Ameris Bank is a purpose-driven company, dedicated to bringing financial peace of mind to communities, one person at a time. Whether a customer wants to grow their business, buy a home, or feel confident in their retirement plan, they have a partner in Ameris Bank. We serve customers in our locations across the Southeast, Mid-Atlantic and nationwide through our extensive digital offerings and mobile app.

Delivering financial peace of mind starts with a team that values integrity and rewards ingenuity. At Ameris, you'll find teammates who are inclusive, collaborative problem-solvers who go the extra mile to support one another and to meet every customer's needs. When teammates are empowered and bring their diverse perspectives to the table, we create the best possible outcomes for our customers. At Ameris, we know that a growth mindset is key for high performance and fosters an environment that prioritizes continuous improvement. Teammates have access to Employee Resource Groups that serve as advocates and allies as well as professional development opportunities to drive ongoing education. Learn more about our purpose and how you can bring it to life as an Ameris Bank teammate.

The Identity and Access Management (IAM) Director is responsible for developing and leading the evolution and automation of the Identity and Access Management (IAM) program, by leveraging key technologies and IAM best practices. Oversees the IAM strategy, implementation, and operationalization of IAM technology and processes. Oversee resolution of operational issues with IAM technology and processes. Other duties as assigned.

Essential Functions, Duties, and Responsibilities:
• Define, select and guide IAM technology and process integrations
• Manage the projects and tasks coordination related to IAM technology, processes
• Utilize effective people leadership and influencing skills to successfully carry out IAM and the overall Cybersecurity mission
• Establish, document, and communicate IAM services, capabilities, policies, and procedures to key IAM stakeholders and consumers.
• In concert with Security Architecture & Engineering, establish, build out and oversee the IAM function and its related activities including planning, testing, reporting, and delivering IAM services
• Manage a staff of access management professionals, which includes but is not limited to, recruiting, hiring, and training new staff, conducting performance reviews, and providing leadership and coaching for team members
• Ensure IAM systems are adequate, maintained, backed up and supported
• Ensure processes for access provisioning and access certifications are consistent and repeatable
• Manage and coordinate IAM projects to mitigate threats and risks to the organization's operations, assets, and data
• Ensure information security systems are functional and maintained
• Responsible for managing the Information Security personnel, projects, and tasks

Required Knowledge, Skills and Competencies:
• Demonstrate extensive understanding of IAM concepts such as directory services, SSO, federation, MFA, provisioning, access re-certification, role-based access control (RBAC) and separation of duties (SOD).
• Functional areas and work experience should include fine-grained access control, policy driven security, Identity Governance, Access Management, and Privileged access management, user provisioning/de-provisioning, and federation.
• Expertise in of Active Directory and/or LDAP management, AzureAD, SSO across multiple domains, MFA, Identity Governance
• Expertise in implementing IGA / IAM tools such as Sailpoint, Microsoft Identity Manager or CA-IDM
• Expertise in and/or experience with PAM tools
• Develop and administer IAM security policies, standards, and procedures to protect information assets.
• Identify, recommend, and implement corrective actions in response to security violations.
• Perform security assessments to determine vulnerabilities in identity and access management systems and applications.
• Serve as the central point of contact for information security and IAM policy and process related issues.
• Partner with HR for seamless onboarding and offboarding.
• Establishing and producing metrics and KPIs.
• Support Governance, Risk & Compliance (GRC) and Disaster Recovery (DR) efforts and initiatives.
• Stay abreast of industry trends, solution landscape and market conditions and update peers and management accordingly
• Knowledge of Information Security methods and procedures.
• Knowledge of Cyber Security offensive and defensive security controls
• Excellent oral and written communication skills.
• Takes a professional approach relating to others, treats others with consideration and respect regardless of employee level.
• Ability to adapt and manage frequent change, delays, or unexpected events.
• Knowledge of methods for evaluating, implementing, and disseminating IT security procedures
• Uses good judgement while making decisions on Information Security

Industry and Work Experience:
• 3+ years of management experience in Information Security or related field
• 5+ years of Information Security hands-on technical experience
• PREFERRED EXPERIENCE: Red Team (offensive security testing) oversight experience, Blue Team (defensive security testing) oversight experience, IAM (Identity and Access Management) oversight experience

Academic:
• High school diploma or GED required
• Bachelors degree preferred.
• Cyber Security certifications preferred, such as from certification groups such as GIAC (SANS), ISACA, Offensive Security, ISC, EC-Council or related IAM certifications

Disclaimer:

The above job description is meant to describe the general nature and level of work being performed; it is not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required for the position.

All job requirements are subject to possible modification to reasonably accommodate individuals with disabilities. Some requirements may exclude individuals who pose a direct threat or significant risk to the health and safety of themselves or other employees.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)