Sr. Manager, Identity Platform Management

Overview

At Early Warning, we've powered and protected the U.S. financial system for over thirty years with cutting-edge solutions like Zelle, Paze, and more. As a trusted name in payments, we partner with thousands of institutions to increase access to financial services and protect transactions for hundreds of millions of consumers and small businesses.

Locations include Scottsdale, San Francisco, Chicago, or New York with a hybrid work model to support a collaborative environment.

Candidates must independently possess the eligibility to work in the United States for any employer at the date of hire. This position is ineligible for employment Visa sponsorship.

Senior Engineering Manager for Identity Platform Management leading Privileged Access, Secrets, and Cloud Identity capabilities with a focus on non-human identities, privileged access controls, and elimination of static credentials. Responsible for designing, implementing, and operating platforms and governance models that secure service accounts, workloads, cloud identities, certificates, and privileged access, while enabling just-in-time (JIT) access, least privilege, and automated lifecycle management at enterprise scale.

Lead a highly technical team responsible for Privileged Access Management (PAM), secrets vaulting and rotation, cloud IAM, and non-human identity governance, ensuring alignment with security strategy, regulatory expectations, and cloud-first architecture.

• Lead, mentor, and inspire a high-performing engineering team responsible for privileged access, secrets management, and cloud identity, fostering a culture of accountability, automation, and continuous improvement.
• Own and execute the Privileged Access, Secrets, and Cloud Identity strategy, aligned to enterprise security objectives, Zero Trust principles, and cloud adoption roadmaps.
• Provide technical vision and architectural leadership for:
• • Cloud IAM (roles, policies, cross-account trust)
  • Workload and service identities
  • Privileged access (JIT, session control, monitoring)
  • Secrets vaulting and automated rotation
  • Certificate lifecycle management
• Maintain hands-on technical involvement where required, including architecture reviews, engineering design decisions, and complex incident support.
• Define, enforce, and operationalize policies and standards for:
• • Non-human identity lifecycle management
  • Privileged access controls and approvals
  • Secrets handling, rotation, and storage
  • Least-privilege enforcement across cloud platforms
• Oversee implementation and operation of platforms including:
• • Cloud IAM
  • Key & Secret Vaulting
  • PKI and certificate management solutions
  • Active Directory NHI
  • IGA Platforms
• Ensure elimination of long-lived access keys, shared credentials, and standing privilege through automation and platform enforcement.
• Partner closely with Cloud Engineering, Application Security, Infrastructure, and GRC teams to integrate privileged access and identity controls into CI/CD pipelines and cloud-native architectures.
• Oversee on-call rotations and ensure operational SLAs are met for platforms supporting privileged access and workload identity.
• Maintain accurate documentation to support audits, risk assessments, and regulatory reviews related to privileged access and non-human identities.

• Education or experience equivalent to a bachelor's degree in computer science, engineering, or a related field.
• Minimum 8+ years of progressive experience in IAM, security engineering, or platform security roles, with 5+ years leading or managing engineering teams.
• Strong technical background in privileged access, cloud IAM, and secrets management, including experience with:
• • Cloud IAM
  • Secrets vaulting platforms
  • PAM technologies
  • Certificate and PKI systems
  • Non-human identity governance
• Demonstrated ability to lead cross-functional initiatives and deliver enterprise-scale security platforms.
• Proven success operating in fast-paced environments with competing priorities and high availability requirements.
• Strong understanding of regulatory and security frameworks applicable to privileged access and cloud identity (e.g., NIST, FFIEC, PCI DSS).
• Experience leading enterprise technology initiatives focused on risk reduction and security modernization.

• Advanced degrees or certifications such as CISSP, CISM, CISA, AWS Security Specialty
• Deep experience implementing JIT privileged access, secrets rotation frameworks, and workload identity models in large enterprises.
• Demonstrated innovation in eliminating static credentials and standing privilege through automation and platform-native controls.
• Experience with automation and scripting (e.g., Power Shell, Python, infrastructure-as-code).

Working conditions consist of a normal office environment. Work is primarily sedentary and requires extensive use of a computer and involves sitting for periods of approximately four hours. Work may require occasional standing, walking, kneeling and reaching. Must be…