As a Manager of Identity Access Management (IAM) & Governance, Risk, and Compliance (GRC) at Deriv, you will play a critical role in enhancing the organization’s security posture. This position merges hands-on expertise in IAM with strategic oversight of GRC programs. You will lead the IAM strategy and operations, improving lifecycle processes and driving automation with a focus on AI adoption.
Ready to apply for roles like this?
Unlock the company name and direct application link. Subscribers get instant access to fresh jobs across Dubai, Abu Dhabi and Riyadh, many with visa support.
Unlock employer & apply directly
Key responsibilities include:
-
IAM Leadership:
- Define and lead IAM lifecycle processes including provisioning, deprovisioning, and access reviews.
- Automate and optimize IAM operations using scripting, APIs, or AI-powered tools.
- Manage onboarding and offboarding workflows, adhering to least privilege and Zero Trust principles.
- Enhance identity integrations across SSO, MFA, PAM tools, and various cloud environments.
- Monitor IAM policy enforcement and coordinate with IT and Engineering teams for remediation.
-
GRC Oversight:
- Design and implement risk assessment and compliance frameworks aligned with regulations such as ISO 27001, GDPR, DORA, and SOC2.
- Manage internal and external audits to ensure audit readiness and track remediation activities.
- Maintain enterprise-wide risk registers, compliance dashboards, and security policies.
- Conduct third-party risk assessments to secure vendor engagements.
- Lead Security Awareness programs, developing materials that promote a culture of security across the organization.
-
Security Automation & AI Adoption:
- Utilize AI technologies to enhance user access reviews and risk scoring.
- Create automated GRC workflows to improve efficiency.
- Develop bots or scripts for dynamic policy and compliance guidance.
-
Cross-Functional Security Governance:
- Serve as a liaison between Security, Risk, IT, and Compliance teams.
- Mentor and lead initiatives on IAM and GRC best practices.
Who You Are:
- 8+ years of experience in cybersecurity, specifically in IAM and GRC.
- Proven experience with IAM/PAM solutions (e.g., Okta, Azure AD, CyberArk).
- Strong understanding of data privacy regulations and security frameworks (e.g., GDPR, ISO 27001, DORA).
- Demonstrated success with internal and external security audits.
- Hands-on experience with GRC platforms (e.g., JIRA, Archer, ProcessUnity, ServiceNow).
- Strong collaborative and communication skills across various audiences.
- Relevant certifications such as ISO 27001 Lead Auditor/Implementer or CISA are preferred.
What We Offer:
- A leadership role in a high-growth fintech company focused on security innovation.
- Opportunities to drive automation and AI improvements within IAM and GRC processes.
- A collaborative work environment with cybersecurity, risk, and engineering experts.
- Competitive compensation with global team engagement and remote work flexibility.
- Clear pathways for career growth in security leadership and governance.
Join us at Deriv to help protect millions of global traders and build secure fintech infrastructure for the future.
