Associate Director

Spotlight is currently hiring an Identity Governance & Administration (IGA) Associate Director. This person will be responsible for creating the roadmap and overseeing architecture.This role will be a hybrid on-site (2 days/week) position in Dallas, TX. This is a 6-month contract-to-hire opportunity.Essential Duties & ResponsibilitiesProgram Leadership: Define, create, and own roadmaps and strategies for IGA services while balancing team capacity against demands and budgets.MSP Oversight: Serve as the primary liaison with the IT MSP, providing oversight and ensuring all business requirements are delivered effectively.Architecture & Approvals: Oversee IT MSP security architecture and engineering resources; approve security designs and permissions for critical systems like Workday and Oracle ERP.Identity Lifecycle Management: Partner with Human Resources on changes to Workday to ensure proper management of downstream impacts, establishing identity lifecycle processes across identity systems.Governance & Compliance: Oversee application entitlement and certification processes, provide audit-required documentation pertaining to access controls, and ensure timely remediation of any findings.Risk Management: Maintain the risk register for IGA and access controls, ensuring risks are accepted, rejected, or remediation plans are defined.Performance Measurement: Drive capability area KPIs regarding adoption, usage, productivity, and customer satisfaction.Education, Skills & ExperienceEducation: Bachelor of Science in Computer Science, System/Computer Engineering, Cyber-Security, or Information Security is preferred. Alternative: Seven (7) years of cyber work experience may be substituted in lieu of a Bachelor’s degree.Experience: 5+ years of Identity Management experience within enterprise-level organizations, including implementing and supporting IAM and PAM products.Technical Skills: * Strong working knowledge of SAML, OIDC, OAuth2 protocols, Java, and JSON.Deep understanding of Microsoft Active Directory, LDAP, risk-based authentication, RBAC, and REST APIs.Compliance & ITIL: Experience with regulatory and SOX controls; strong understanding of the cyber threat landscape, data security, and NIST CSF. Experience with ITIL incident, problem, and service request resolution.Certifications: Related certifications such as Security+, Network+, CEH, CISM, or CISSP are a plus.