Position Details

Salary $160K – $206K USD / year

Type Full-Time

Experience mid

Exp. Years 10+ years

Education Bachelor's degree in computer science, Information Security, or a related field; advanced degree or certifications preferred

Category Cybersecurity

About this role

Senior IAM Specialist leading access provisioning and governance across enterprise platforms, with emphasis on mainframe and cloud security, RBAC and PAM control, and automation.

Key Responsibilities

Lead design and ongoing management of access provisioning across enterprise platforms
Enforce least privileged access and RBAC
Develop access control policies and group structures
Automate provisioning/de-provisioning workflows
Conduct periodic access reviews and certifications

Technical Overview

Hands-on with RACF/ACF2/z/OS mainframe, Azure/AWS cloud security, SSO platforms (ForgeRock), PAM tools (CyberArk, HashiCorp, BeyondTrust), and IAM governance; automation via scripting; HR integration and audits.

Ideal Candidate

The ideal candidate is a senior IAM engineer with 10+ years of IAM experience across mainframe (RACF/ACF2/z/OS) and cloud (Azure/AWS), plus hands-on with PAM tooling (CyberArk, BeyondTrust, HashiCorp) and SSO platforms (ForgeRock). Strong governance, automation, and cross-functional leadership are required to drive provisioning improvements and risk reduction.

Must-Have Skills

10+ years IAM10+ years RACF/ACF2 and z/OSDeep expertise in mainframe securityRBAC and PAM governanceAutomation of provisioning workflowsHR integration experienceCloud security in hybrid environments (Azure/AWS)SailPoint or Saviynt governance platformsForgeRock SSOPowerShell or Python scripting

Nice-to-Have Skills

Agile/LeanPhilosophiesSecurity governance frameworksStrong stakeholder communicationScripting automation

Tools & Platforms

Vanguard Resource Administrator (VRA)Report AnalyzerForgeRock SSOCyberArkHashiCorpBeyondTrustSailPointSaviynt

Required Skills

Identity and Access ManagementRACFACF2z/OSRBACPAMCyberArkHashiCorpBeyondTrustForgeRock SSOAdaptive AuthenticationSailPointSaviyntPowerShellPythonMicrosoft AzureAmazon Web ServicesOracle CloudVRAReport Analyzer

Hard Skills

RACFACF2Top Secretz/OSRBACMFAPAM (Privileged Access Management)CyberArkHashiCorpBeyondTrustForgeRock SSOAdaptive AuthenticationSailPointSaviyntPowerShellPythonMicrosoft AzureAmazon Web ServicesOracle CloudVanguard Resource Administrator (VRA)Report AnalyzerDB2VMSecure

Soft Skills

leadershipmentoringcommunicationstakeholder managementproblem-solvinganalytical thinking

Certifications

Preferred

CISSPCISMMicrosoft Certified: Identity and Access Administrator Associate

Industry & Role

Industry Banking

Job Function Lead IAM provisioning and governance across hybrid enterprise environments for banking.

Role Subtype Identity & Access Management Engineer

Tech Domains Active Directory, Microsoft Azure, Amazon Web Services, Oracle, SQL / PostgreSQL, Windows Server, Linux, ServiceNow

Keywords for Your Resume

Identity and Access ManagementIAMActive DirectoryMicrosoft AzureAmazon Web ServicesMainframeOracleSQL ServerRBACPAMCyberArkHashiCorpBeyondTrustForgeRock SSOAdaptive AuthenticationSailPointSaviyntSSOGovernanceentitlement reviewsautomationPowerShellPython

Deal Breakers

Less than 10 years IAM experience, No RACF/ACF2 or z/OS mainframe experience, Lack of RBAC/PAM and governance experience

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile

Identity and Access Management (IAM) Security Administration Sr Manager (RACF exp. required)

Get matched to jobs like this