This onsite position needs to be based out of Buffalo, NY and will have flexibility to work from home one day a week. Relocation package provided.
Senior Manager – Workforce Identity & Access Management (WIAM)
Overview
M&T Bank is seeking an experienced and innovative cybersecurity leader to serve as Senior Manager of Workforce Identity & Access Management (WIAM). This role is responsible for leading the strategy, governance, execution, and continuous evolution of the Bank's workforce identity and access management capabilities.
The Senior Manager will oversee multiple WIAM functions and teams responsible for IdP platforms, access lifecycle management, privileged access management, secrets management, identity controls, application onboarding, access certifications, and regulatory compliance. This position plays a critical role in protecting the Bank's digital assets while enabling secure business growth, operational efficiency, and regulatory adherence.
The ideal candidate will possess deep expertise in Identity and Access Management (IAM), strong leadership capabilities, and experience driving enterprise-scale transformation initiatives within a highly regulated financial services environment.
Primary Responsibilities
Lead the development and execution of the Bank's Workforce Identity & Access Management strategy and roadmap, ensuring alignment with Cybersecurity, Technology, Risk Management, and enterprise business objectives.
Provide executive leadership for identity Provider (IdP) engineering capabilities, including access provisioning, access recertifications, role-based access controls, entitlement management, segregation of duties, and identity lifecycle processes.
Drive ongoing modernization and automation of identity services, reducing operational risk while improving the user experience and efficiency of workforce access management processes.
Lead strategic initiatives to expand centralized identity governance capabilities and reduce reliance on decentralized access management processes through enterprise application onboarding and automation efforts.
Oversee IdP platforms and services supporting the underlying technical platforms and processes as well as integrations to the IAM platforms supporting joiner, mover, leaver (JML), access request workflows, certification campaigns, entitlement governance, and reporting.
Provide strategic leadership for Privileged Access Management (PAM) platforms from both a platform and process perspective. This includes privileged account governance, credential vaulting, privileged session controls, secrets management, and administrative access monitoring.
Ensure adherence to the principles of least privilege, segregation of duties, and role-based access control while maintaining strong governance over privileged and non-privileged access.
Partner with Technology, Enterprise Architecture, Infrastructure, Application Development, Technology Risk Management, Audit, Compliance, and Information Security teams to strengthen enterprise identity controls and drive security-by-design practices throughout the application lifecycle.
Develop, monitor and evaluate key risk indicators (KRIs), key performance indicators (KPIs), audit findings, management action plans, and control effectiveness metrics to proactively identify, assess, and mitigate risk.
Provide oversight of centralized and decentralized IAM control frameworks, ensuring consistent application of policies, standards, and procedures across the organization.
Collaborate with cybersecurity engineering and architecture teams to evaluate emerging technologies and implement innovative identity security solutions that align with the Bank's strategic objectives.
Partner with Cyber senior leadership and Finance to direct business and financial resources effectively based on risk assessments, strategic priorities, and organizational objectives.
Lead strategic initiatives across Cybersecurity that drive continuous improvement, operational excellence, scalability, and risk reduction.
Leverage industry knowledge and expertise to establish best practices, influence cybersecurity policy development, and ensure continued compliance with applicable laws, regulations, and industry standards.
Represent the organization in regulatory engagements, cybersecurity forums, and industry working groups as appropriate.
Create a strong workforce strategy to meet business needs, including mentoring and coaching leaders, succession planning, talent development, workforce forecasting, and fostering a culture of innovation, accountability, and continuous learning.
Exercise usual authority of a manager concerning staffing, performance appraisals, promotions, salary recommendations, performance management, and terminations.
Understand and adhere to the Company's risk and regulatory standards, policies, and controls in accordance with the Company's Risk Appetite. Design, implement, maintain, and enhance internal controls to mitigate risk on an ongoing basis. Identify risk-related issues requiring escalation to senior management.
Promote an environment that supports belonging and reflects the M&T Bank brand.
Maintain M&T internal control standards, including timely implementation of internal and external audit findings, management action plans, and regulatory commitments.
Complete other related duties as assigned.
Education and Experience Required:
Bachelor's degree and a minimum of 9 years’ relevant work experience, or in lieu of a degree, a combined minimum of 13 years’ higher education and/or work experience.
Demonstrated expert knowledge of Cybersecurity Identity & Access Management principles.
Minimum of 8 years’ work experience in/with the specific cybersecurity function.
Minimum 3 years’ managerial experience
Skills Required
- Bachelor's degree or a combined minimum of 13 years of higher education and/or work experience
- Minimum of 9 years' relevant work experience
- Demonstrated expert knowledge of Cybersecurity Identity & Access Management principles
- Minimum of 8 years' work experience in/with the specific cybersecurity function
- Minimum of 3 years' managerial experience
M&T Bank Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about M&T Bank and has not been reviewed or approved by M&T Bank.
-
Retirement Support — Retirement benefits are positioned as a strong pillar, including a 401(k) match and the possibility of an additional employer contribution, plus access to an employee stock purchase plan.
-
Leave & Time Off Breadth — Time-off offerings are framed as competitive, with a flexible PTO approach and paid volunteer time called out as a meaningful add-on to standard leave.
-
Wellbeing & Lifestyle Benefits — Wellbeing support appears comparatively robust, highlighted by mental-health therapy/coaching sessions and broader wellness programming alongside community-oriented perks.
M&T Bank Insights
What We Do
M&T Bank is a multi-state community-focused bank serving New York, Maryland, New Jersey, Pennsylvania, Delaware, Connecticut, Virginia, West Virginia and Washington, D.C. Founded in 1856, the company provides banking, investment, insurance and mortgage financial services to more than 3.6 million consumer, business and government clients.
.png)






