IAM Manager (Remote)

Serving the needs of all families with young children, Carter’s Inc. is the largest North American apparel retailer exclusively for babies and young children, encompassing Carter’s, OshKosh B’gosh, Skip*Hop and Little Planet brands. Meaningful work, constant learning, genuine people, and a community guided by core values that promote inclusion and innovation is in everything we do. There are many reasons to build your career at Carter's.

How You'll Make an Impact:

The Identity Access Manager reports to the Senior Director of Information Security Services and is responsible for designing, configuring, implementing, optimizing, and supporting identity access management solutions approved by Security Management. Additionally, this person will provide guidance to an identity access management team in support of the overall business goals of Carter’s.  

This will be a hands-on management position while providing guidance and support to our identity access management team, managing the enterprise space security/IAM. This includes administration and operations of all related IAM & PAM tools and services. Supporting the Sr. Director with vendor contracts tracking and management is expected in this role.  This position is also responsible for researching, interacting, coordinating, and recommending information security solutions with best-in-class vendor partners.

      This role typically reports to the Senior Director, IT Security, with two (2) direct reports.

While Remote, this role works off of an EST-based calendar and may require travel for high-priority meetings.

Role Breakdown

      Design, Engineering & Managing (50%)

• Provide subject matter expertise on all identity security solutions including Identity Access Management (IAM) including life cycle management (LCM), Identity Governance and Administration (IGA), Privileged Access Management (PAM).

• Lead a team of Identity Access Management engineer/s and analyst/s, providing guidance, mentorship including annual performance reviews.

• In depth knowledge and hands-on experience in all stages of the identity security lifecycle to include design, configuration, implementation, on-going support, and documentation.

• Partner with external, business and IT partners and stakeholders on application onboarding, process development and training.

• Monitor developments and trends in the IAM space, participate in Proof-of-Concept solution evaluations.

• Recommend best practices and optimization opportunities to reduce risk and mature the company’s IAM program.

• Working knowledge with various security tools and services including active directory, secure email gateway, SIEM, end-point protection, vulnerability management, certificate management, threat hunting, application security, network security, automation, sandboxing and isolation technologies; AWS and Azure cloud a plus.

Support & Operations (40%)

• Create groups in IAM tool, assigning permissions to applications, deploying MFA/SSO to applications in partnership with application owners.

• Troubleshoot permissions tickets and supporting the identity access management engineer.

• Perform on-call duties by responding to and investigating security alerts, events, and notifications.

• Assist and/or lead on upgrades of various identity access management services & tools, including IAM and PAM.

Administrative / Documentation (10%)

• Develop procedural, design, and configuration documentation.

• Develop, review, and report metrics and KPIs.

• Assist in the review and revision of security-related policies.

• Schedule QBR’s, maintain relationships with various IAM vendors, and assist with preparation for renewals.

• Develop and maintain workflows for user provisioning, de-provisioning, and access controls that integrate with other identity management supporting platforms.

We’d Love to hear from you if:

Must have:

• Extensive experience with OKTA, Ping, OAM, IBM Security Verify Access, RSA, SecureAuth, or similar product, is required.

• 5 years of Identity Access Management experience

• Led multiple deployment efforts for single sign-on and multi-factor authentication

• Managed and provided administration of privileged access management tool

• Integration of identity access management and HR ERP platform for the purposes of IAM automation, life-cycle management (LCM)

Preferred skills and experience:

• Deployed and integrated single-sign-on (SSO) and multi-factor authentication (MFA) at large enterprises

• Budget management experience

• Required to brief senior management in the event of security incidents or breach

• Understands and supports the Company’s goals and objectives, and makes certain that his/her actions and decisions are consistent with them.

• Proven experience leading committees or sub-committees related to security, compliance, privacy, or risk in the organization

• Understands DR planning and execution, and is able to influence IT infrastructure, IT application, and business owners on DR planning and practices.

• Very strong written and verbal skills and influence to interact effectively with all levels of leadership, board members, IT staff, vendors, auditors, third-party business application providers, and other parties impacting the company’s security state

• Bachelor’s degree- preferred, also preferred area of study; Computer Science or related field

• Management or engineer experience in the Retail industry, preferred

OUR Team Members:

• Lead Courageously: Have a strong sense of personal values that align with our Company values

• Collaborates Broadly: Build cooperation, trust, and thrive in a consensus driven environment

• Customer Focus: Proactively seek opportunities to leverage data and fact-based insights to serve customers and/or internal clients

• Drive Growth: Set aggressive goals and implement plans precisely

• Cultivates Innovation:  Respectfully challenge the "we’ve always done it this way" mentality and explore new ways to achieve desired outcomes

Make a Career at Carter’s:

• Career Development: Success starts from within, and we have several paths from which you can choose to enhance your career evolution. From Carter’s University to Toastmasters to mentorship programs and more, we encourage you to utilize these tools to elevate your professional prowess.

NOTE:  This job description is not intended to be all-inclusive. The duties described may be changed or reassigned at the discretion of management, and the employee may be required to perform duties that are not listed in the job description.

#LI-Remote

Carters is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity, sexual orientation, national origin, genetics, disability, age, veteran status, or any other status protected by federal, state, or local law.