Position Overview

We are seeking a Senior Manager – IAM Practice Lead with broad domain expertise to support State Street's IAM integration and migration efforts. This role will be instrumental in assessing IAM-related needs as they relate to migration and landing zone exits, and will provide end-to-end solution architecture oversight to accelerate application migrations. The ideal candidate will combine deep technical IAM expertise with proven pre-sales experience to drive business development and solution positioning.

Key Responsibilities

Practice Leadership & Management

• Lead and manage the IAM practice, providing strategic direction and oversight for all IAM initiatives
• Mentor and develop IAM Engineers, Solution Architects, and Technical Project Managers
• Establish best practices, standards, and governance frameworks for IAM delivery
• Drive continuous improvement and innovation within the IAM practice

Pre-Sales & Business Development

• Partner with sales teams to identify and qualify IAM opportunities
• Lead discovery sessions and workshops with prospective clients to understand IAM requirements
• Develop compelling proposals, RFP responses, and solution presentations
• Conduct technical demonstrations and proof-of-concept engagements
• Build and maintain relationships with key stakeholders and decision-makers
• Contribute to pricing strategies and effort estimations for IAM engagements

Solution Architecture & Delivery

• Design and implement standard IAM patterns and solutions across the enterprise migration program
• Lead IAM integration efforts in support of application migrations, including:
• Authentication and Federation – Design and implement identity federation solutions and authentication mechanisms
• Authorization Integration – Develop and deploy role-based and attribute-based access control frameworks
• Secret Management – Architect secure solutions for credentials, keys, and certificate management
• Identity Governance and Administration (IGA) – Implement identity lifecycle management and access certification processes
• Privileged Access Management (PAM) Integration – Design and integrate PAM solutions to secure privileged accounts
• Provide migration readiness and cutover support for IAM controls
• Develop accelerators and self-service tools to streamline IAM integration during migrations
• Execute IAM integration outcomes for approved backlog items, including configuration, implementation, and documentation
• Work under State Street's direction, governance, and control to deliver IAM solutions aligned with organizational technology and business goals
• Utilize the approved tooling stack consistent with State Street standards

Required Qualifications

• 12+ years of experience in Identity and Access Management with progressive leadership responsibilities
• 5+ years of experience in a Senior Manager or leadership role
• Proven pre-sales experience including proposal development, client presentations, RFP responses, and solution demonstrations
• Hands-on experience with ForgeRock Identity Platform (Access Management, Identity Management, Directory Services)
• Expertise in Microsoft Entra ID (formerly Azure AD) including Conditional Access, B2B/B2C, and hybrid identity configurations
• Deep expertise in IAM domains including:
• Identity Federation (SAML, OAuth, OIDC)
• Single Sign-On (SSO) solutions
• Multi-Factor Authentication (MFA)
• Privileged Access Management (CyberArk, BeyondTrust, or similar)
• Identity Governance (SailPoint, Saviynt, or similar)
• Secret/Vault Management (HashiCorp Vault, AWS Secrets Manager, Azure Key Vault)
• Experience with cloud platforms (AWS, Azure) and hybrid cloud environments
• Proven track record of supporting large-scale migration programs
• Strong understanding of enterprise security frameworks and compliance requirements
• Experience with landing zone architecture and cloud-native IAM services
• Excellent presentation, communication, and executive-level stakeholder management skills
• Strong business acumen with the ability to translate technical solutions into business value

Preferred Qualifications

• ForgeRock Certified Professional or equivalent certification
• Microsoft Certified: Identity and Access Administrator Associate (SC-300)
• Experience in financial services or highly regulated industries
• Certifications such as CISSP, CISM, AWS Certified Security Specialty, or Azure Security Engineer
• Experience with containerization and Kubernetes security
• Familiarity with DevSecOps practices and CI/CD pipelines
• Experience developing automation and self-service tooling for IAM processes
• Experience migrating legacy IAM systems to ForgeRock or Entra ID
• Track record of successfully closing and delivering IAM engagements
• Experience building and scaling IAM practices or teams

Work Environment

• This is an onshore position based in Quincy, MA or Princeton, NJ
• Standard regional business hours with potential for flexibility based on project needs
• Travel may be required for client engagements and pre-sales activities
• Collaboration with offshore team members located in India

Why Ensono?

Ensono is a place to make better happen – for our clients and for your career. You can do great things through innovation or collaboration, by learning or volunteering, or to promote diversity and inclusion. You can do great things for your own health or for a healthier planet. Whatever it means to you to do great things we want Ensono to be the place you can do it.

We are a client-facing business, but we do encourage clients to allow us to work remotely most of the time so if you are not required to be on a client site, you can choose to work from home or in our Ensono offices.

Some of our benefits include:

• Unlimited Paid Days Off

• Three health plan options

• 401k with company match

• Eligibility for dental, vision, short and long-term disability, life and AD&D coverage, and flexible spending accounts

• Family Forming Benefit including fertility coverage and adoption/surrogacy reimbursement

• Paid childbearing and paternal leave

• Education Reimbursement, Student Loan Assistance or 529 College Funding

• Sabbatical leave

• Wellness program

• Flexible work schedule

As of the date of this posting, a good faith estimate of the current pay scale for this role is $140,000 to $182,000 annually based on a full-time schedule. Please note that placement in the range may vary based on numerous factors including but not limited to skills, experience, internal equity, and business needs. In addition to base salary, other compensation programs, depending on eligibility, include an annual bonus plan based on company and individual performance and an equity grant under our Associate Equity Appreciation Program.

Ensono is an Equal Opportunity/Affirmative Action employer. We are committed to providing equal employment to our Associates and building a diverse and inclusive workforce. All qualified applicants will be considered without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, or other legally protected basis, in accordance with applicable law.

Pay transparency nondiscrimination statement/posting OFCCP’s pay transparency policy can be found on OFCCP’s website.

If you need accommodation at any point during the application or interview process, please let your recruiter know or email [email protected].