Global Identity Access Management Domain Lead

Who We Are

At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.

The Role

Kyndryls Security & Resiliency is one of our most critical practices, ensuring enterprises, regardless of their size and complexity, remain secure, available, reliable, and resilient. We take Cybersecurity seriously. We're not just invested; we're committed. We're not just protecting data; we're empowering. Kyndryl is committed to making the world safer, not only by investing in state-of-the-art services and technologies but also by empowering underserved communities with essential cyber skills.

When you walk through our doors, you're not only joining a team but you're also becoming part of a legacy. Welcome to Kyndryl, where Cybersecurity isn't just a job its a passion; a commitment to designing, running, and managing the most modern and reliable technology infrastructure that the world depends on every day.

As the Global Identity Access Management Domain Lead, you will:

• Architect and execute a client-centric go-to-market strategy that addresses the evolving IAM security needs of enterprises, driving significant market penetration and revenue growth.
• Partner with C-level executives and senior leadership to provide strategic guidance on IAM, and best practices, fostering long-term client relationships.
• Lead complex, high impact consulting engagements, applying rigorous analytical frameworks to develop and implement tailored IAM solutions that deliver tangible business outcomes.
• Cultivate and secure strategic client engagements by acting as a recognized thought leader and subject matter expert, showcasing our firm's deep expertise in IAM.
• Drive innovation and thought leadership by anticipating emerging IAM trends and developing cutting-edge methodologies and solutions, solidifying our position as the premier provider of IAM services globally.
• Empower sales teams with the knowledge and tools necessary to effectively communicate the value of our cloud security offerings, driving successful client engagements and business development.

What you will do and Key Responsibilities:

Practice Leadership & Strategy:

• Develop and drive the IAM practice strategy, focusing on AM, IGA and PAM.
• Stay ahead of IAM trends, technologies, and best practices to enhance service offerings.
• Collaborate with leadership to define roadmaps, frameworks, and service models.
• Establish and refine IAM methodologies, standards, and governance models.

Solution Architecture & Delivery:

• Lead the design and implementation of IAM solutions using market leading solutions like SailPoint IdentityNow/IdentityIQ and CyberArk PAM.
• Provide technical leadership in IAM solution architecture, including RBAC, ABAC, lifecycle management, SOD controls, and privileged account security.
• Conduct assessments and define IAM roadmaps for clients.
• Oversee integrations with various enterprise applications, directories, and cloud environments.
• Ensure scalability, security, and compliance of IAM implementations.

Client Engagement & Advisory:

• Act as a trusted advisor to clients, understanding their IAM needs and challenges.
• Lead discovery workshops, requirement gathering, and solution demonstrations.
• Provide expert guidance on IAM governance, risk management, and compliance.
• Develop proposals, statements of work (SOWs), and client presentations.

Team Leadership & Mentoring:

• Lead and mentor a team of IAM consultants.
• Provide training and knowledge-sharing sessions on IAM technologies and best practices.
• Foster a culture of innovation, collaboration, and continuous improvement.

Operations & Compliance:

• Be familiar and ensure compliance with NIST, ISO 27001, SOX, GDPR, HIPAA, PCI-DSS, and other relevant regulations as far as IAM goes.
• Define IAM policies, processes, and operational guidelines.
• Collaborate with security and compliance teams to enforce IAM governance.

Your Future at Kyndryl

When you join Kyndryl, you're not just joining a company you're entering a space of opportunities. Our partnerships with industry alliances and vendors mean you'll have access to skilling and certification programs needed to excel in Security & Resiliency, while simultaneously supporting your personal growth. Whether you envision your career path as a technical leader within cybersecurity or transition into other technical, consulting, or go-to-market roles were invested in your journey.

Kyndryl currently does not require employees to be fully vaccinated against COVID-19, however, if you are hired to work at a client, customer, or partner location, you may be required to show proof of vaccination to align with their respective COVID-19 vaccination policies. Those who believe they are eligible may apply for a medical or religious accommodation prior to the start of employment.

Who You Are

Youre good at what you do and possess the required experience to prove it. However, equally as important you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused someone who prioritizes customer success in their work. And finally, youre open and borderless naturally inclusive in how you work with others.

Required Technical and Professional Expertise

• 8+ years of experience in IAM, with expertise in SailPoint (IdentityNow/IdentityIQ) and CyberArk.
• Strong understanding of IGA, PAM, Role-Based Access Control (RBAC), Attribute
• Based Access Control (ABAC), and Least Privilege Models.
• Hands-on experience with directory services (Active Directory, LDAP, Azure AD).
• Experience integrating IAM with cloud (AWS, Azure, GCP) and on-premises environments.
• Familiarity with SAML, OAuth, OpenID Connect, SCIM, and REST APIs.
  Scripting and automation skills (PowerShell, Python, Java, or similar).
• Strong leadership and team management experience.
• Excellent communication and stakeholder management skills.
• Ability to engage with C-level executives and technical teams alike.
• Strategic thinker with the ability to align IAM initiatives with business objectives.

Preferred Technical and Professional Expertise

• SailPoint Certified Identity Professional
• CyberArk Defender/Guardian
• CISSP, CISM, or equivalent security certifications
• ITIL, TOGAF, or other relevant certifications

The compensation range for the position in the U.S. is $167,760 to $318,840 based on a full-time schedule.

Your actual compensation may vary depending on your geography, job-related skills and experience. For part time roles, the compensation will be adjusted appropriately. The pay or salary range will not be below any applicable state, city or local minimum wage requirement.

There is a different applicable compensation range for the following work locations:

California: $184,560 to $382,680

Colorado: $167,760 to $318,840

New York City: $201,360 to $382,680

Washington: $184,560 to $350,760

Washington DC: $184,560 to $350,760

This position will be eligible for Kyndryls discretionary annual bonus program, based on performance and subject to the terms of Kyndryls applicable plans. You may also receive a comprehensive benefits package which includes medical and dental coverage, disability, retirement benefits, paid leave, and paid time off. Note: If this is a sales commission eligible role, you will be eligible to participate in a sales commission plan in lieu of the annual discretionary bonus program.

Applications will be accepted on a rolling basis.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Know Your Rights: Workplace Discrimination is Illegal

Pay Transparency Nondiscrimination Provision

Being You

Diversity is a whole lot more than what we look like or where we come from, its how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But were not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you and everyone next to you the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. Thats the Kyndryl Way.

What You Can Expect

With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.

Get Referred!
If you know someone that works at Kyndryl, when asked How Did You Hear About Us during the application process, select Employee Referral and enter your contact's Kyndryl email address.