Location: Jersey City,NJ, USA
Who we are
Corebridge Financial helps people make some of the most meaningful decisions they're ever going to make. We help them plan and take action to protect the future they envision, and respond to some of life's most difficult moments through the solutions and services we provide. We do this through our broad portfolio of life insurance, retirement and institutional products, offered through an extensive, multichannel distribution network. We provide solutions for a brighter future through our client centered service, breadth of product expertise, deep distribution relationships, and outstanding team of hardworking and passionate employees.
As our world becomes increasingly connected, providing a best-in-class cybersecurity program has never been more important. Our customers expect, and deserve, a safe and secure digital experience. With that in mind, Corebridge has made significant investments in the enhancement and transformation of our Information Security Office (ISO). Our team leads the way in protecting our company from cybersecurity risks.
About the role
The VP, Authentication Senior Manager will provide overall leadership and oversee the company's workforce authentication service function. This role reports to the Global Head of Authentication (Identity and Access Management), requires extensive background and overall experience in IAM strategy, architecture, and software development/engineering as well as subject matter expertise in authentication services (both internal workforce and customer) while ensuring appropriate visibility, communication, and governance across key business partners and stakeholders. The role will require working across organizational boundaries, managing engineering and operations teams, overseeing vendors, driving POCs and negotiations, and interfacing with audit and regulatory teams.
We want to hear from you today if you can:
* Plan and execute the delivery of Authentication services (both internal workforce and customer IAM).
* Lead & oversee the design and development of Authentication solutions that enforce applicable organization security policies and access management requirements.
* Lead and oversee the build, configuration, and architecture of one or more authentication platforms, such as Okta/Ping and Azure including integral technology components such as SSO (Single sign-on), registration, identity proofing, multifactor authentication, password resets, etc.
* Demonstrate an understanding of Authentication services and integration with broader security solutions, such as Identity & Access Governance, Privileged Access and broader Cybersecurity services.
* Defines, enhances, and oversees all enterprise-wide authentication processes, controls and follow-up, exception & risk acceptance approvals, and walkthroughs.
* Oversees the development of technical authentication solutions, engaging service owners, architects, project managers, global infrastructure teams, regional IT teams and key IAM product vendors during the lifecycle of solutions delivery.
* Responsible for business requirements to integrate authentication systems with in-house and third-party applications for provisioning, access requests, and certifications.
* Represents the IAM organization on large scale technology projects implemented outside IAM, regulatory reviews and internal and external audits.
* Ability to confidently articulate business risks and technical challenges to stakeholders.
* Be action oriented: Taking on new opportunities and tough challenges with a sense of urgency, high-energy and enthusiasm.
* Balance stakeholders: Anticipating and balancing the needs of multiple stakeholders.
* Collaborate: Building partnerships and working collaboratively within and outside ISO (Information Security Office) organization to meet shared objectives.
* Communicate effectively: Developing and delivering multi-mode communications that convey a clear understanding of the unique needs of different audiences.
* Cultivate innovation: Creating new and better ways for the organization to be successful.
* Be customer focused: Building strong customer relationships and delivering customer-centric solutions.
* Drive engagement: Creating a climate where people are motivated to do their best to help the organization achieve its objectives.
* Drive results: Consistently achieving results, even under tough circumstances.
* Have a global perspective: Taking a broad view when approaching issues using a global lens.
* Be interpersonal savvy: Relating openly and comfortably with diverse groups of people.
* Manage complexity: Making sense of complex, high quantity, and sometimes contradictory information to effectively solve problems.
* Be able to optimize work processes: Knowing the most effective and efficient processes to get things done, with a focus on continuous improvement.
* Be organizational savvy: Maneuvering comfortably through complex policy, process, and people-related organizational dynamics.
* Interpret and apply skills to build Authentication solutions to support globally dispersed businesses, personnel, and customers.
Please note: The job can only be performed in the State locations listed: Houston, TX and Remote-NC.
What we are looking for
* 10+ years of overall experience in (or related experience) Cybersecurity and IAM managing engineering, strategy, process/controls and related services.
* 10+ years' experience in supporting key IAM business processes supporting Identity Governance, Privileged Access, Access Administration & Authentication (inc. MFA), Directory Services, Enterprise-reporting for employees, non-employees and customers.
* 8+ years of production support or related experience with IAM business processes, defining requirements, and implementing and recommending control-based business processes.
* 8+ years' experience in providing technical expertise in systems, technical infrastructure, tools, modelling, external interfaces, and other technical areas. Completes complex development, design, implementation, architecture design specification, and maintenance activities. Participating in projects and initiatives working with IAM team members, architecture, development and engineering teams, service owners, and business stakeholders to provide enterprise IAM solutions that are scalable and adaptable with the ever-changing business needs and industry demands.
* 8+ years' experience in Authentication products including Azure AD, Active Directory, role-based access control, multi-factor authentication, and SSO & related standards (e.g., SAML, OAUTH, NTLM, LDAP, Kerberos, PKI, etc.) is must.
* 8+ years of engineering, production and operational support (or related experience) with PAM business processes, defining requirements, and implementing and recommending control-based business processes.
* Experience working with both multiple 3rd party service providers and in a third-party services agreement function during separations/divestitures.
* Strong interpersonal skills, with the ability to work with many levels of management and across multiple lines of business and corporate functions.
* 8+ years of working with regulatory requirements (SOX, SOC1, NYDFS, PCI, MAS, etc.) and industry standard frameworks and methodologies, including NIST (National Institute of Standards and Technology), Information Technology Infrastructure Library (ITIL), Systems Development Life Cycle (SDLC), etc.
* 8+ years working with 3rd parties providing management oversight of IAM services, technologies, processes, and controls.
* 8+ years' experience interpreting architecture, designs and business requirements to develop and implement IT security solutions that span multiple technologies, businesses and geographies.
* 8+ years advance understanding of business processes, internal control risk management, security and IT controls and related standards.
* 5+ years managing 20+ resources in a matrixed environment.
* 5+ years integrating applications and business services with IAM solutions.
* 5+ years of hands-on experience with platforms such as SailPoint, Okta, Ping, Quest (ARS, Change Auditor and Enterprise Reporter), Active Directory, AWS, Azure, Top Secret, ServiceNow, and related products.
* Experience with the following web technologies: XML, SPML/SOAP, Web and Application Servers, HTML.
* Demonstrated experience supporting many of the following platforms: Azure AD, OAM, ADFS, Windows, Linux, VMware, AWS, Azure, Oracle, MSSQL, MySQL, Sybase, Db2, ACF2, Tomcat, JBoss, WebSphere, WebLogic, and Apache.
* General knowledge of cryptography including RSA-ACE, ECC, 3DES, IDEA, AES256/1024, SEAL.
* 5+ years working with IaaS, SaaS, PaaS service providers (Azure, AWS, Google GCE, Salesforce).
* BA/BS degree in Computer Science, Engineering, or related discipline or equivalent work experience.
* Demonstrated experience with Databases (Oracle, MSSQL, MySQL).
* Experience with infrastructure, network, database, or security troubleshooting and remediation.
* Experience with operating system (Unix/Linux/Windows) commands and utilities as well as scripting.
* Experience with SIEM tool such as Splunk, with skills to detect and remediate security threats.
* Exposure to DevOps tools as Jenkins, GitHub, Dockers, Ansible, Kubernetes, etc. is a plus.
* Experience overseeing and supporting a 24x7 security operation (L1/L2/L3).
What our employees like most about working for Corebridge Financial
* We care about your professional development. Our career progression program will provide you with the opportunity to develop your skills, strengthen your productivity and be eligible to progressively advance to positions with an increased responsibility and increased compensation.
* Our Giving Back policy is at the core of our daily operations and guides our future progress. Don't believe us? We put our money where our mouth is! Corebridge Financial, will give you up to 16 hours a year paid time off to volunteer in the community.
* Our people are at the forefront of creating value for customers and stakeholders and therefore we provide a generous benefits plan and competitive pay. Benefit package includes:
* Paid Time Off (Corebridge Financial recognizes the importance of work life balance). We offer 24 PTO days to start. YES, 24! 17 paid holidays per calendar year.
* A 401(k) Retirement Plan which will be HARD TO BEAT. Our 401K - $1 for $1 match up to 6% with immediate vesting, plus Corebridge Financial automatically contributes an additional 3% into your 401K regardless of if you enroll or not.
For positions based in Woodland Hills, CA and Jersey City, NJ the base salary range is $150,000 to $185,000 and the position is eligible for a bonus in accordance with the terms of the applicable incentive plan. In addition, we're proud to offer a range of competitive benefits.
#LI-SAFG #LI-CW1
#LI-Hybrid
We are an Equal Opportunity Employer
Corebridge Financial, Inc., its subsidiaries and affiliates are committed to be an Equal Opportunity Employer and its policies and procedures reflect this commitment. We provide equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories such as sexual orientation. At Corebridge Financial, we believe that diversity and inclusion are critical to our future and our mission - creating a foundation for a creative workplace that leads to innovation, growth, and profitability. Through a wide variety of programs and initiatives, we invest in each employee, seeking to ensure that our people are not only respected as individuals, but also truly valued for their unique perspectives.
To learn more please visit: www.corebridgefinancial.com
Corebridge Financial is committed to working with and providing reasonable accommodations to job applicants and employees with physical or mental disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to complete any part of the application or hiring process, please send an email to ...@corebridgefinancial.com. Reasonable accommodations will be determined on a case-by-case basis.
Functional Area:
IT - Information Technology
Estimated Travel Percentage (%): Up to 25%
Relocation Provided: No
American General Life Insurance Company