk business value and organisational readinessIdentify capability gaps and propose investment cases for new IAM tools or enhancementsStakeholder Executive EngagementAct as the primary point of contact for senior stakeholders including CISO CIO HR Operations and AuditCommunicate programme progress risks and decisions clearly and confidently to executive leadershipManage expectations across business units and ensure alignment with organisational change initiativesDelivery OversightOversee delivery of IAM workstreams such asIdentity Governance Administration IGAJoinerMoverLeaver automationAccess request approval workflowsAccess certification role miningSSOMFA enhancementsPrivileged Access Management PAMEnsure technical teams vendors and integrators deliver to scope quality and timelinesManage interdependencies with HR ITSM security operations and application teamsVendor Partner ManagementManage relationships with IAM vendors and implementation partners eg SailPoint Microsoft CyberArk DTS partnersOversee SOWs deliverables commercials and performance of thirdparty suppliersEnsure clear RACI and accountability across internal and external teamsRisk Compliance SecurityEnsure IAM capabilities meet regulatory audit and compliance requirements eg GDPR CAF eCAF ISO 27001 NIS2Identify and manage programmelevel risks issues and security implicationsEnsure IAM controls are embedded into BAU processes and operational teamsChange Management AdoptionOversee organisational change activities including training communications process updates and stakeholder engagementEnsure new IAM capabilities are adopted effectively and sustainably across the businessDrive cultural change towards least privilege zero trust and strong identity hygieneEssential Skills Experience:Proven experience delivering largescale IAM or cybersecurity programmes in complex organisationsStrong understanding of IAM domains includingIdentity lifecycle managementAccess governance certificationRBACABACSSO MFA federationPrivileged accessDirectory servicesExperience with IAM platforms such as SailPoint particularly but also Azure AD Okta CyberArk or similarStrong programme management skills road mapping budgeting governance reportingExcellent stakeholder management and communication skills including at executive levelExperience managing multivendor delivery environmentsStrong understanding of regulatory and audit requirements related to identity and accessDesirable Skills:Experience in regulated or critical infrastructure sectors utilities finance telecoms governmentBackground in security architecture or technical IAM deliveryExperience with cloud identity models and Zero Trust frameworksFamiliarity with HR systems and identity data flowsExperience leading role mining access modelling or identity governance maturity assessments
Job Title
Security Program Manager