Sr. Manager – Identity & Access Management (Remote)

At Edelman Financial Engines (EFE), our purpose is to guide people with the financial advice they need to thrive. 

We believe that every dollar saved represents a lifetime of hard work and aspirations, and every dollar invested has a job to do for our clients. That’s why we are committed to managing our clients’ investments by truly understanding them as people first—and then delivering advice, strategies, and solutions to help them feel confident about the plans they are making, whether for today, tomorrow, or the great unknown future. Our goal is to build long-term relationships based on respect, integrity, and a belief that our responsibility is to help people make smart investment decisions at every stage of their lives.

Our culture is grounded in our CORE values: Client First, One Team, Respectful Candor, and Endless Curiosity. These values guide everything we do, for our clients and each other. We are committed to moving forward together. If you are inspired by purpose-driven work and a collaborative, values-led culture, we invite you to explore a career with us.

As the Sr. Manager, Identity & Access Management (IAM), you will own the IAM roadmap and portfolio, drive cross-functional delivery through strong program management, and partner closely with Security, Infrastructure, End-User Computing, Application Owners, Product/Engineering, and GRC to standardize identity controls and enable secure, scalable workforce access. If you have a bachelor’s degree in a related field (or equivalent experience) and 7+ years of related IAM experience, this may be the opportunity for you.

Responsibilities:

• Build, lead, and develop an IAM engineering and operations team (employees and managed partners), including hiring, onboarding, coaching, performance management, and succession planning.

• Own the IAM strategy, operating model, and multi-quarter roadmap, translating business and security priorities into an executable plan with clear milestones, dependencies, and measurable outcomes.
• Provide senior leadership for the design, implementation, and operations of core IAM domains, including Identity Services, Identity Lifecycle & Credential Management (IDLCM), Identity Governance (IDG), SSO, MFA, and PIM/PAM.
• Drive the architecture and operational maturity of key technologies in these domains, including Active Directory (AD), Microsoft Entra ID (Azure AD), Okta, and CyberArk, ensuring secure configuration, scalability, reliability, and supportability.
• Establish and manage program governance: intake/prioritization, delivery plans, RAID management, stakeholder communications, budget/vendor oversight, and executive reporting.
• Lead identity lifecycle processes and automation (joiner/mover/leaver), access provisioning and deprovisioning, role/entitlement models, and integrations with HRIS, ITSM, and business applications.
• Own SSO and federation standards and integrations (e.g., SAML/OIDC), ensuring a consistent end-user experience and secure access for workforce identities (employees, contractors) across enterprise applications.
• Mature MFA and modern authentication controls, including policy design, conditional access patterns, and adoption/rollout plans that reduce friction while improving security posture.
• Lead Privileged Identity / Access Management (PIM/PAM) outcomes: privileged account governance, vaulting, session controls, approvals/workflows, and operational processes to minimize standing privilege.
• Define and manage service reliability for IAM platforms: SLAs/SLOs, capacity planning, resiliency, monitoring/alerting, incident/problem management, and runbooks.
• Partner with Security/GRC to support SOC 2 and other audit/compliance activities; ensure IAM controls are documented, evidenced, and continuously improved.
• Establish metrics and reporting for IAM effectiveness (e.g., access review completion, JML timeliness, MFA adoption, privileged access reduction, platform availability), and drive continuous improvement.
• Collaborate with Infrastructure, Endpoint, and Application/Product teams to implement Zero Trust identity patterns and enforce least privilege and strong authentication across environments.

Requirements:

• 7+ years of progressive IAM experience, including design, implementation, and operational support of enterprise IAM platforms.

• 3+ years of people leadership experience, including building teams, mentoring engineers, and managing through influence across multiple stakeholders.
• Demonstrated program and portfolio management capability (roadmaps, delivery planning, prioritization, executive communications, risk/issue management, and vendor management).
• Hands-on experience across core IAM domains: Identity Services, IDLCM, ID Governance, SSO, MFA, and PIM/PAM.
• Strong expertise with the following technologies (or equivalent): Active Directory, Microsoft Entra ID (Azure AD), Okta, and CyberArk.
• Deep knowledge of IAM standards and protocols such as SAML 2.0, OIDC, OAuth 2.0, SCIM, and modern authentication methods (e.g., FIDO2/WebAuthn preferred).
• Experience integrating IAM solutions with enterprise applications using REST APIs, connectors, and event-driven patterns; ability to troubleshoot complex authentication/authorization flows end-to-end.
• Experience operating IAM services in regulated environments (e.g., SOC 2), including control design, evidence collection, and audit readiness.
• Strong written and verbal communication skills, including the ability to write clear standards, runbooks, and executive-ready status reporting.
• Bachelor’s degree in a related field (or equivalent experience).
• Preferred: Relevant certifications (e.g., CISSP, CISM, CIAM, Microsoft Identity, Okta, CyberArk) and experience with identity governance tooling and access certification campaigns.

Edelman Financial Engines takes a market-based approach to pay. The expected base salary range for this role nationally is $136,700 - $182,00. However, final base pay will be carefully determined based on several factors, including responsibilities, job-related skills, relevant experience, geographic location, and market conditions. Additionally, this role may be eligible for other forms of compensation and benefits, such as a discretionary bonus, health, dental and other wellness plans, and 401(k) contributions.

Your recruiter can share more about the specific benefits eligible for this role during the hiring process.

About Edelman Financial Engines

Since 1986, Edelman Financial Engines has been committed to always acting in the best interests of our clients. We were founded on the belief that all investors – not just the wealthy – deserve access to personal, comprehensive financial planning and investment advice. Recognized by Barron’s as a top RIA firm for eight years in a row (awarded each September (2018-2025) based on prior 12-month data through June 30)1, we support more than 1.27 million clients across 140+ offices nationwide and manage over $324 billion in assets 2. Our unique approach to serving clients combines our advanced methodology and proprietary technology with the attention of a dedicated personal financial planner. Every client’s situation and goals are unique, and the powerful fusion of high-tech and high touch allows Edelman Financial Engines to deliver the personal plan and financial confidence that everyone deserves.  

For more information, please visit EdelmanFinancialEngines.com. 

© 2026 Edelman Financial Engines, LLC. Edelman Financial Engines® is a registered trademark of Edelman Financial Engines, LLC. All advisory services provided by Financial Engines Advisors L.L.C., a federally registered investment advisor. Certain services provided on an educational and guidance basis only. Results are not guaranteed.  

For California residents, please see the link for the Privacy Notice for Candidates. California law requires that we provide you this notice about the collection and use of your personal information. Please read it carefully. 

Edelman Financial Engines encourages success based on our individual merits and abilities without regard to race, color, religion, creed, sex, gender identity or expression, sexual orientation, pregnancy; marital, domestic partner or civil union status; national origin, citizenship, ancestry, ethnic heritage, genetic information, age, legally recognized disability, military service or veteran status. 

Accommodations are modifications or adjustments to the hiring process that would enable you to fully participate in that process. If you need assistance to accommodate a disability, you may request one at any time by either contacting your recruiter or [email protected]. 

1  The Barron’s Top 100 RIA Firms list, an annual ranking of independent advisory firms, is based on qualitative and quantitative criteria. Firms elect to participate but do not pay to be included in the ranking. The 2018 ranking refers to Edelman Financial Services, LLC, which combined its advisory business in its entirety with Financial Engines Advisors L.L.C. (FEA) in November 2018. For the same survey, FEA received a precombination ranking of 12th.  

2 Edelman Financial Engines data, as of September 30, 2025.