IAM Access & PAM Manager

University of California, San Francisco • san francisco, ca, us • 8h ago

Job Summary

The IAM Access & Privileged Access Management (PAM) Manager will oversee the University's initiatives in managing digital identities and ensuring appropriate access controls. They will collaborate closely with cybersecurity, audit, and compliance teams to define policies, standards, user roles, and procedures related to PAM and access control. The Manager will serve as an advocate and leader, reinforcing the necessity of managing privileged access across the enterprise through hands-on support activities. They will be responsible for coordinating the creation and maintenance of University IDs for faculty, staff, and students, as well as managing the IAM infrastructure to ensure secure and efficient access to information systems and resources. This role will involve collaborating with various UCSF departments (academic, medical, research, and administrative), implementing best practices, and leveraging technologies for identity lifecycle management. Additionally, they will collaborate with Security Operations to address security incidents related to identity and access, striving for continuous process improvements.

The Manager’s primary responsibilities include monitoring, detecting, and safeguarding the security of data, systems, and networks. This role involves planning, configuring, designing, developing, implementing, and maintaining tools, systems, and procedures to uphold the integrity, reliability, and security of data, systems, and networks.

In this role, the Manager will receive assignments in the form of goals and determine how to use resources to meet IT compliance, privacy, and security goals. In addition, they will review and approve recommendations for functional programs and provide guidance to subordinates to achieve goals in accordance with established policies.

The IAM Access & PAM Manager will positively impact UCSF’s operations and culture by ensuring UCSF’s IT infrastructure is operable, secure, efficient, and effective in service of the University’s mission. This team member will advance the University’s mission by delivering exceptional information technology services comprehensively and consistently across customers and stakeholders. This role will execute UCSF’s vision while modeling UCSF’s culture and values.

The final salary and offer components are subject to additional approvals based on UC policy.

Your placement within the salary range is dependent on a number of factors including your work experience and internal equity within this position classification at UCSF. For positions that are represented by a labor union, placement within the salary range will be guided by the rules in the collective bargaining agreement.

The salary range for this position is $159,000 - $238,500 (Annual Rate).

To learn more about the benefits of working at UCSF, including total compensation, please visit: https://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html

Department Description

University of California, San Francisco (UCSF) is distinguished as a leading academic healthcare organization, home to groundbreaking discoveries, world-class education, and exceptional healthcare services. Infrastructure Services (IS) is the backbone of the technological infrastructure, assuring the technical services that enable the academic, medical, and research missions of the organization. Beyond a focus on maintaining systems and resolving issues, we are committed to nurturing the potential of our team members and empowering them to excel. UCSF Infrastructure Services provides 24x7 support to the University community, upholding the highest level of responsiveness and reliability at all times for our customers. IS values innovation and excellence in ensuring secure and efficient IT services, regardless of the hour or complexity of the issue.

The Identity and Access Management Services team within Infrastructure Services protects UCSF’s resources through access management, including accounts, authentication, access, and role-based provisioning at the enterprise level. This team implements rigorous regulation of UCSF data through granular access control and the auditing of all UCSF assets on premises and in the cloud. By ensuring information security at UCSF, the IAM Services team enables the academic, medical, and research mission of UCSF.

Required Qualifications

Bachelor’s degree or equivalent combination of experience in one or more of the following fields: information technology, cybersecurity, computer science, public administration, business administration, communications and/or equivalent experience/training.
5 – 7+ years’ Experience working in one or more of the following fields: IT, cybersecurity, CS, management, higher education, or a related field.
3 – 5+ years’ Experience leading teams in a management or leadership role, particularly in an IAM fast-paced, service-oriented environment.
Experience with Delinea solutions.
Demonstrated experience managing staff, customers, and administration while supporting Privileged Access Management (PAM).
Advanced expertise in authentication infrastructure including troubleshooting skills.
Demonstrated experience with Linux, Windows, and Unix server technology.
Advanced knowledge of directory services (e.g., AD, LDAP), Single Sign-On (SSO) technologies, multi-factor authentication (MFA) solutions, role-based access control (RBAC), identity governance and administration (IGA), and privileged access management (PAM).
Demonstrated understanding of privacy and security regulations and best practices, including federal and state laws, as well as extensive knowledge about a wide range of privacy/security regulations relevant to higher education and patient information.
Demonstrated experience developing and executing IAM strategies aligned with organizational goals and objectives. Experience in the management of ongoing technology infrastructure acquisition and expansion, including the identification and integration of suitable emerging technologies.
Demonstrated interpersonal skills to communicate with both technical and non-technical personnel at various levels in organization.
Excellent oral and written communication skills, including the ability to effectively present technical topics to individuals and groups with potentially varied levels of technical sophistication.
Demonstrated ability to change the thinking of, or gain acceptance from, others in sensitive situations, without damage to the relationship.
Experienced in leading change management activities and managing their impact across the unit or department.
Broad knowledge of subject area sufficient for strategic planning, technology assessment and direction. Experience of analyzing buy vs. build procurement.
Demonstrated leadership skills, including mentorship, negotiation, and change management. Motivates and inspires team members. Models strong customer service skills. Able to communicate work assignments to medium-sized teams.
Advanced project management skills with demonstrated experience delegating responsibility, tracking project progress, supervising others, and advising teams on competing priorities. Significant experience working in a project-based environment using leading project management practices including schedule management, status reporting, and communication of project risks and issues.
Extensive experience solving technical and non-technical problems; able to delegate solutioning when appropriate to the proper resources. Able to lead data gathering efforts seeking information from multiple and diverse sources. Experience operating as a point of escalation. Demonstrated understanding of how decisions affect teams. Demonstrated ability to make decisions with integrity.
Demonstrated experience providing inclusive leadership of others, cultivating an inclusive environment that values equity, diversity, inclusion and belonging.
Inspires creativity in others and advises teams on industry-leading practices, such as the incorporation of new technologies or processes. Has demonstrated experience leading in an ever-changing, fast-paced environment.