Identity and Access Management Program Lead

Description:

This is a critical and high-impact role within our Information Security organization. It is ideal for an identity security professional ready to shape the future of enterprise-wide access at a leading financial services firm. As the IAM Program Lead, you will play a transformational role in building an enterprise-wide IAM program that directly influences cyber risk reduction, technology modernization, and Zero Trust adoption. This is a unique opportunity to:

• Own and build a next-generation IAM program with strong leadership backing and multi-year investment.
• Lead a strategic transformation including IGA modernization, PAM evolution, advanced authentication, and identity governance maturity.
• Drive an AI-assisted identity lifecycle, enabling frictionless access with strong security controls.
• Work cross-functionally with cybersecurity leadership, technology teams, HR, Audit, and business partners.
• Grow and lead a team as the identity program expands into a Center of Excellence.

If you thrive in environments where you can design, influence, lead, and innovate—while making measurable impact—this role offers a meaningful and career-defining opportunity.

Position Summary:

The IAM Program Lead is responsible for developing, implementing, and maturing the firm's enterprise-wide Identity and Access Management program. This leader will define the future-state identity vision, oversee daily operations, modernize identity technologies, and ensure that IAM capabilities align with regulatory expectations and business needs.

Reporting to the Co-Chief Information Security Officer, the IAM Program Lead will shape strategy, own IAM platforms, and play a visible role advising technology and business leaders on identity security best practices.

If you are passionate about identity security and want to make a lasting impact in a highly regulated security-first environment, this role gives you the opportunity to do so.

Key Responsibilities:

Strategic Leadership

• Define and drive the multi-year IAM strategy, roadmap, and maturity model.
• Lead modernization initiatives, including passwordless authentication, role-based/attribute-based access controls, entitlements governance.
• Serve as the primary advisor to leadership on identity security trends, risks, and future-state direction.

Program & People Leadership

• Oversee the development of an IAM Center of Excellence as the program scales.
• Lead and mentor IAM analysts and practitioners, fostering team growth and professional development.
• Communicate program performance, risks, and achievements to executive leadership and governance committees.

Operational Oversight

• Oversee end-to-end identity lifecycle processes: provisioning, deprovisioning, access requests, reviews, and exceptions.
• Ensure consistent, secure application of identity standards across the enterprise.
• Partner with Cybersecurity Operations on identity-related incidents, access anomalies, and behavior analytics investigations.

Stakeholder Engagement & Education

• Partner with HR, Technology, Cybersecurity, and Business Units to align identity services with enterprise priorities.
• Lead awareness initiatives that improve identity hygiene and secure access practices across the firm.
• Act as a key influencer driving adoption of IAM best practices, policies, and controls.

Qualifications:

• Bachelors' degree and 6–8 years of experience in IAM, cybersecurity, or IT security disciplines.
• Experience in financial services, insurance, pharmaceutical or other highly regulated environments.
• 3–5+ years of leadership or program management experience within identity security.
• Expertise in identity lifecycle management, identity governance, authentication, directory services, and Zero Trust principles.
• Experience with major IGA and PAM platforms (e.g., SailPoint, Saviynt, Okta, Azure AD, Delinea, CyberArk).
• Experience managing identity integrations across cloud, hybrid, and on-premises environments.
• Familiarity with AI-assisted IAM workflows, behavioral analytics, and modern identity orchestration tools.
• Strong communication, presentation, and stakeholder management skills; ability to engage technical and non-technical partners.
• Demonstrated success leading cross-functional IAM initiatives and improving identity program maturity.

Preferred:

• Professional certifications such as CISSP, CISM, GIAC, or vendor-specific identity certifications.
• Knowledge of regulatory frameworks including SOX, GLBA, NYDFS, NIST CSF, and ISO 27001.
• Experience with cloud identity (Azure, AWS, GCP), federation technologies, and DevSecOps/CI-CD integrations.

The base salary range for this position is $200,000 - $230,000. Actual salaries will vary and will be based on various factors, such as skills, experience, and qualification for the role. In addition, this position may be eligible for a discretionary incentive based on individual and company performance. Eligible employees may participate in a 401 (k) program with a company profit sharing contribution, medical, dental, vision, life insurance and disability coverage and paid holidays, vacation, and sick days.

About Bessemer Trust:

• Bessemer Trust is a family office, overseeing more than $200 billion in assets for over 3,100 individuals and families of substantial wealth. Its more than 1,200 employees are singularly focused on private wealth management — disciplined investment management, sophisticated wealth planning, comprehensive family office services, and highly personalized client service.
• Established in 1907 as the family office for Annie and Henry Phipps, Bessemer Trust is in its seventh generation of ownership by the Phipps family. As a self-made entrepreneur, Henry Phipps was a founding partner and chief financial officer of Carnegie Steel.
• Bessemer Trust retains its original focus as a privately owned and independent wealth manager deeply committed to its mission of providing peace of mind to its clients. Bessemer's adherence to putting clients' interests first, fiduciary mindset, and highly collaborative culture are at the heart of everything the firm does.

Key Facts:

• For more than 118 years, Bessemer Trust has operated continuously in a single line of business, independently owned by one family.
• Headquartered in New York's Rockefeller Center, Bessemer Trust has 22 offices in total. Woodbridge, NJ, is one of the firm's largest offices, which hosts a wide range of technology and operations professionals. In addition to its sizable presence in New York and Woodbridge, the firm provides client service through offices in Atlanta, Boston, Chicago, Dallas, Delaware, Denver, Garden City, Grand Cayman, Greenwich, Houston, Los Angeles, Miami, Naples, Nevada, Palm Beach, San Diego, San Francisco, Seattle, Stuart, and Washington, D.C.
• To watch a video about Bessemer Trust's history, click here.
• To learn more about Bessemer Trust, click here.

About Our Employee Rewards and Benefits:

• We provide exceptional rewards and benefits that are among the best in the industry, giving our people access to a wide range of options, including:
• Competitive base salary plus discretionary annual bonus for select positions
• A 401(k) plan with a generous annual profit-sharing contribution
• Personalized development and career opportunities, including tuition reimbursement support
• Comprehensive medical, dental, and vision plans with zero contributions for employee coverage
• Employee assistance (EAP) and wellness programs
• Hybrid work environment: 60% in office, 40% remote for most positions
• Paid time off and paid parental leave
• Employer-paid life insurance and short- and long-term disability coverage
• Legal services and financial wellness plans at no cost to employees

Bessemer Trust is committed to creating a diverse and inclusive environment and is proud to be an equal opportunity employer. We encourage candidates of diverse backgrounds to apply.