IAM Manager

The Company:

NorthMark Strategies is a leading investment firm, combining capital, innovation, and engineering to drive long-term value. From operating complex businesses to backing breakthrough technologies, our mission is to build enduring businesses. Our team combines intelligent risk-taking, operational excellence, exceptional talent, and world-class computing capacity to create shareholder value.

Our company offers a dynamic environment where individuals have the freedom to lead companies toward bold achievements by embracing innovation, leveraging technology, and fostering differentiated business strategies. Our values are Integrity, Ability, and Energy, and the company aims to hire individuals who possess those qualities.

At NorthMark Strategies, we believe the future isn't something to hope for, it's something to build. We don't just invest, we create. Bringing together strategic insight and technical horsepower to deliver outcomes that endure.

The Position:
We are seeking a highly skilled and experienced Manager and IAM Architect to join our team. The successful candidate will be responsible for designing, implementing, and managing our Identity and Access Management (IAM) systems. This role requires a deep understanding of IAM principles, strong technical skills, and the ability to work collaboratively with various departments.

Responsibilities:

• Supervise a team of Identity and Access Management (IAM) engineers working in Microsoft 365, Azure, and AWS platforms.
• Design and implement IAM solutions, including Entra ID, AWS, Saviynt, and other related technologies.
• Manage and maintain IAM systems to ensure security and compliance.
• Collaborate with IT and business teams to develop and enforce IAM policies and procedures.
• Lead IAM projects, including the integration of new applications and systems.
• Provide technical guidance and support to the IAM team and other stakeholders.
• Conduct regular audits and assessments of IAM systems to identify and mitigate risks.
• Develop and maintain documentation for IAM processes and procedures.
• Stay up to date with industry trends and best practices in IAM.

Requirements:

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Minimum of 5 years of experience in IAM, with a focus on Entra ID and Saviynt or other Identity Governance solutions.
• Strong understanding of IAM principles, including authentication, authorization, and identity lifecycle management.
• Strong understanding of AWS and Azure security.
• Experience with IAM tools and technologies, such as Entra ID, AWS IAM, Saviynt, and Active Directory.
• Experience managing and integrating cloud PAM solutions with broader IAM systems.
• Excellent problem-solving skills and attention to detail.
• Strong communication and interpersonal skills.
• Ability to work independently and as part of a team.
• Relevant certifications (e.g., CISSP, CISM, or similar) are a plus.
• Experience with cloud-based IAM solutions and integrations including experience implementing PAM solutions to manage privileged user accounts, both on-premises and cloud environments, specifically AWS and Azure.
• Knowledge of security frameworks and compliance standards (e.g., NIST, ISO 27001)
• Familiarity with scripting and automation tools (e.g., PowerShell, Python, Terraform)
• Experience with project management and leading IAM initiatives.
• Experience implementing AWS IAM strategy via CICD.
• Competent in the logical configuration of AWS Identity cloud services.
• Federation & SSO: Manage integration with identity providers (Azure AD) and AWS SSO/IAM Identity Center.
• Monitoring & Auditing: Implement monitoring tools (e.g., AWS Config, CloudTrail, and IAM Access Analyzer to track IAM activity and enforce compliance.
• Governance: Conduct regular access reviews, manage approval workflows, and document IAM policies and procedures.
• Incident Response: Act as the escalation point for IAM-related security incidents and lead remediation efforts.
• Strong knowledge of AWS IAM, SCPs, and permissions boundaries.
• Experience with AWS SSO, federation (SAML), and MFA implementation.
• Proficiency in IaC tools like Terraform / CloudFormation.
• Experience with multi-account AWS Organizations.
• Experience managing and integrating cloud PAM solutions with broader IAM systems

It is impossible to list every requirement for, or responsibility of, any position. Similarly, we cannot identify all the skills a position may require since job responsibilities and the Company's needs may change over time. Therefore, the above job description is not comprehensive or exhaustive. The Company reserves the right to adjust, add to or eliminate any aspect of the above description. The Company also retains the right to require all employees to undertake additional or different job responsibilities when necessary to meet business needs.

Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.

Benefits & Perks:

• Company-Paid Benefits: 100% Employer-Paid Medical in our High Deductible Health Plan, Dental and Vision benefits for employees and their families, 16 weeks of Paid Parental Leave, Employee Assistance Program, Life insurance, Short-Term Disability and Long-Term Disability
• 401(k): Company will match 100% of your contributions up to 6%
• Optional Employee-Paid Benefits: Medical insurance in our PPO plan and a variety of other benefits such as Health Savings Accounts (with Company Contribution.), Flexible Spending Accounts, Supplemental Life Insurance, Wellhub and more.
• Time Off: 25 days of Paid Time Off plus 12 company holidays

EQUAL OPPORTUNITY EMPLOYER

NORTHMARK STRATEGIES LLC IS AN EQUAL EMPLOYMENT OPPORTUNITY EMPLOYER. THE COMPANY'S POLICY IS NOT TO DISCRIMINATE AGAINST ANY APPLICANT OR EMPLOYEE BASED ON RACE, COLOR, RELIGION, NATIONAL ORIGIN, GENDER, AGE, SEXUAL ORIENTATION, GENDER IDENTITY OR EXPRESSION, MARITAL STATUS, MENTAL OR PHYSICAL DISABILITY, AND GENETIC INFORMATION, OR ANY OTHER BASIS PROTECTED BY APPLICABLE LAW. THE FIRM ALSO PROHIBITS HARASSMENT OF APPLICANTS OR EMPLOYEES BASED ON ANY OF THESE PROTECTED CATEGORIES.