Vice President, Identity and Access Management

An exciting opportunity is available to join this group for a senior experienced leader with a technical background in Identity & Access Management. They will lead the team and provide the technical capability to support the execution of critical IAM processes across MUFG, including platform operations, maintaining overall service health, managing vendors, and driving strategic delivery. The team handles day‑to‑day management of all Identity & Access Management needs of the business and coordinates closely with HR, IT Risk, Compliance, and Infrastructure teams. All technical documentation and platform standards are kept up to date, and the technical direction and strategy are continuously developed and enhanced.

Main Purpose of the Role

This senior leader will provide the technical and operational oversight required to deliver reliable, secure, and scalable identity services across workforce and non‑human identities. The role requires a strong team player, self‑starter, and mentor who can articulate complex technical matters in plain English and drive improvements and future platform opportunities.

Key Responsibilities

• Own and run end‑to‑end IAM operations to deliver reliable, secure, and scalable identity services across workforce and non‑human identities.
• Lead on IAM service delivery, automation and self‑service.
• Own day‑to‑day IAM operations across identity lifecycle (joiner‑mover‑leaver), access requests and access fulfillment workflows.
• Run ITSM‑aligned operations: incident, problem, change, request, and knowledge management with clear escalation paths and on‑call readiness.
• Own operational communications: status updates, planned maintenance notices, user‑impact messaging, and post‑incident reviews with measurable corrective actions.
• Oversee operational stability and administration for IAM platforms and dependencies, including SSO/MFA platforms, directories, IGA administration, ITSM workflows, HR source‑of‑truth, APIs/connectors.
• Lead audit and compliance execution for access controls: evidence collection, recertification operational execution, control testing support, remediation tracking, and sustained audit readiness.
• Establish an automation‑first operating model targeting removal of repetitive manual tasks and reduction of ticket volume across IAM workflows.
• Expand end‑user self‑service capabilities (request catalog, automated approvals, MFA recovery flows, identity and access status checks) to reduce Service Desk dependency.
• Implement a continuous improvement loop: analyze top ticket drivers, remove root causes, standardise processes, improve knowledge, and automate recurring issues.
• Own operational risk posture for IAM services including access outages, mis‑provisioning, privileged drift, toxic combinations and non‑human identity sprawl.
• Ensure strong monitoring, alerting, and telemetry for IAM services and integrations, and partner with SecOps where needed (SIEM, logging, anomaly detection).
• Drive reduction in repeat incidents through disciplined root cause analysis, prevention, and engineering partnership.
• Build strong partnerships across Security, Infrastructure, HR, application owners, and enterprise service management teams.

Work Experience - Essential

• 12+ years of experience in IAM, security operations, or identity platform operations, with 5+ years leading teams and service delivery.
• Proven experience operating IAM services at enterprise scale (large user populations, many applications, multi‑region environments).
• Strong ITSM and operational management experience: incident/problem/change/request, SLAs/SLOs, metrics, and service health reporting.
• Demonstrated ability to manage third‑party SI partners and/or managed services with measurable outcomes (scorecards, SLAs, escalations, coverage models).
• Track record delivering automation and self‑service using workflows, APIs, and orchestration with tangible reductions in manual effort and ticket volume.
• Experience supporting audits and compliance requirements related to access controls (SOX, SOC 2, ISO 27001, PCI, or similar), including evidence production and remediation.
• Excellent stakeholder management and communication skills, including leading major incidents and delivering executive‑level updates.
• High ownership and operational rigor with a strong bias for action and measurable outcomes.
• Structured problem solving and disciplined root cause analysis with prevention mindset.
• Clear communicator under pressure with strong executive presence.
• Ability to balance reliability, security, and user experience while driving standardisation.
• Talent builder who creates leaders and scales operating models globally.
• Strong prioritisation and roadmap discipline across run, improve, and transform workstreams.
• Experience implementing privileged access operational controls, including emergency access, time‑bound access, and privileged session support coordination.
• Experience operating in complex environments (multiple directories/tenants, M&A integrations, directory consolidation, app migrations).
• Familiarity with Zero Trust principles and identity‑centric security patterns.
• Experience applying AI agents or AI‑assisted support in IT or security operations with strong governance and auditability.
• A sound understanding of Identity and Access Management processes and controls including external audit and SOX requirements.
• Experience with critical production server support, application upgrades and project lifecycle/SDLC processes.
• Good knowledge of control frameworks such as NIST, CRI, DORA, SOX.
• Excellent written and verbal communication skills.

Work Experience - Preferred

• Knowledge of Privileged Access Management principles, process and tools.
• Experience applying AI agents or AI‑assisted support in IT or security operations with strong governance and auditability.
• Exposure to cloud identity patterns (AWS, Azure, GCP) and CI/CD access models.
• Financial Services experience a bonus.
• Experience of Financial regulations, compliance and standards.
• Must have experience supporting a Global Organisation (10,000 users+).

Education

• Educated to degree level.
• CISSP, CISM, or equivalent professional qualifications desirable.

Skills and Experience - Essential

• Proven experience with running and managing leading IAM platforms (Saviynt, Sailpoint, Entra ID, AD, etc.).
• Strong IAM domain knowledge: JML, authorisation, lifecycle management, RBAC/ABAC concepts, and access governance fundamentals.
• Strong understanding of Identity Governance and Administration (IGA), including RBAC (Role‑Based Access Control) and entitlement management.
• Experience with application onboarding and integration through AD/Entra, REST/SCIM, DB, SAP and other connector frameworks as well as disconnected application integration patterns for application access governance.
• Experience with integration into authoritative sources in HR and other, including Workday.
• Experience in creation of self‑service IAM forms, process automation and integration with ITSM tools such as ServiceNow.
• Experience with integration methodologies and tools (Informatica, Azure API Gateway, Mulesoft etc).
• Proficiency in database technologies (preferably Oracle), LDAP, Active Directory, and scripting languages such as SQL, Java, PowerShell, or Python.

Skills and Experience - Preferred

• Advanced hands‑on experience with RSA Governance & Lifecycle.
• Identity Access Management on Public Cloud such as AWS, GCP, Azure.
• Network concepts and understanding of networking devices.

Personal Requirements

• Excellent communication skills.
• Results driven, with a strong sense of accountability.
• A proactive, motivated approach.
• The ability to operate with urgency and prioritise work accordingly.
• Strong decision‑making skills, the ability to demonstrate sound judgement.
• A structured and logical approach to work.
• Strong problem‑solving skills.
• A creative and innovative approach to work.
• Excellent interpersonal skills.
• The ability to manage large workloads and tight deadlines.
• Excellent attention to detail and accuracy.
• A calm approach, with the ability to perform well in a pressurised environment.
• Excellent Microsoft Office skills.

Desirable

• A proactive, motivated approach, self‑managing.
• Going above and beyond core duties of the role.

Flexible Working

We are open to considering flexible working requests in line with organisational requirements.

Equality, Diversity and Inclusion Statement

MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership. We make our recruitment decisions in a non‑discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.