Work for the IMF. Work for the World.
The Information Technology Department (ITD) at the IMF is more than just a support function; it is a critical catalyst for change. We champion the seamless integration of cutting-edge technology solutions, ensuring the IMF's mission is propelled by innovation and efficiency. Our commitment is to:
Maintain and elevate the performance of pivotal IT systems and infrastructure.
Fortify and mature the IMF’s cybersecurity posture, safeguarding the integrity and resilience of global financial and economic systems.
Align IT initiatives with the IMF's strategic objectives, maximizing the impact of technology on global economic policies.
Deliver unparalleled value, optimizing the blend of quality, cost-effectiveness, and stakeholder satisfaction in every project.
Empower the IMF's business technology strategy, ensuring it aligns with both current needs and future visions.
A CALL TO ACTION FOR CYBERSECURITY PIONEERS
As we expand our capabilities, we seek experts in cybersecurity ready to dive deep into the complexities of capabilities that enable global finance and economics. Your expertise is vital in securing the future of international economic stability.
Job Summary
The Information Technology Department (ITD)’s Infrastructure and Operations (IO) division of the International Monetary Fund (IMF) is seeking to fill a Product/Platform Security Engineer (Identity and Access Management).
Under the general supervision of the Section Chief- Cybersecurity Platforms, this role will be responsible for managing the Fund’s Enterprise IAM platforms and working closely with the IAM stakeholders, including Information Security, Architects/Engineers, Human Resources and other Fund Departments.
Primarily, the candidate will lead the engineering, implementation and operations of Identity Governance and Administration and Privileged Access Management services. Additional responsibilities will include managing other IAM services, such as Access Management, PKI, ABAC, SSO, Azure Entra ID, B2B, B2C, etc.
Major Duties and Responsibilities
1. Engineer, implement and maintain identity and access lifecycles (RBAC, ABAC, provisioning, recertifications, reconciliations, etc.). Design and implement IAM process flows and use cases that are pragmatic, user friendly, and meet the IMF’s security and privacy policies, standards and architectural principles.
2. Work closely with the IAM Governance Lead, translate IAM business requirements to functional and technical IAM requirements, and support IAM governance activities.
3. Support the Section Chief in developing and implementing effective IAM processes and an operating model. Manage the IAM operations teams comprising contractors and MSP personnel ensuring timely delivery of key services.
4. Simplify and manage the lifecycle of digital identities for staff, vendors, managed service providers and other contractual types.
5. Manage the security, availability (HA and DR), and performance of the IMF’s IdP and IGA applications implementing rigorous resiliency measures to safeguard critical assets.
6. Identify opportunities and implement automation for operational tasks to improve performance and reduce operator errors utilizing scripting.
7. Lead the integration of IAM systems with internal and external systems and applications, ensuring seamless and secure access management across the technology ecosystem.
8. Understand all aspects of dependencies for business processes on IAM systems, and manage resolution of root causes for performance, reliability, or availability issues and deliver innovative solutions.
9. Implement JIT and Zero Trust standards and processes for privilege identity management to ensure strong lifecycle management and governance for the identities that have access to IMF’s crown jewels.
10. Stay at the forefront of emerging identity trends, technologies, and best practices, and apply this knowledge to enhance IMF’s identity management strategies.
11. Work with the IMF’s security operations center, implement effective monitoring and audit access controls and permissions to identify potential security breaches or policy violations.
12. Collect, track and report on various IAM service SLAs/metrics/KPIs/KRIs.
13. Create end user training materials and conduct user training.