Global Cybersecurity IAM Director

Location US
Job ID
2022-30655
# of Openings
1
Job Category
Information Technology

 

Cyber.IMS.Software.Tech – People Working Computers – Secure

At UL, we know why we come to work.

Thousands of us around the world wake up every day with a common purpose: to make the world a safer, more secure and sustainable place. Science is in our DNA; we are endlessly curious and passionate about seeking and speaking the truth. We take delight in knowing that our work makes a meaningful contribution to society, and we are proud that our culture is centered on integrity, collaboration, inclusion and excellence. UL stands at the forefront of technological advancement, and we are continually challenged to find new ways to foster innovation and positive change. Satisfying? Yes. Exciting? Absolutely! 

What you’ll learn & achieve:

The Global Identity Access & Management Director, in conjunction with the chief information security officer (CISO) and organizational business units, is responsible for the planning, building, delivery and support of the IAM program. This role will provide direction and guidance to the development, specifications, and communications of the IAM application and architecture, as well as provide in-depth technical consultation to the business units and IT management and assist in developing plans and direction for the integration of information security requirements. 

 

The role is part of the department core leadership team and supports senior management with the development of department strategies, policies, and procedures. This role works with UL executives and senior business leaders to develop strategies and implement solutions that provide exceptional value and support the enterprise’s overall priorities and objectives.

 

JOB RESPONSIBILITIES

IAM Activities 

  • Facilitates the use of technology-based tools or methodologies to review, design and/or implement products and services to provide a strong IAM program that balances access with compliance and confidentiality 
  • Identifies and evaluates complex business and technology risks, internal controls that mitigate risks, and related opportunities for internal control improvement
  • Identifies the broader impact of current decisions related to user access, data access and information security 

Business Strategy 

  • Envisions business outcomes and facilitates alignment with them 
  • Aligns IAM processes across the organization, and develops and documents standards for organizational use 
  • Co-leads an IAM selection process, evaluates existing and emerging technologies and tools in the selection of an IAM service offering for the business units 
  • Understands business and information technology management processes and demonstrates advanced understanding of business processes, internal control risk management, IT controls and related standards 

Awareness, Training and Other Communications 

  • Fosters an understanding of the need for and application of the IAM system, and facilitates decision making with the business users 
  • Builds and nurtures positive working relationships with business units 
  • Identifies opportunities to improve engagement with the business units 

What makes you a great fit:

  • Bachelor’s degree required; advanced degree preferred (e.g., MBA, master’s degree in the sciences, or master’s degree in computer science, information technology) or at least 10 years equivalent work experience.
  • Professional security management certification is desirable, including: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or other similar credentials.
  • Knowledge and understanding of relevant legal and regulatory requirements, such as: Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry/Data Security Standard, GDPR, and PIPL.
  • Knowledge of information security risk management frameworks and compliance practices, including ISO 27001, SOC2 Type 2, and NIST 800-30
  • Sound knowledge of business management and a working knowledge of information security risk management and cybersecurity technologies.

Desired, but not Required:

  • Certification in one or more public cloud platforms, such as AWS, Azure Cloud or Google Cloud 
  • [5+] years of experience in technology implementation, including: [3+] years in developing, implementing, and architecting information systems, and [3+] years technical architecture experience integrating identity management, access management and access governance software into clients’ infrastructure and applications 

Technical and Business Experience 

  • Expert understanding of web security standards, architecture, web security best practices and application security best practices 
  • Identity management familiarity in one or more of the following areas: single sign-on (SSO), data management, identity federation, enterprise directory architecture and design, including directory schema, directory services, namespace and replication topology experience, resource provisioning, ITIL, and process integration. Identity and access governance includes role-based access control, access request and certification, user life cycle management processes, and organizational change management
  • Experience with administrating authentication technologies, such as Microsoft Active Directory/Windows authentication, OpenLDAP, Shibboleth, SimpleSAMLphp, Kerberos, OpenID Connect, OAuth, and federated identity management. 
  • Expert understanding of IAM concepts, including federation, authentication, authorization, access controls, access control attacks, identity and access provisioning life cycle. 

Knowledge and Skills 

  • Strong oral and written communication skills 
  • Ability to lead and manage a team independently 
  • Knowledge of agile development techniques and secure software development life cycle. 
  • Can translate security-related matters into business terms that are clear and understandable to executives 
  • Able to work with program management and procurement to ensure financial and delivery commitments are maintained 
  • Can deliver under tight deadlines 
  • Thinks outside the box when designing systems and solutions 
  • Able to navigate a demanding and high-pressure environment 
  • Can think strategically and incorporate business needs into technical roadmaps 
  • Strong problem-solving and trouble-shooting skills 
  • Can manage projects and execute on those objectives 

 

Personal Characteristics 

  • Has the ability to interface with, and gain the respect of, stakeholders at all levels and roles in the company 
  • Is a confident, energetic self-starter, with strong interpersonal skills 
  • Has good judgment, a sense of urgency and has demonstrated commitment to high standards of ethics, regulatory compliance, customer service and business integrity 
  • Self-motivated and possessing of a high sense of urgency and personal integrity 
  • Highest ethical standards and values  

What you’ll experience working at UL:

  • Mission: For UL, corporate and social responsibility isn’t new. Making the world a safer, more secure and sustainable place has been our business model for the last 128 years and is deeply engrained in everything we do.   
  • People: Ask any UL employee what they love most about working here, and you’ll almost always hear, “the people.” Going beyond what is possible is the standard at UL. We’re able to deliver the best because we employ the best.   
  • Interesting work: Every day is different for us here as we eagerly anticipate the next innovation that our customers create. We’re inspired to take on the challenge that will transform how people live, work and play. And as a global company, in many roles, you will get international experience working with colleagues around the world.   
  • Grow & Achieve: We learn, work and grow together with targeted development, reward and recognition programs as well as our very own UL University that offers extensive training programs for employees at all stages, including a technical training track for applicable roles.   
  • Total Rewards: Total Rewards: All employees at UL are eligible for bonus compensation. UL offers a generous 401k matching structure of up to 5% of eligible pay. Additionally, we invest an additional 4% into your retirement saving fund after your first year of continuous employment. We provide Healthcare Reimbursement Accounts and Health Savings Accounts that UL contributes to twice per year! Depending on your role, you can work with your manager on flexible working arrangements. We also provide employees with paid time off including vacation, holiday, sick and volunteer time off. 

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Connect With Us!

Not ready to apply, or can't find a relevant opportunity?
Connect with us to keep informed about the latest UL career opportunities, tailored to your interests.

If you wish to request reasonable accommodation at any time, please email our Talent Acquisition team at Talent.Acquisition@ul.com.

UL is an Equal Opportunity Employer: Female/Minority/disability/Protected Veteran/Sexual Orientation/Gender Identity

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status. If you'd like more information about your EEO rights as an applicant under the law, please review the EEO is the Law and EEO is the Law Supplement.

Please review the following additional documents:

UL EEO Policy

Pay Transparency Statement

E-Verify Poster (English)

Right to Work Poster (English)