Sr Manager, IAM Authentication

Responsibilities

• Influence and drive the roadmap and delivery for enterprise authentication services across multiple Microsoft Entra ID tenants, establishing operational objectives and work plans that ensure consistent security controls, lifecycle management, and service reliability.
• Own and govern federation services, including PingFederate/PingOne components and Entra ID federation configurations, ensuring high availability, secure configuration baselines, certificate/key management, and resilient failover.
• Establish and enforce MFA and SSO standards for enterprise applications, including onboarding patterns, authentication methods, step-up authentication, and user experience guardrails.
• Partner with cybersecurity, architecture, and application teams to design and implement conditional access patterns, risk-based access decisions, and modern authentication protocols (e.g., SAML, OIDC/OAuth) where applicable.
• Partner with IAM Operations, Architecture, and Software Development teams and leadership
• Provide leadership and direction for day-to-day engineering: incident response, problem management, change management, release planning, maintenance windows, and service reliability objectives for authentication platforms.
• Drive automation to remove friction from manual processes (e.g., application onboarding, federation configuration validation, certificate rotation, access policy deployment) and improve speed, quality, and traceability.
• Manage vendor and partner relationships related to authentication and federation technologies; oversee the department budget for tools and services, including licensing and renewals, with an emphasis on operational effectiveness and measurable outcomes.
• Develop and report KPIs and operational metrics (e.g., availability, authentication success rates, MFA adoption, onboarding lead time, incident trends) to management and stakeholders, providing clear status, risks, and mitigation plans.
• Serve as an escalation point for authentication outages and high-severity security events; coordinate communications and remediation across technical and business stakeholders.
• Experience partnering with risk, audit, and compliance teams to implement and evidence controls.
• Perform other duties as assigned.
• Basic Requirements:
• Bachelor's degree or equivalent work experience.
• 8+ years of experience in identity and access management, authentication engineering, or security engineering or architecture.
• 3+ years of management experience leading technical teams delivering highly available services.
• Understanding of Microsoft Entra ID (Azure AD), including multi-tenant/complex enterprise environments.
• Understanding of federation services and SSO integrations (e.g., PingFederate/PingOne and/or comparable federation stacks) and common protocols (SAML 2.0, OIDC, OAuth 2.0).
• Understanding of MFA methods and authentication assurance.
• Demonstrated ability to communicate complex security and identity concepts to both technical and executive audiences and influence without direct authority.
• Desired Characteristics:
• Experience designing authentication architecture for large enterprises with multiple identity providers, complex tenant topologies, mergers

Additional Information

As part of the Global Operations & Technology Engineering organization, the Identity & Access Management (IAM) team enables secure, seamless access to enterprise applications, data, and infrastructure across our businesses. We partner with business, technology, and cybersecurity teams to improve user experience, reduce risk, and meet regulatory and audit requirements through modern identity capabilities and strong access governance. We are seeking a Senior Manager, IAM Authentication to provide technical and operational leadership for enterprise authentication services, including governance and operations across multiple Microsoft Entra ID tenants, Ping and Entra ID federation services, Multi-Factor Authentication (MFA), and Single Sign-On (SSO) for workforce and partner application ecosystems. This leader is accountable for delivering reliable, secure, and scalable authentication capabilities while enabling business agility and a consistent end-user sign-in experience. This role partners closely with cybersecurity, infrastructure, endpoint engineering, application owners, and risk/audit stakeholders to establish operational objectives, policies, procedures, and work plans for authentication and federation services. The Senior Manager drives a secure-by-design authentication program, handles unforeseen issues and service disruptions with strong tactical decision-making, and applies influence to align stakeholders on desired outcomes while preserving relationships.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Nbcuniversal3? Share your experience