Identity and Access Management Engineer, Assistant Vice President

Who we are looking for

The State Street Identity and Access Management team is looking for outstanding individuals with excellent intellectual and analytical capabilities, entrepreneurial problem‑solving skills, strong communications, and influencing capabilities.

This role will have a broad range of responsibilities of IAM and CIAM security design and resiliency changes with aggressive execution timelines.

As an IAM Security Engineer, you will be part of the IAM team designing security solutions for scale and building zero trust building blocks to enhance end‑to‑end layered security maturity. You will be advising on SSO configurations and MFA implementation across a variety of authentication scenarios and supporting the underlying infrastructure.

• Be part of long‑term security strategy development and execution across authentication solutions (Entra , RSA, Forge Rock)
• Help define and identify use cases and IAM requirements for business evolving direction from private, public, hybrid cloud, and partners directions.
• Integrate new and existing applications with SSO (SAML, OIDC) with MFA Evaluate technology products/services that align with the roadmap supporting evolving business IAM demands.
• Remediate vulnerabilities for RSA Authentication Manager and RSA Cloud solutions
• Provide and maintain metrics for reporting related to compliance and onboarding as needed.

• Work closely with line management responsible for executing change; define associated change management imperatives and required resources.
• Work closely with functional areas at State Street to develop plans and materials related to standardized security non‑functional requirements and validation process.
• Participate in IAM design process governance processes, ensuring regular communication and coordination of initiatives across the cross‑functional teams.

• Deliver scalable IAM solutions aligned with Zero trust building blocks, scalable, resilient cyber services architecture, and monitoring infrastructure. To enable Street to have a world‑class capability to effectively address the Bank's growing business operations' increasingly complex and rapidly evolving security needs.
• Strong communication skills to promote critical wins and new behaviors throughout the organization
• Collaborative work style with the ability to effectively interact with and earn the trust of peers, CTO, development teams across the organization
• Self‑starter with a keen sense of ownership and commitment to work, and passion for delivering results.

• Familiarity with MFA, privileged access management and conditional access controls.
• Fundamental understanding of Entra  traditional MFA platforms (e.g. RSA)
• Familiarity with core identity protocols: SAML, OIDC, and OAuth 2.0
• Comfortable working in a Linux environment for basic server administration and log analysis.
• Experience in patching/managing vulnerabilities

As an Equal Opportunity Employer, we consider all qualified applicants for all positions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship, marital status, domestic partnership or civil union status, familial status, military and veteran status, and other characteristics protected by applicable law.