IT Security IAM Manager (remote support considered)

McCormick & Company, Inc., a world leader in the spice, flavor and seasonings industry, is seeking a full time IT Security IAM Manager. This new hire will work in McCormick’s Global Headquarters located at 24 Schilling Road in Hunt Valley, MD or we will consider remote support.  This position will report to the Director, IT Security Architecture and Engineering.

With $5 billion in annual sales, McCormick & Company, Incorporated manufactures, markets and distributes spices, seasoning mixes, condiments and other flavorful products to the entire food industry – retail outlets, food manufacturers and foodservice businesses. Every day, no matter where or what you eat, you can enjoy food flavored by McCormick.  McCormick makes every moment and meal better™!  To learn more please visit us at www.mccormickcorporation.com.

As a company recognized for exceptional commitment to employees, McCormick offers a wide variety of benefits, programs and services.  Benefits include, but are not limited to, tuition assistance, medical, dental, vision, disability, group life insurance, 401(k), profit sharing, paid holidays and vacations.

Position Overview/Primary Purpose:

The IT Security IAM Manager will manage a team of individuals to provide expertise, knowledge and understanding of the Identity Management solution landscape and functions including provisioning, federation, role/entitlement reviews, authentication, and access management for the cloud and on premise. This role with work with business, IT and external partners to strategize, define, design, engineer, rationalize, and support IAM toolsets and services to present a coherent future state of the IAM service footprint and solutions that drive business growth and support business projects. The role will also be responsible for working with customers, IT teams and service provider teams to review and process security requests, continuously improve service delivery for the function, upholding IT Service Management SLAs and meeting compliance requirements.

This role will contribute to the design and strategy for integrating and configuring a user access

framework consistently across application landscapes, working along with IT Security leadership team to create and execute the strategies, policies, programs, and projects of IT and IT Security.

Responsibilities:

• Manage the technical and functional delivery of IAM Services according to established ITSM SLAs, processes, and practices.
• Manage team resources to provide 24x7 support for priority incidents and projects that may require after hours work. Provide an escalation point for critical and urgent items and redirect or engage others as needed for proper resolution or hand-off.
• Review, assess and approve change manage requests presented by the team and interact with IT and business teams to ensure alignment on risk, impacts and communications as necessary.
• Actively contribute to and participate in security incident response as needed.
• Lead, resource manage and sponsor IAM projects and IAM resources on IT/Business projects.
• Provide reasonable estimates for project resources and demands, manage costs to forecast and estimates, and prepare resourcing forecasts to meet demand.
• As needed, prepare project artifacts for projects to include justification, budget, resource and other necessary proposals.
• Identify risks both operational and security during day to day activities and during specific, targeted efforts or audits. Make recommendations and/or take action to mitigate these risks as appropriate.
• Regularly review and actively execute security technologies, infrastructure, systems and processes to ensure compliance to security requirements, separation or duties and other best practices are being followed and where necessary, resolve and/or escalate inconsistencies and issues.
• Maintain, review and certify any IT and SOX controls as assigned.
• Build, test and rollout of enterprise Identity and Access Management solutions in collaboration with internal and external resources.
• Development and maintenance of IT Security Identity and Access Management strategic plan and roadmap, to include new solutions/capabilities, life cycle management and related efforts, aligned to IT and IT Security vision and objectives.
• Prepare project proposals and contribute to the overall IT security portfolio and programs.
• Work within McCormick people management systems and processes to manage employees, including performance management/goals and personnel development.
• Develop and maintain security relevant skills and knowledge, both technical and non-technical, through training, certifications, and other means for yourself and your team. Work with individuals to prepare development plans and facilitate as necessary for completion.
• Maintain up-to-date knowledge by researching new technologies and software products, participating in educational opportunities and conferences, and reading professional publications.
• Define, plan and maintain IAM application/system configuration lifecycles. Provide sizing and budget estimations to align with life cycle/renewal schedules.
• Serve as a subject matter expert to the business stakeholders, understanding their core business processes and business priorities which can be enhanced using IDM solutions. Identification of the policies, standards and controls required to effectively manage the access to the Company’s information assets and IT Services.
• Vendor evaluation and selection and development of strategic alliances with 3rd parties.
• Collaborate cross-functionally with other technology teams and security organization.
• Maintain all cyber security diagrams, inventories and documentation.
• Analyze business requirements and specifications and propose solutions that fit to standards, compliance, and operational requirements.
• Document use cases and work with agile teams to document user stories.

Required Qualifications:

• Bachelor's degree in Information Technology, Computer Science or relevant field.
• Certified Information Systems Security Professional (CISSP) and at least two of the preferred qualifications or equivalent certifications
• Minimum of 10 years of technical experience in Information Technology (IT) including a minimum 5 years specifically as an Information Security professional.
• Minimum of 5 years experience leading a team of technical professionals for which responsibility included resource planning and prioritization, performance management and talent development.
• Experience with architecture and implementations of IDM solutions
• Experience with Active Directory (Azure AD & AD) and LDAP knowledge for integration to AD
• Experience with SAP systems and IDM integrations
• Experience with IDM workflows including coding/scripting for IDM workflows and provisioning, and the ability to build and maintain complex IDM workflows.
• Experience with technical aspects of IDM in all the following areas:

a. Installation and Maintenance of IDM software

b. Setup and configuring of IDM provisioning framework

c. Performing IDM transports (export/import)

d. Building of IDM repositories and troubleshooting of connection problems

• Solid understanding of Identity Management (IDM), Single Sign on (SSO), and security concepts.
• Hands on integration and deployment experience with the SailPoint, CyberArk (PAM) and other Identity Management and Access Management products.
• Must be able to multi-task and set priorities – Able to back up Project team when required.
• Must have experience in a collaborative, multi-disciplined, globally diverse team environment.
• Ability to inspire and motivate team around a common set of goals and objectives.
• Demonstrated ability to influence others, such as IT project managers, by IT operational support staff and all company employees, contractors and others who handle company information. Also, must influence peers and leadership in the approval and adoption of policies and procedures that apply to entire corporation.
• Talent identification, acquisition and development skills are required to ensure own team has skills required to achieve team objectives.
• Strong written communication skills are required to develop effective policies and procedures.
• Strong verbal communication skills are required to support the influencing efforts described above.
• Must be able to provide sound, convincing arguments based on qualitative data.
• Ability to maintain confidential and personal information
• Proficiency in English, both written and verbal

Preferred Qualifications:

• MBA or Masters in Computer Science, Information Governance, Engineering, Business Management or related field
• Certified Identity and Access Manager (CIAM), Certified Identity Management Professional (CIMP), Certified Ethical Hacker (CEH), Certified Information Privacy Professional (CIPP), Certified Information Security Manager (CISM), CIP (Certified Information Professional), CompTIA Security , SANS GIAC Security Essentials, Certified in Risk and Information Systems Control (CRISC), Cloud Certification (AWS, GCP, Azure), Certificate of Cloud Security Knowledge (CCSK), Offensive Security Certified Professional (OCSP), ITIL, or other relevant security certification
• 3 year public cloud IaaS experience (Azure)

McCormick & Company is an equal opportunity/affirmative action employer.  All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.

As a general policy, McCormick does not offer employment visa sponsorships upon hire or in the future.