RSM US LLP - Manager - Secure Enablement Practice

About RSM Delivery Center (RDC)

The RSM Delivery Center (RDC) supports RSM U.S. risk consulting, transaction advisory, technical accounting, financial consulting, technology and management consulting, tax and assurance engagement teams by providing access to highly skilled professionals for repeatable business processes over an extended business day. RDC is a member of RSM International, the sixth largest global network of independent accounting, tax and consulting firms.

Risk Consulting helps clients across various industries by addressing the increasingly complex strategic, operational, compliance, and governance challenges faced by those responsible for managing or overseeing dynamic businesses. Risk Consulting major offerings includes AML & Regulatory Compliance; ERP Advisory; Automation and Analytics; Enterprise Risk Management; Internal Audit; SOX Advisory; Contract Compliance; Credit Reviews. Information & Technology Audits; Cybersecurity risk management; Third-party risk management; IT due diligence; SOC1 / SOC2. Security and Privacy Risk; Governance Risk and Compliance; PCI; Cyber Transformation; Manage Security Services; Secure Architecture Solutions; Cyber Testing; Digital Forensics and Incident Response; and Cyber Threat Intelligence.

- As a manager in RSM's growing Security and Privacy Risk Consulting, you will be responsible for developing strong working relationships with clients built on understanding their businesses and challenges.

- Managers will identify, pursue and help close new opportunities with both existing and new clients and will provide subject matter knowledge support to pursuit teams.

- Managers are will work across multiple client account teams within a wide variety of industries. These individuals will also work across multiple client account teams within a wide variety of industries.

- They are responsible to manage multiple team engagements simultaneously, including several pieces of any particular assignment-not just a single area of focus.

Qualification and Minimum Entry Requirements

- B.Tech/ MCA/ MBA with up to 10 years of relevant experience in IAM Implementations with leading IAM solutions (e.g. SailPoint, Okta), IAM leading practices, leading vendor products & solutions, federated and composite IAM architectures, IAM technology trends and innovation; and experience leveraging this knowledge to benefit clients

- Candidate should have strong knowledge of computer network technologies, protocols, and topologies

- Proficiency with a variety of Windows, Unix and Linux operating systems

- Certification in one or more leading IAM solutions (SailPoint, Okta, AWS IAM)

- Practical hands-on or lab experience with IT infrastructure components such as servers, firewalls, IDS systems and other network infrastructure components

- Candidate must be experienced in leading IAM maturity assessments to identify gaps, deficiencies and recommendations

- Experience with testing and development frameworks such as the Open Web Application Security Project (OWASP), Open Source Security Testing Methodology Manual (OSSTMM), the Penetration Testing Execution Standard (PTES), Information Systems Security Assessment Framework (ISSAF), and NIST SP 800-115

- Familiar with security testing techniques such as network discovery, port and service identification, vulnerability scanning, network sniffing, penetration testing, configuration reviews, firewall rule reviews, social engineering, wireless penetration testing, fuzzing, and password cracking and can perform these techniques from a variety of adversarial perspectives (white, grey, black-box)

- Candidate should have knowledge of red team strategies and penetration testing of IAM solutions

- High degree of integrity and confidentiality, as well as ability to adhere to company policies and best practices

- Possess a strong internal drive and motivation for continuous improvement

- Strong multi-tasking and project management skills

- Excellent verbal and written communication (English) as the position requires frequent communications with RSM International clients

Position Responsibilities

- Develop an understanding of the RSM Security Transformation's approach, methodology and tools

- Building, leading and developing high performing teams

- Mentoring and influencing others both internally within RSM and within client organizations

- Serving as an ambassador and champion of IAM services throughout RSM

- Providing thought leadership collateral annually for distribution to clients and through our various marketing channels

- Ability to manage client work and drive client communications with little or no oversight from RSM Senior Leadership

- Management and implementation experience in SailPoint IIQ, IdentityNow, Okta, Forgerock, Ping, OneLogin, and/or Azure Active Directory (AD)/ AD

- Leading IAM federated architecture design and implementation experience such as SSO/ MFA, IAG/ HRIS, AD/ LDAP integration

- Demonstrate your expertise in IAM concepts and protocols such as AuthN, AuthZ, LDAP/ SAML/ Kerberos

- Demonstrate your fluency in AWS IAM best practices, SailPoint IIQ/IdentityNow leading practices, Okta leading practices and/or Azure AD leading practices

- Demonstrate your expertise in common IAM processes such as lifecycle events, request/ approval, password management, provisioning/ de-provisioning, governance and certifications

- Demonstrate your expertise in infrastructure sizing, hardening and configuration (e.g. VPCs, network topology, DBMS, API gateway, connectors)

- Demonstrate familiarity with common IAM data schemas (e.g. identity cubes)

- Demonstrate your expertise in IAM Solution error/ exception handling and troubleshooting

- Demonstrate your expertise of NIST/ ISO standards for IAM

- Demonstrate familiarity with IAM custom development and deployment

- Demonstrate your expertise knowledge of common compliance requirements (e.g. GDPR, CCPA, PCI, HIPPA, HITRUST, DFARS, CMMC, etc.) as they relate to IAM

- Demonstrate the IAM testing strategies and methods (user acceptance testing, integration testing, performance testing, high availability/ failover testing)

- Provide timely, high quality client service that meets or exceeds client expectations including coordinating the development and execution of the consulting work plan and client deliverables

- Understand RSM and RSM Delivery Center's LOB and work as a team in providing an integrated service delivery

- Execute components of cyber security engagements under offshore delivery model in an effective and efficient manner

- Ensure that documentation is compliant with quality standards of the firm

- Exercise professional skepticism, judgment and adhere to the code of ethics while on engagements

- Work collaboratively as a part of the team and communicate effectively with RSM consulting professionals, and senior management in the U.S. on a daily basis

- Manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients

- Open to work on other solution sets considering business requirements