Vice President, Identity and Access Management in London

This role is within Corporate Technology's IT Security team at MUFG, responsible for leading Identity & Access Management (IAM) operations across the organization. It provides the technical capability to support execution of critical IAM processes, platform operations, vendor management, and strategic delivery.

Key Responsibilities

• Own and run end‐to‐end IAM operations to deliver reliable, secure, and scalable identity services across workforce and non‐human identities.
• Lead on IAM service delivery, automation and self‐service, and own day‐to‐day IAM operations across identity lifecycle (joiner‐mover‐leaver), access requests, and access fulfillment workflows.
• Run ITSM‐aligned operations: incident, problem, change, request, and knowledge management with clear escalation paths and on‐call readiness.
• Own operational communications: status updates, planned maintenance notices, user‐impact messaging, and post‐incident reviews with measurable corrective actions.
• Oversee operational stability and administration for IAM platforms and dependencies (e.g., SSO/MFA platforms, directories, IGA administration, ITSM workflows, HR source‐of‐truth, APIs/connectors).
• Lead audit and compliance execution for access controls: evidence collection, recertification operational execution, control testing support, remediation tracking, and sustained audit readiness.
• Establish an automation‐first operating model targeting removal of repetitive manual tasks and reduction of ticket volume across IAM workflows.
• Expand end‐user self‐service capabilities (request catalog, automated approvals, MFA recovery flows, identity and access status checks) to reduce Service Desk dependency.
• Implement a continuous improvement loop: analyze top ticket drivers, remove root causes, standardize processes, improve knowledge, and automate recurring issues.
• Own operational risk posture for IAM services including access outages, mis‐provisioning, privileged drift, toxic combinations, and non‐human identity sprawl.
• Ensure strong monitoring, alerting, and telemetry for IAM services and integrations, partnering with SecOps where needed (SIEM, logging, anomaly detection).
• Drive reduction in repeat incidents through disciplined root‐cause analysis, prevention, and engineering partnership.
• Build strong partnerships across Security, Infrastructure, HR, application owners, and enterprise service management teams.

Work Experience

• 12+ years of experience in IAM, security operations, or identity platform operations, with 5+ years leading teams and service delivery.
• Proven experience operating IAM services at enterprise scale (large user populations, many applications, multi‐region environments).
• Strong ITSM and operational management experience: incident/problem/change/request, SLAs/SLOs, metrics, and service health reporting.
• Demonstrated ability to manage third‐party SI partners and/or managed services with measurable outcomes (scorecards, SLAs, escalations, coverage models).
• Track record delivering automation and self‐service using workflows, APIs, and orchestration with tangible reductions in manual effort and ticket volume.
• Experience supporting audits and compliance requirements related to access controls (SOX, SOC2, ISO27001, PCI, or similar), including evidence production and remediation.
• Excellent stakeholder management and communication skills, including leading major incidents and delivering executive‐level updates.
• High ownership and operational rigor with a strong bias for action and measurable outcomes.
• Structured problem solving and disciplined root‐cause analysis with prevention mindset.
• Clear communicator under pressure with strong executive presence.
• Ability to balance reliability, security, and user experience while driving standardization.
• Talent builder who creates leaders and scales operating models globally.
• Strong prioritization and roadmap discipline across run, improve, and transform workstreams.
• Experience implementing privileged access operational controls, including emergency access, time‐bound access, and privileged session support coordination.
• Experience operating in complex environments (multiple directories/tenants, M&A integrations, directory consolidation, app migrations).
• Familiarity with Zero Trust principles and identity‐centric security patterns.
• Experience applying AI agents or AI‐assisted support in IT or security operations with strong governance and auditability.
• A sound understanding of Identity and Access Management processes and controls including external audit and SOX requirements.
• Experience with critical production server support, application upgrades and project lifecycle/SDLC processes.
• Good knowledge of control frameworks such as NIST, CRI, DORA, SOX.
• Excellent written and verbal communication skills.

Education

• Degree level required; CISSP, CISM, or equivalent professional qualifications desirable.

Skills and Experience

• Proven experience with running and managing leading IAM platforms (Saviynt, Sailpoint, EntraID, AD, etc.).
• Strong IAM domain knowledge: JML, authorization, lifecycle management, RBAC/ABAC concepts, and access governance fundamentals.
• Strong understanding of Identity Governance and Administration (IGA), including RBAC and entitlement management.
• Experience with application onboarding and integration through AD/Entra, REST/SCIM, database, SAP, and other Connector frameworks, plus disconnected application integration patterns for access governance.
• Experience integrating into authoritative sources in HR and other systems including Workday.
• Creation of self‐service IAM forms, process automation, and integration with ITSM tools such as ServiceNow.
• Integration methodologies and tools (Informatica, Azure API Gateway, Mulesoft, etc.).
• Proficiency in database technologies (preferably Oracle), LDAP, Active Directory, and scripting languages (SQL, Java, PowerShell, or Python).
• Advanced hands‐on experience with RSA Governance & Lifecycle.
• Identity Access Management on public cloud platforms such as AWS, GCP, Azure.
• Network concepts and understanding of networking devices.

Preferred

• Knowledge of Privileged Access Management principles, processes, and tools.
• Experience applying AI agents or AI‐assisted support in IT or security operations with strong governance and auditability.
• Exposure to cloud identity patterns (AWS, Azure, GCP) and CI/CD access models.
• Financial services experience (bonus).
• Experience with financial regulations, compliance, and standards.

Personal Requirements

• Excellent communication skills.
• Results driven with a strong sense of accountability.
• Proactive, motivated approach.
• Ability to operate with urgency and prioritise work accordingly.
• Strong decision‐making skills and sound judgement.
• A structured and logical approach to work.
• Strong problem‐solving skills.
• A creative and innovative approach to work.
• Excellent interpersonal skills.
• Ability to manage large workloads and tight deadlines.
• Excellent attention to detail and accuracy.
• A calm approach, performing well in a pressurised environment.
• Excellent Microsoft Office skills.
• Desirable: proactive, motivated, self‐managing approach.

EEO and Diversity Statement

MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership. We make our recruitment decisions in a non‐discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.

Flexible Working

We are open to considering flexible working requests in line with organisational requirements.