Primary DetailsTime Type: Full time
Worker Type: Employee
Manage the Global Identity & Access Management function in providing effective access controls to ensure adequate protection of QBE data and resources. Manage and support the Global Identity & Access management strategy, delivering transformation changes required to implement the strategy and to implement target operating models for Identity & Access management at QBE. Responsible for ensuring leadership and oversight on audits, projects and larger initiatives requiring risk assessment, process, and technical expertise. Ensure the delivery of Identity & Access management to agreed targets and SLAs, including key aspects such as customer service, quality, cost effectiveness and turnaround times through the ongoing assurance of best practice Identity & Access management, globally.
Primary Responsibilities
• Ensure team compliance with QBE processes/procedures and key controls as required to minimize risk and meet audit requirements
•Support the business ensuring focused support is provided to increase business efficiency and continuity.
•Assist in driving the implementation of Identity & Access project plans, resource-plans and team budget for the year.
•Own and manage implementation and maintenance of all access management and security-related processes and procedures; provide recommendations around policies, standards, procedures, regulatory compliance, and best practices; identify opportunities for improvement and/or update.
•At all times, pro-actively identify opportunities to improve Identity & Access service delivery
•Build and maintain strong, effective relationships with business customers and teams to ensure service delivery meets expectations.
•Advocate a strong risk and compliance culture
•Ensure compliance with QBE processes/procedures and key controls as required to minimize risk and meet audit requirements
•Work with internal and external audit teams to execute against requested deliverables in
•support of regular audits, as well as implementing of remedial actions on time to mitigate risk identified by audit
•Ensure intake demand is managed through Company request and incident management system and appropriate levels of work are assigned to team members
•Manage facilitation of access removal due to re-certification/re-validation processes on periodic basis (monthly, quarterly, annually, etc.) for in-scope applications and systems based on risk, audit and business owner direction
•Hold responsibility for ensuring the team meets defined SLAs and other key measures, appropriately delegating workloads to ensure compliance
•Seek opportunities to automate routine tasks wherever possible
•Maintain and enhance customer relationships to support and manage client expectations and understanding
•Positively promote the department and company as a whole, to maximize brand leverage
•Build positive, open, and constructive relationships with key stakeholders, working in partnership to ensure service delivery meets current and future business needs, managing customer expectations as necessary.
•Actively develop and foster a proactive, service-orientated culture within own team, wider Technology Services, and any third-party supplier teams
•Support the development and fostering of a proactive, service-orientated culture within the department and drive service improvements to ensure access management services meet and exceed customer expectations.
•Act as a point of ultimate escalation for customer complaints to ensure these are effectively managed and resolved
•Manage Identity & Access service operations to ensure that SLAs are met and that KPIs are tracked
•Monitor and report Identity & Access service performance
•Ensure best practice operational management is undertaken including knowledge management, customer satisfaction monitoring and continuous improvement
•Assist in driving the harmonization of user access management tooling across regions and decommission any current tool sets that become redundant as a result
•Develop and produce accurate management and operational recording and reporting mechanisms to enable effective decision making and action
•Align, motivate and mentor team members across the global Identity & Access Management organisation to deliver services & initiatives and improve quality
•Actively manage the Identity & Access Management talent pool to grow future capability
•Drive and foster a culture of continuous improvement, motivation, collaboration, empowerment, and entrepreneurship within the team
•Improve Identity & Access Management performance through optimal allocation and management of resource delivering global initiatives; streamline roles and responsibilities and provide cross-region support
•Promote individual accountability through an ongoing performance management approach that aligns personal performance objectives with strategic, departmental and team goals
•Ensure proper maintenance of the centralized Knowledge Management Tool to support the training and development of team members and enhance sharing of information.
•Develop and produce accurate management and operational recording and reporting mechanisms to enable effective decision making and action.
•Ensure effective technical resolution to access-related queries/issues, including appropriate execution of defined control activities and procedures, minimizing business disruption.
Required Education
• Bachelor's Degree or equivalent combination of education and work experience
Required Experience
• 6 years relevant experience
Preferred Competencies/Skills
• Excellent customer relationship management skills, capable of establishing and maintaining relationships across the business
•Confident and credible, capable of offering insightful commentary and advice both to the business and peers and team members
•Excellent communications skills - both verbal and written
•Leadership skills - ability to motivate, empower and engage employees
•Ability to manage expenditures to budget
•Ability to understand needs and proactively manage customer expectations
•Assume Methodical approach to evaluate situations
•Able to communicate information in a clear, well-organized, and user-friendly, professional manner
•Outstanding customer service focus
•Ability to work with all levels of the organization
•Evaluation of processes to conduct current state gap analysis against desired future state; identify and recommend opportunities for continuous improvement, integration and synergy.
•Adjust plans, goals, actions or priorities to meet changing situations; maintain composure and flexibility and guide others through change.
•Anticipate obstacles and challenges; identify root cause and strategize plans to address.
•Share knowledge and educate others
•Experience with Active Directory, RACF and other access management tools/systems
Preferred Education
• Bachelor's Degree or equivalent combination of education and work experience
Preferred Experience
• Previous people management experience
•Working in demanding, fast-paced environment
•Experience interviewing others on technical or functional requirements within complex, global, multi-platform environment
•Previous experience in IT Infrastructure or Applications
•Experience with user access management, including segregation/separation of duties (SoD) concept
•Project management and/or business analyst level role within complex multi-platform environment
Preferred Licenses/Certifications
• Certified in Risk and Information Systems Control (CRISC)
•Cybersecurity and Infrastructure Security Agency (CISA)
•Certified Information Systems Security Professional (CISSP)
Preferred Knowledge
• Understanding of applicable regulatory requirements, policy and standards best practice
•Good understanding of relationship management and the skills and techniques used to establish and maintain key relationships
•Experience with identity and access management; experience with Active Directory, RACF and other access management tools/systems
•Strong Service background and ability to translate technical terms in phrases understood by the business customer
•Knowledge of External and Internal Audit, SOC1, and other access control reviews
•Working knowledge of Regulatory regimes in all territories in which QBE operates
•Previous people management experience, and experience in IT Service Delivery, Identity & Access Management, including segregation/separation of duties (SoD) concept
•Working in demanding, fast-paced environment
•Experience interviewing others on technical or functional requirements within complex, global, multi-platform environment
QBE Cultural DNA
• Everything we do at QBE is underpinned by our DNA (which interlinks seven cultural elements) – because we know it's not just what we do that matters, it's how we do it that makes the difference. We expect all employees to role model and inspire the right behaviours that link to our cultural elements:
•We are customer-focused
•We are technical experts
•We are inclusive
•We are fast-paced
•We are courageous
•We are accountable
•We are a team
•All employees are expected to adhere to QBE’s Code of Ethics and Conduct and apply sound risk management practices
US Only - Disclaimer
• To successfully perform this job, the individual must be able to perform each essential job responsibility satisfactorily. Reasonable accommodations may be made to enable an individual with disabilities to perform the essential job responsibilities.
Job Type
• Manager
Global Disclaimer
• The duties listed in this job description do not limit the assignment of work. They are not to be construed as a complete list of the duties normally to be performed in the position or those occasionally assigned outside an employee’s normal duties. Our Group Code of Ethics and Conduct addresses the responsibilities we all have at QBE to our company, to each other and to our customers, suppliers, communities and governments. It provides clear guidance to help us to make good judgement calls.
How to Apply:
To submit your application, click "Apply" and follow the step by step process.
Equal Employment Opportunity:
QBE is an equal opportunity employer and is required to comply with equal employment opportunity legislation in each jurisdiction it operates.
What We Do
QBE Insurance Group is one of the world's top 20 general insurance and reinsurance companies, with operations in all the key insurance markets. QBE is listed on the Australian Securities Exchange and is headquartered in Sydney. We employ more than 11,000 people in 27 countries.