Lead Cyber IAM (Identity & Access Mgmt) - Rochester - LaBella Associates
Rochester, NY
About the Job
LaBella Associates was established in 1978 and is a certified Great Place To Work. We are headquartered in Rochester, NY with offices across New York, Ohio, Pennsylvania, Connecticut, Maine, Virginia, North and South Carolina, and Madrid, Spain. LaBella is a multi-disciplined architectural and engineering firm dedicated to client satisfaction through teamwork, respect, and trust. We provide services that take a project from start to finish—from an initial study to determine a project’s feasibility to construction administration and start up, and everything in between.
We are currently hiring a Lead Cyber IAM (Identity & Access Management) in our Program Management Services division at our client’s Orange, CT office (hybrid work week - 3 days in office with a possibility of full time in office). This position is responsible for execution of projects that will implement design, operation, and evolution of IAM solutions and strategies for Avangrid Networks operating companies progress for Grid Digitalization.
Duties:
- Proficient in identity management, understanding SailPoint's IdentityNow and IdentityIQ platform, Role Based Access Control concepts and functionality and experience with onboarding applications.
- Prior experience and knowledge in ServiceNow.
- Manage the shift in philosophy of how critical infrastructure is secured from verify once at the perimeter to continual verification of each user, device, application, and transaction
- Provide SME knowledge for the deployment of IAM services and solutions in support of Avangrid’s evolution towards a zero-trust security framework
- Ensure projects that reduce risk and provides resiliency
- Engage with, and advise stakeholders within the business on IAM best practices
- Provide expertise and immediacy of decision making, hold team members accountable for results, coaches, mentors and guides team members, resolves disputes and escalates issues when appropriate.
- Ensure IAM services and solutions are designed and delivered in compliance with industry best practices as well as applicable privacy and legal/regulatory requirements including NIST 800-63, GDPR, SOX, CEII, and NERC
- Support implementation of GRC automation tools to manage compliance processes and evidence for applicable IAM service.
- Provide SME knowledge for establishing an IAM service model that is well defined, highly available, repeatable, and is constantly measured for Key performance, Key risk, and Key operational level metrics
- Responsible for maintaining measurements and methods in place to ensure best in class control quality and assurance for IAM solutions
- Follow applicable federal agency guidance on IAM technologies relevant to Grid Modernization and assess impact on AVANGRID Networks business model
- Lead, develop, maintain, and write IAM cybersecurity policies, rules standards, and guidelines
- Research current IAM industry and government frameworks, vulnerabilities, and risk trends, and assess impact
- Assess vendors/3rd party’s IAM solutions for applicable cyber standards/policies
- Establish Vendor process and metrics for IAM cyber assurance
- Analyze current/future IAM vendors, hardware, software, etc. that may be introduced to modernize the electric grid and assess increases and offsets to cyber exposure
- Day to Day support of IAM Solutions
MAJOR ROLES AND RESPONSIBILITES (Scope of work – range of responsibilities):
- Lead SME for project development and integration of IAM services and solutions in support of Grid Modernization for AVANGRID Networks
- Lead SME that participates in defining, developing, implementing, and operating IAM services and solutions for:
- Network Automation
- Smart Metering
- Resilient Telecommunications
- Intelligent/automatic centralized operations
- Digital Asset Management
- Digital enabled organization
- Distribution Automation
- Real Time Systems
- DER Management
Requirements
- Master’s Degree in Engineering, Computer Science, or technical related degree with a minimum of 5+ years’ experience in Cybersecurity / Information Technology and 5 years as IAM Lead
- Bachelor’s Degree in Engineering, Computer Science, or technical related degree with a minimum of 7+ years’ experience in Cybersecurity / Information Technology and 7 years as IAM Lead
- 10 + years’ experience in Cybersecurity / Information Technology and 10 years as IAM Lead
- Advanced Experience of IAM solutions
- Experience of SAP for financial budgeting, forecasting, and tracking
- Knowledge and experience navigating the procurement process
Skills/ Abilities:
- Strong communication and administration skills related to cybersecurity technology
- Strong system engineering and integration background for complex systems and networking
- Strong understanding of current and future state of cyberspace / Understanding with strong desire to learn
Desired Skills/ Abilities:
- Knowledge of federal government cybersecurity activities and practices
- Experience in federal or state regulatory environments
- Experience in federal cybersecurity agencies and environments
- Experience in a utility environment
- Certified Information Systems Security Professional (CISSP)
- Certified Identity and Access Manager (CIAM)
- Project Management
- Change Management
- Interpersonal Skills
- Communications / Influencing
- Negotiation / Dispute Resolution
- Ability to develop self and learn new information quickly
Benefits
Body, mind, and wallet—LaBella’s benefits support a holistic approach to your health and wellness, creating the foundation for physical, mental, and financial well-being. Our benefit offerings cover the must-haves (healthcare and retirement), the just-in-cases (insurances and employee assistance programs), and the cherry-on-tops (fitness reimbursements, year-end incentive pay, and tuition assistance). Visit our website for more details on benefits listed below.
- Flexible Work Schedule
- Health/Dental Insurance
- 401k Plan with Employer Match
- Short & Long Term Disability
- Profit Sharing
- Paid Time Off
- Leadership Development Program
- Fitness Reimbursement
- Tuition Reimbursement
- Referral Bonus Program
- Wellness Program
- Team Building Events
- Community Service Events