Identity and Access Management - Vice President

iCapital is seeking a Vice President of Identity and Access Management (IAM) to lead the build-out and maturation of the firm’s IAM capabilities across Okta, Saviynt, and enterprise applications. This is a hands-on leadership role responsible for both defining IAM strategy and driving execution in a lean, high-growth environment. This individual will establish scalable identity architecture, modernize access governance, and implement automation-first IAM practices in partnership with Corporate Technology and Security. The ideal candidate is a builder and player-coach who can translate IAM principles into practical, scalable solutions while developing a growing team and function.

This role is part of the Corporate Technology department and works closely with the Corporate Applications and Security teams to advance enterprise-wide governance, operational controls, and technology standards.

Responsibilities

• Own the end-to-end IAM architecture across Okta and Saviynt.
• Define and implement identity lifecycle models, including joiner, mover, and leaver (JML) processes.
• Establish standards for SSO, MFA, SCIM provisioning, and API-based integrations.
• Design and evolve role-based (RBAC) and attribute-based (ABAC) access models.
• Build and mature IAM into a structured, scalable enterprise function, including processes for birthright access, requests, approvals, certifications, and audit readiness.
• Partner with Security and Compliance teams to align IAM controls with regulatory requirements.
• Drive automation-first IAM practices leveraging Terraform for infrastructure-as-code, APIs across SaaS platforms, and Python or similar scripting.
• Reduce manual processes through standardization and system-driven workflows.
• Lead and develop a well-managed IAM team, providing hands-on technical guidance and prioritization.
• Act as a player-coach, ensuring strong delivery while scaling the function.
• Serve as the primary IAM partner to Security, Compliance, and Business teams to drive adoption of least privilege access models.
• Communicate IAM strategy and decisions clearly to both technical and non-technical stakeholders.

Qualifications

• 8+ years of experience in identity and access management.
• Bachelor’s degree in computer science, information technology, or a related field (or equivalent experience).
• Proven experience owning, operating, and building IAM programs.
• Hands-on experience with Okta (SSO, MFA, lifecycle management, SCIM) and Saviynt or a comparable IGA platform (e.g., SailPoint).
• Strong understanding of identity lifecycle management, RBAC/ABAC models, and access governance frameworks.
• Experience with Terraform or similar infrastructure-as-code tools is preferred.
• Experience with API integrations across SaaS platforms and Python or scripting for automation.
• Experience leading small, high-impact teams in a scaling environment.
• Ability to balance strategic thinking with hands-on execution.
• Strong communication skills with the ability to engage across technical and business stakeholders.
• Experience in a regulated environment, preferably financial services.
• Relevant IAM or cloud certifications are a plus.

Compensation & Benefits

The base salary range for this role is $150,000 to $180,000. iCapital offers a compensation package which includes salary, equity for all full-time employees, and an annual performance bonus. Employees also receive a comprehensive benefits package including:

• Employer-matched retirement plan.
• Generously subsidized healthcare with 100% employer-paid dental, vision, telemedicine, and virtual mental health counseling.
• Parental leave.
• Unlimited paid time off (PTO).

Work Schedule

iCapital operates with an office-first culture. Employees in this role will work in the office Monday through Thursday, with the flexibility to work remotely on Friday.