Security Manager - Identity and Access Management

at  PNC Financial Services Group

Job Profile
Position Overview
At PNC, our people are our greatest differentiator and competitive advantage in the markets we serve. We are all united in delivering the best experience for our customers. We work together each day to foster an inclusive workplace culture where all of our employees feel respected, valued and have an opportunity to contribute to the company’s success. As a Security Manager within PNC’s Technology organization, you will be based in Pittsburgh, PA; Cleveland, OH; Birmingham, AL or Dallas, TX. The position is primarily based in a PNC location. Responsibilities require time in the office or in the field on a regular basis. Some responsibilities may be performed remotely, at the manager’s discretion.

Technical Skills

• Understanding of fine grain and coarse grain access permissions/authorizations, including entitlements management
• Understanding of authentication models, such as modern authentication, Oauth, directories, SAML/Federation, etc.
• Understanding authorization models and concepts, such as ACLs, DACLs, RBAC, ABAC, Policy/Claims
• Understanding of identity, credential, and access management concepts - technical/engineering skills (NOT a project manager), with experience with Oracle Identity Manager (OIM)
• Understanding of authentication, authorization, SSO, and LDAP best practices
• Ability to manage large amounts of data within Excel, including use of data models, macros, pivot tables, reporting and dashboarding
• Ability to manage large data sets via execution of SQL queries and have some experience with working with MS Access database
• Ability to clearly communicate with team members, leadership, executive leadership, and customers - internally as well as externally - including ability to meet critical timelines to achieve success
• Ability to diagnose and troubleshoot issues and possess strong analytical and problem solving skills
• Ability to work independently, should be detail oriented, and be able to work in a team environmen

Additional Skills

• Collaborate with customers to collect, analyze document requirements assist with the architecture, analysis, design, development, integration, and overall implementation of entitlements and roles based access control roles
• Designing, engineering, maintaining the roles including descriptions, organization mapping, and role owner maintenance as part of the BAU activity
• Shall server as a subject matter expert on identity and access management, and will review and implement RBAC related work sets to achieve expected business outcome

Technical Skills

• Understanding of fine grain and coarse grain access permissions/authorizations, including entitlements management
• Understanding of authentication models, such as modern authentication, Oauth, directories, SAML/Federation, etc.
• Understanding authorization models and concepts, such as ACLs, DACLs, RBAC, ABAC, Policy/Claims
• Understanding of identity, credential, and access management concepts - technical/engineering skills (NOT a project manager), with experience with Oracle Identity Manager (OIM)
• Understanding of authentication, authorization, SSO, and LDAP best practices
• Ability to manage large amounts of data within Excel, including use of data models, macros, pivot tables, reporting and dashboarding
• Ability to manage large data sets via execution of SQL queries and have some experience with working with MS Access database
• Ability to clearly communicate with team members, leadership, executive leadership, and customers - internally as well as externally - including ability to meet critical timelines to achieve success
• Ability to diagnose and troubleshoot issues and possess strong analytical and problem solving skills
• Ability to work independently, should be detail oriented, and be able to work in a team environmen

Additional Skills

• Collaborate with customers to collect, analyze document requirements assist with the architecture, analysis, design, development, integration, and overall implementation of entitlements and roles based access control roles
• Designing, engineering, maintaining the roles including descriptions, organization mapping, and role owner maintenance as part of the BAU activity
• Shall server as a subject matter expert on identity and access management, and will review and implement RBAC related work sets to achieve expected business outcomes
• Actively involving in the enterprise technical business team meeting to gather the access details for their day to day activities and converting into job function roles in OI

Technical Skills

• Understanding of fine grain and coarse grain access permissions/authorizations, including entitlements management
• Understanding of authentication models, such as modern authentication, Oauth, directories, SAML/Federation, etc.
• Understanding authorization models and concepts, such as ACLs, DACLs, RBAC, ABAC, Policy/Claims
• Understanding of identity, credential, and access management concepts - technical/engineering skills (NOT a project manager), with experience with Oracle Identity Manager (OIM)
• Understanding of authentication, authorization, SSO, and LDAP best practices
• Ability to manage large amounts of data within Excel, including use of data models, macros, pivot tables, reporting and dashboarding
• Ability to manage large data sets via execution of SQL queries and have some experience with working with MS Access database
• Ability to clearly communicate with team members, leadership, executive leadership, and customers - internally as well as externally - including ability to meet critical timelines to achieve success
• Ability to diagnose and troubleshoot issues and possess strong analytical and problem solving skills
• Ability to work independently, should be detail oriented, and be able to work in a team environmen

Additional Skills

• Collaborate with customers to collect, analyze document requirements assist with the architecture, analysis, design, development, integration, and overall implementation of entitlements and roles based access control roles
• Designing, engineering, maintaining the roles including descriptions, organization mapping, and role owner maintenance as part of the BAU activity
• Shall server as a subject matter expert on identity and access management, and will review and implement RBAC related work sets to achieve expected business outcomes
• Actively involving in the enterprise technical business team meeting to gather the access details for their day to day activities and converting into job function roles in OIM
• Creating an role, access policy and access mapping based on the role owners request

JOB RESPONSIBILITIES:

• Manages resources that enables security control effectiveness with a team and technology.
• Monitor trends and continuously assesses staff/security system capabilities to meet business demands.
• Leads in policy development, audit mitigation, and other tasks related to securing and maintaining the operational health of the infrastructure. Evaluates security systems, teams and processes to provide recommendations to maintain continuity and operational health.
• Documents and revises procedures and playbooks for teams, processes and technology to provide a standard security practice and increase team effectiveness.
• Focus on customers and internal partners, manage risk, and to accomplish business goal and objectives.
• Understands how service(s) align to overall business strategy, cyber security landscape, security policy, and consumer needs, and can anticipate new opportunities and/or adjust service approach to accommodate variable needs
• Evaluates evolving risk areas to identify gaps in current controls, service functionality and capabilities
• Defines and monitors cost, performance and value measurements of service(s)
• Looks holistically across all services to understand (inter)dependencies and key integration points with own service(s)
• Responsible for articulating purpose and value of service(s), and ensuring understanding across impacted consumer base
• Responsible for successful remediation of audit risks/needs aligned to service(s)
• Communicates, influences, negotiates, and drives consensus both vertically and horizontally to achieve service objectives

Technical Skills

• Understanding of fine grain and coarse grain access permissions/authorizations, including entitlements management
• Understanding of authentication models, such as modern authentication, Oauth, directories, SAML/Federation, etc.
• Understanding authorization models and concepts, such as ACLs, DACLs, RBAC, ABAC, Policy/Claims
• Understanding of identity, credential, and access management concepts - technical/engineering skills (NOT a project manager), with experience with Oracle Identity Manager (OIM)
• Understanding of authentication, authorization, SSO, and LDAP best practices
• Ability to manage large amounts of data within Excel, including use of data models, macros, pivot tables, reporting and dashboarding
• Ability to manage large data sets via execution of SQL queries and have some experience with working with MS Access database
• Ability to clearly communicate with team members, leadership, executive leadership, and customers - internally as well as externally - including ability to meet critical timelines to achieve success
• Ability to diagnose and troubleshoot issues and possess strong analytical and problem solving skills
• Ability to work independently, should be detail oriented, and be able to work in a team environment

Additional Skills

• Collaborate with customers to collect, analyze document requirements assist with the architecture, analysis, design, development, integration, and overall implementation of entitlements and roles based access control roles
• Designing, engineering, maintaining the roles including descriptions, organization mapping, and role owner maintenance as part of the BAU activity
• Shall server as a subject matter expert on identity and access management, and will review and implement RBAC related work sets to achieve expected business outcomes

JOB RESPONSIBILITIES:

• Manages resources that enables security control effectiveness with a team and technology.
• Monitor trends and continuously assesses staff/security system capabilities to meet business demands.
• Leads in policy development, audit mitigation, and other tasks related to securing and maintaining the operational health of the infrastructure. Evaluates security systems, teams and processes to provide recommendations to maintain continuity and operational health.
• Documents and revises procedures and playbooks for teams, processes and technology to provide a standard security practice and increase team effectiveness.
• Focus on customers and internal partners, manage risk, and to accomplish business goal and objectives.
• Understands how service(s) align to overall business strategy, cyber security landscape, security policy, and consumer needs, and can anticipate new opportunities and/or adjust service approach to accommodate variable needs
• Evaluates evolving risk areas to identify gaps in current controls, service functionality and capabilities
• Defines and monitors cost, performance and value measurements of service(s)
• Looks holistically across all services to understand (inter)dependencies and key integration points with own service(s)
• Responsible for articulating purpose and value of service(s), and ensuring understanding across impacted consumer base
• Responsible for successful remediation of audit risks/needs aligned to service(s)
• Communicates, influences, negotiates, and drives consensus both vertically and horizontally to achieve service objectives

Technical Skills

• Understanding of fine grain and coarse grain access permissions/authorizations, including entitlements management
• Understanding of authentication models, such as modern authentication, Oauth, directories, SAML/Federation, etc.
• Understanding authorization models and concepts, such as ACLs, DACLs, RBAC, ABAC, Policy/Claims
• Understanding of identity, credential, and access management concepts - technical/engineering skills (NOT a project manager), with experience with Oracle Identity Manager (OIM)
• Understanding of authentication, authorization, SSO, and LDAP best practices
• Ability to manage large amounts of data within Excel, including use of data models, macros, pivot tables, reporting and dashboarding
• Ability to manage large data sets via execution of SQL queries and have some experience with working with MS Access database
• Ability to clearly communicate with team members, leadership, executive leadership, and customers - internally as well as externally - including ability to meet critical timelines to achieve success
• Ability to diagnose and troubleshoot issues and possess strong analytical and problem solving skills
• Ability to work independently, should be detail oriented, and be able to work in a team environment

Additional Skills

• Collaborate with customers to collect, analyze document requirements assist with the architecture, analysis, design, development, integration, and overall implementation of entitlements and roles based access control roles
• Designing, engineering, maintaining the roles including descriptions, organization mapping, and role owner maintenance as part of the BAU activity
• Shall server as a subject matter expert on identity and access management, and will review and implement RBAC related work sets to achieve expected business outcomes
• Actively involving in the enterprise technical business team meeting to gather the access details for their day to day activities and converting into job function roles in OIM

JOB RESPONSIBILITIES:

• Manages resources that enables security control effectiveness with a team and technology.
• Monitor trends and continuously assesses staff/security system capabilities to meet business demands.
• Leads in policy development, audit mitigation, and other tasks related to securing and maintaining the operational health of the infrastructure. Evaluates security systems, teams and processes to provide recommendations to maintain continuity and operational health.
• Documents and revises procedures and playbooks for teams, processes and technology to provide a standard security practice and increase team effectiveness.
• Focus on customers and internal partners, manage risk, and to accomplish business goal and objectives.
• Understands how service(s) align to overall business strategy, cyber security landscape, security policy, and consumer needs, and can anticipate new opportunities and/or adjust service approach to accommodate variable needs
• Evaluates evolving risk areas to identify gaps in current controls, service functionality and capabilities
• Defines and monitors cost, performance and value measurements of service(s)
• Looks holistically across all services to understand (inter)dependencies and key integration points with own service(s)
• Responsible for articulating purpose and value of service(s), and ensuring understanding across impacted consumer base
• Responsible for successful remediation of audit risks/needs aligned to service(s)
• Communicates, influences, negotiates, and drives consensus both vertically and horizontally to achieve service objectives

Technical Skills

• Understanding of fine grain and coarse grain access permissions/authorizations, including entitlements management
• Understanding of authentication models, such as modern authentication, Oauth, directories, SAML/Federation, etc.
• Understanding authorization models and concepts, such as ACLs, DACLs, RBAC, ABAC, Policy/Claims
• Understanding of identity, credential, and access management concepts - technical/engineering skills (NOT a project manager), with experience with Oracle Identity Manager (OIM)
• Understanding of authentication, authorization, SSO, and LDAP best practices
• Ability to manage large amounts of data within Excel, including use of data models, macros, pivot tables, reporting and dashboarding
• Ability to manage large data sets via execution of SQL queries and have some experience with working with MS Access database
• Ability to clearly communicate with team members, leadership, executive leadership, and customers - internally as well as externally - including ability to meet critical timelines to achieve success
• Ability to diagnose and troubleshoot issues and possess strong analytical and problem solving skills
• Ability to work independently, should be detail oriented, and be able to work in a team environment

Additional Skills

• Collaborate with customers to collect, analyze document requirements assist with the architecture, analysis, design, development, integration, and overall implementation of entitlements and roles based access control roles
• Designing, engineering, maintaining the roles including descriptions, organization mapping, and role owner maintenance as part of the BAU activity
• Shall server as a subject matter expert on identity and access management, and will review and implement RBAC related work sets to achieve expected business outcomes
• Actively involving in the enterprise technical business team meeting to gather the access details for their day to day activities and converting into job function roles in OIM
• Creating an role, access policy and access mapping based on the role owners request.

Job Description
Manages a team that oversees the day-to-day operations and effectiveness of assigned security technology and programs.
Manages resources that enables security control effectiveness with a team and technology.
Monitors trends and continuously assesses staff/security system capabilities to meet business demands.
Leads in policy development, audit mitigation, and other tasks related to securing and maintaining the operational health of the infrastructure. Evaluates security systems, teams and processes to provide recommendations to maintain continuity and operational health.
Documents and revises procedures and playbooks for teams, processes and technology to provide a standard security practice and increase team effectiveness.
PNC Employees take pride in our reputation and to continue building upon that we expect our employees to be:
Customer Focused - Knowledgeable of the values and practices that align customer needs and satisfaction as primary considerations in all business decisions and able to leverage that information in creating customized customer solutions.
Managing Risk - Assessing and effectively managing all of the risks associated with their business objectives and activities to ensure they adhere to and support PNC’s Enterprise Risk Management Framework.
PNC also has fundamental expectations of our people managers. As a manager of talent in PNC, you will be expected to:
Include Intentionally - Cultivates diverse teams and inclusive workplaces to expand thinking.
Live the Values - Role models our values with transparency and courage.
Enable Change - Takes action to drive change and innovation that will transform our business.
Achieve Results - Takes personal ownership to deliver results. Empowers and trusts others in decision making.
Develop the Best - Raises the bar with every talent decision and guides the achievement of all employees and customers.
Competencies
Information Assurance – Knowledge of and the ability to protect information and information systems while ensuring their confidentiality, integrity and availability.
Information Security Audits – Knowledge of and the ability to utilize tools and techniques for assessing the effectiveness of information security measures, identifying potential risk exposures, and protecting the availability, confidentiality and audit trails of information from destruction or manipulation.
Information Security Management – Knowledge of and the ability to manage the processes, tools, techniques and practices for assuring adherence to standards associated with accessing, altering and protecting organizational data.
Information Security Technologies – Knowledge of technologies and technology-based solutions dealing with information security issues.
IT Environment – Knowledge of an organization’s IT purposes, activities and standards; ability to create an effective IT environment for business operations.
IT Standards, Procedures & Policies – Knowledge of and the ability to utilize a variety of administrative skill sets and technical knowledge to manage organizational IT policies, standards, and procedures.
Knowledge of Organization – Knowledge of the organization’s vision, structure, culture, philosophy, operating principles, values, and code of ethics; ability to apply this understanding appropriately to diverse situations.
Planning: Tactical, Strategic – Ability to contribute to operational (short term), tactical (1-2 years) and strategic (3-5 years) planning in support of the overall business plan.
Work Experience
Roles at this level typically require a university / college degree. Higher level education such as a Masters degree, PhD, or certifications is desirable. Industry experience is typically 8+ years. At least 5 years of prior management experience is typically required. In lieu of a degree, a comparable combination of education, job specific certification(s), and experience (including military service) may be considered.
Education
Bachelors
Additional Job Description
Benefits
PNC offers employees a comprehensive range of benefits to help meet your needs now and in the future. Depending on your eligibility, options for full-time employees include medical/prescription drug coverage (with a Health Savings Account feature); dental and vision options; employee and spouse/child life insurance; short- and long-term disability protection; maternity and parental leave; paid holidays, vacation days and occasional absence time; 401(k), pension and stock purchase plans; dependent care reimbursement account; back-up child/elder care; adoption assistance; educational assistance and a robust wellness program with financial incentives. To learn more about these and other programs, including benefits for part-time employees, visit pncbenefits.com > New to PNC.