Head of IAM Identity Lifecycle

Job Details

Head of IAM Identity Lifecycle

Job Description

Requisition Number:

53136

Job Location:

Global Grade:

Band 5

Work Type:

Office Working

Employment Type:

Permanent

Posting Start Date:

06/05/2026

Posting End Date:

26/06/2026

Job Description:

Job Summary

Standard Chartered’s diverse footprint across 63 of the fastest growing markets in Asia, Africa and the Middle East creates unique opportunities for passionate, motivated, and highly skilled people who want to make a difference. We are changing the way people think about banking. We are changing the way we do business – becoming the digital bank with a human touch. This is your opportunity to be part of a growth story in an industry that is reimagining how customers are getting better, faster experiences and convenience through digital technology.

Our Information & Cyber Security (ICS) team sits within the Transformation, Technology & Operations (TTO) function and is responsible for all mission-critical and enterprise-wide areas of cybersecurity, including identity and access management, global threat intelligence, data protection, malware protection, and application and infrastructure security. These are challenges that impact our clients globally.

Our ICS Portfolio team develops the platforms, drives the processes and builds partnerships on behalf of ICS. We thrive on providing solutions to complex issues, devoting time and energy to designing and delivering new and innovative solutions, and all in an environment that demands being risk-aware, not risk-averse. ICS chooses progress over perfection and aims to always participate with a constructive purpose. The team makes an impact wherever they are based, be it in our offices around the world, our Global Business Solution centres in China, India, Malaysia and Poland, or even from our home.

If tackling complex challenges excites you, then join our ICS Identity & Access Management team where you will get to collaborate and work on solutions across business and functions to drive the transformation and deliver better experiences to our customers. We constantly strive to reduce time-to-market and streamline our processes. We follow agile methodology and work to embed an improvement habit across the bank.

Now you have an opportunity to make a meaningful impact with a diverse and passionate team of creators, innovators, and achievers. With us, you’ll learn, be inspired, and make an impact every day. The success of our work hinges on how we use the unique diversity of our people to realise the effects we seek to achieve: Always on. Always safe. Always Simple.

Key Responsibilities

The Authorisation Security Team within the Identity and Access Management domain operates as an integrated model consisting of four independent yet interconnected capabilities that together form a closed-loop control system. Identity Lifecycle is established as an evolved capability responsible for end-to-end lifecycle of all identities across the enterprise.

Identity Lifecycle is the execution backbone of the Authorisation domain, responsible for ensuring every identity, human, non‑human, privileged has a deterministic, observable lifecycle. The role anchors the Bank’s event‑driven provisioning, access decay, and source‑of‑truth alignment, ensuring lifecycle correctness across all platforms.

The Head of Identity Lifecycle is a senior leadership role that ensures identity state is accurate, resilient and continuously synchronised with enterprise access policy. It provides the connective tissue that propagates policy decisions into operational reality, enabling reliable provisioning, change, reconciliation, and de-provisioning at scale. Head of Identity Lifecycle owns the end-to-end capability for governing identity state across the enterprise. Reporting directly to the Head of Authorisation Security, this role is accountable for the execution and evolution of identity lifecycle processes, ensuring that enterprise access policy is reliably enforced in operational reality. It expects to be a "Founder" leader with full autonomy to hire and groom the team to maintain systemic integrity under continuous change. The effectiveness of this role depends on close collaboration with peer Capability leaders to maintain alignment, manage systemic risk, and ensure the authorisation domain operates as a coherent, governed role.

• Own Identity Lifecycle capability outcomes, including backlog prioritisation, delivery health, and budget stewardship.

• Ensure end-to-end enforcement of Capability policies across all identities.

• Implement and maintain deterministic, event‑driven identity lifecycle processes for all human and non‑human identities, ensuring consistent alignment to authoritative sources of truth.

• Own the execution layer of the Authorisation control‑plane by ensuring timely, accurate provisioning, de‑provisioning, and lifecycle transitions for all identities.

• Detect and remediate lifecycle drift, semantic inconsistencies, operational debt, and deviations from intended access state across all identity types.

• Design and govern access‑decay, time‑bounded access, and lifecycle event patterns to minimise standing privilege and support Zero Standing Privilege objectives.

• Embed automation, observability, and reconciliation practices to minimise risk, including continuous reconciliation against HR, CMDB, and Cloud IAM sources to eliminate lifecycle drift.

• Lead a high-performing team responsible for operational delivery and continuous improvement.

• Partner with other Capabilities to ensure lifecycle execution aligns with policy semantics, privileged access patterns, and assurance signals, preventing system‑wide misalignment.

• Define and track KPIs demonstrating the transition from manual interpretation to automated, deterministic enforcement.

• Partner with other Capabilities in IAM to ensure coherent, enforceable, continuously validated authorisation semantics.

• Act as the connective tissue between business intent, policy semantics, and technical implementation by ensuring that lifecycle logic faithfully and consistently executes defined authorisation rules.

• Support capability growth through hiring input, coaching, and knowledge sharing.

Responsibilities

Strategy

• Define and maintain the multi-year roadmap for identity lifecycle capability, aligned with enterprise IAM transformation.

• Define the enterprise lifecycle architecture, including lifecycle event models, golden flows, and failure‑mode handling across identity types.

• Prioritise initiatives to reduce drift, improve resilience, and strengthen access controls.

• Continuously evaluate emerging lifecycle automation and reconciliation technologies.

• Ensure alignment with other Authorisation Security capabilities for systemic integrity.

• Act as the expert in identity lifecycle area.

• Act as a liaison between business and technical teams to ensure business and technical objectives and requirements are well communicated and understood.

• Partner with the Bank Cyber Operations to design, develop and operationalise identity policy.

• Partner with the Bank Security Architects and Risk Teams to ensure alignment with Enterprise Security approach and Regulatory standards.

• Partner with the Bank Analytics and Strategy teams to translate insights into execution roadmaps.

• Continuously identify opportunities for cost optimization, increase efficiency and process simplification.

Business