About this role
Senior IAM Security Administration Manager overseeing mainframe access and governance, leading a team of mainframe security analysts, and ensuring compliant, least-privilege provisioning across complex environments.
Key Responsibilities
- Implement and maintain security administration and access policies using RACF, ACF2, or Top Secret
- Enforce least privilege and RBAC with MFA for privileged users
- Lead and mentor a team of mainframe security analysts
- Conduct regular access reviews and security assessments
- Align security controls with regulatory frameworks (SOX, UCAL, PwC applications)
Technical Overview
Core focus on RACF/ACF2/Top Secret on z/OS with RBAC and MFA; integrates PAM tools (CyberArk, HashiCorp, BeyondTrust) and SSO (ForgeRock); cloud experience with Azure, AWS, and Oracle Cloud; scripting (PowerShell, Python) for automation.
Ideal Candidate
The ideal candidate is a senior IAM security professional with 10+ years of IAM experience and deep mainframe RACF/ACF2/z/OS expertise, plus hands-on use of PAM tools and cloud platforms. They demonstrate strong leadership, governance, and automation skills to secure mainframe resources across a multi-location enterprise.
Must-Have Skills
10+ years of Identity and Access Management (IAM) experience with focus on access provisioning10+ years of RACFACF2 and zOS systemsDeep technical expertise in Mainframe RACFVanguard and Microsoft Azure AWSDB2 and VMSecureAbility to designimplementand manage access provisioning solutions enforcing least privilege and RBACIAM governance frameworksRBACand PAM tools (CyberArkHashiCorpBeyondTrust)Scripting and automation experience (PowerShellPython)Experience with cloud infrastructure security in hybrid environments (AzureAWSOracle Cloud)
Nice-to-Have Skills
Experience with agile/lean philosophiesStrong critical thinkingCollaboration across rolesSecure software design principlesAwareness of software vulnerabilities and secure design
Required Skills
RACFACF2Top Secretz/OSRBACMFAPrivileged Access ManagementCyberArkHashiCorpBeyondTrustForgeRock Single Sign-OnPowerShellPythonMicrosoft AzureAmazon Web ServicesOracle CloudDB2Vanguard Resource AdministratorVRAReport AnalyzerSOXCISSPCISMMicrosoft Certified: Identity and Access Administrator Associate
Hard Skills
RACFACF2Top Secretz/OSRBACMulti-factor authenticationPrivileged Access ManagementPowerShellPythonCyberArkHashiCorpBeyondTrustForgeRock Single Sign-On (SSO)Adaptive AuthenticationVanguard Resource Administrator (VRA)Report AnalyzerDB2VMSecureMicrosoft AzureAmazon Web ServicesOracle Cloud
Soft Skills
leadershipteam managementstakeholder managementcommunicationanalytical thinkingproblem-solvingcollaborationvendor management
Certifications
Required
CISSPCISMMicrosoft Certified: Identity and Access Administrator Associate
Keywords for Your Resume
identity and access managementiamracfacf2z/osrbacmfaprivileged access managementcyberarkhashicorpbeyondtrustforgerock single sign-onpowershellpythonazureamazon web servicesoracle clouddb2vanguard resource administratorvrareport analyzersoxcisspcismmicrosoft certified: identity and access administrator associateforgeRock Single Sign-On (SSO)
Deal Breakers
Lack of 10+ years IAM experience, No RACF/ACF2/z/OS experience, No experience with PAM tools (CyberArk, HashiCorp, BeyondTrust)
Get matched to jobs like this
Luna finds roles that fit your skills and career goals — no endless scrolling required.
Create a Free Profile