IAM Governance, Controls & Risks Manager

Hello. We’re Haleon. A new world-leading consumer health company. Shaped by all who join us. Together, we’re improving everyday health for billions of people. By growing and innovating our global portfolio of category-leading brands – including Sensodyne, Panadol, Advil, Voltaren, Theraflu, Otrivin, and Centrum – through a unique combination of deep human understanding and trusted science. What’s more, we’re achieving it in a company that we’re in control of. In an environment that we’re co-creating. And a culture that’s uniquely ours. Care to join us. It isn’t a question.
 

With category leading brands such as Sensodyne, Voltaren and Centrum, built on trusted science and human understanding, and combined with our passion, knowledge and expertise, we’re uniquely placed to do this and to grow a strong, successful business.
 

This is an exciting time to join us and help shape the future. It’s an opportunity to be part of something special.
 

About the role:
We are seeking an experienced IAM Governance, Controls, and Risk Manager to lead the development, implementation, and oversight of Identity and Access Management (IAM) governance frameworks, controls, and risk management strategies. This role is critical in ensuring that our IAM practices align with regulatory requirements, industry standards, and organizational policies. The ideal candidate will have a strong background in IAM, risk management, and governance, with the ability to collaborate across teams to mitigate risks and enhance security posture. 
 

Key Responsibilities: 

IAM Governance: 

• Develop, implement, and maintain IAM governance frameworks, policies, standards, and procedures to ensure compliance with regulatory requirements (e.g., GDPR, SOX, HIPAA) and industry best practices. 

• Establish and manage IAM metrics, key performance indicators (KPIs), and reporting mechanisms to monitor the effectiveness of IAM controls. 

• Establish access management SOX remediation plans. 

• Collaborate with internal audit, compliance, and legal teams to ensure IAM practices meet audit and regulatory requirements. 

 Risk Management: 

• Identify, assess, and mitigate IAM-related risks across the organization. 

• Conduct regular risk assessments and gap analyses to evaluate the effectiveness of IAM controls and recommend improvements. 

• Develop and maintain an IAM risk register, tracking risks, mitigation actions, and remediation progress. 

• Partner with IT and business units to ensure IAM risks are integrated into the organization’s overall risk management framework. 

    Controls Oversight: 

• Implement IAM controls to protect sensitive data and systems from unauthorized access. 

• Monitor and evaluate the effectiveness of IAM controls, ensuring they are operating as intended and addressing identified risks. 

• Lead the response to IAM-related incidents, including root cause analysis, control enhancements, and reporting. 

• Stay current with emerging IAM technologies, threats, and vulnerabilities to proactively enhance control frameworks. 

     Stakeholder Collaboration: 

• Work closely with IT, security, and business teams to ensure IAM solutions align with organizational goals and risk tolerance. 

• Provide guidance and training to stakeholders on IAM governance, controls, and risk management best practices. 

• Act as a subject matter expert (SME) for IAM-related projects, ensuring governance and risk considerations are addressed. 

Qualifications: 

Education and Experience: 

• Bachelor’s degree in Information Security, Computer Science, IT, or a related field. Advanced degree or certifications (e.g., CISSP, CISM, CRISC, CISA) preferred. 

• 4+ years of experience in IAM, IT governance, risk management, or information security. 

• Proven experience designing and implementing IAM governance frameworks and controls. 

• Strong understanding of IAM technologies (e.g., SailPoint, Okta, ForgeRock, Microsoft Azure AD). 

• Experience with regulatory compliance frameworks (e.g., GDPR, SOX, HIPAA, NIST, ISO 27001). 

Skills and Competencies: 

• In-depth knowledge of IAM principles, including authentication, authorization, provisioning, and de-provisioning. 

• Strong analytical and problem-solving skills, with the ability to assess complex risks and develop actionable recommendations. 

• Excellent communication and interpersonal skills, with the ability to influence and collaborate across all levels of the organization. 

• Proven ability to manage multiple priorities in a fast-paced environment. 

• Strong project management skills, with experience leading cross-functional initiatives. 

Care to join us. Find out what life at Haleon is really like www.haleon.com/careers/

At Haleon we embrace our diverse workforce by creating an inclusive environment that celebrates our unique perspectives, generates curiosity to create unmatched understanding of each other, and promotes fair and equitable outcomes for everyone. We're striving to create a climate where we celebrate our diversity in all forms by treating each other with respect, listening to different viewpoints, supporting our communities, and creating a workplace where your authentic self belongs and thrives. We believe in an agile working culture for all our roles. If flexibility is important to you, we encourage you to explore with our hiring team what the opportunities are.

As you apply, we will ask you to share some personal information, which is entirely voluntary. We want to have an opportunity to consider a diverse pool of qualified candidates and this information will assist us in meeting that objective and in understanding how well we are doing against our inclusion and diversity ambitions. We would really appreciate it if you could take a few moments to complete it. Rest assured, Hiring Managers do not have access to this information and we will treat your information confidentially.

Haleon is an Equal Opportunity Employer. All qualified applicants will receive equal consideration for employment without regard to race, color, national origin, religion, sex, pregnancy, marital status, sexual orientation, gender identity/expression, age, disability, genetic information, military service, covered/protected veteran status or any other federal, state or local protected class.

Accommodation Requests

If you require a reasonable accommodation or other assistance to apply for a job at Haleon at any stage of the application process, please let your recruiter know by providing them with a description of specific accommodations you are requesting. We’ll provide all reasonable accommodations to support you throughout the recruitment process and treat all information you provide us in confidence.