Job Details

Security Expert Within Pnc's Security Ops Organization

At PNC, our people are our greatest differentiator and competitive advantage in the markets we serve. We are all united in delivering the best experience for our customers. We work together each day to foster an inclusive workplace culture where all of our employees feel respected, valued and have an opportunity to contribute to the company's success. As a Security Expert within PNC's Security Ops organization, you will be based in Pittsburgh, PA or Dallas, TX or Houston, TX or Phoenix, AZ. Identity & Access Management (IAM) Governance Security Expert Lead SOX & Cloud Overview The IAM Governance Security Expert Lead is responsible for executing and enforcing identity governance controls in a SOX-regulated, cloud-first environment. This role focuses on hands-on operation of Identity Governance and Administration (IGA) tooling, access certification execution, Separation of Duties (SoD) enforcement, and audit-ready evidence production across cloud platforms and critical financial applications. The position works closely with Audit, Finance IT, IAM Engineering, and application owners to ensure access controls are compliant, consistent, and defensible.

Key Responsibilities Identity Governance & Administration (IGA) Cloud-First Operate and administer the enterprise IGA platform integrated with cloud and SaaS systems. Execute and monitor joiner, mover, leaver processes with emphasis on audit traceability. Support automated provisioning and deprovisioning across Azure/Entra ID, AWS, GCP, and SaaS platforms. Maintain role-based and attribute-based access models for SOX in-scope applications. Conduct periodic access certifications for workforce, privileged, and service accounts. Validate identity and entitlement data accuracy across authoritative sources. Separation of Duties (SoD) SOX Focused Execute defined SoD rulesets for financial, ERP, and cloud administrative roles. Identify, analyze, and document SoD conflicts and violations. Track mitigations, compensating controls, and approved exceptions. Support proactive SoD reviews during role design, access requests, and onboarding. Partner with application owners to remediate recurring SoD issues. SOX Controls, Audit & Compliance Execute IAM controls mapped to SOX IT General Controls (ITGCs). Produce audit-ready evidence for internal and external audits. Support audit walkthroughs, testing, and remediation activities. Maintain control narratives, procedures, and supporting documentation. Assist in annual SOX scoping and system coverage validation. Cloud IAM & Privileged Access Governance Support governance of cloud administrative roles and high-risk entitlements. Validate alignment between IGA certifications and cloud IAM configurations. Assist with governance of non-human identities where in SOX scope. Monitor access changes affecting cloud-hosted financial systems.

Required Qualifications Bachelor's degree or equivalent experience in Information Security, IT, or related field. 5+ years of experience in IAM, Identity Governance, or ITGC execution. Hands-on experience with IGA platforms and access certifications. Strong understanding of SOX ITGC requirements related to user access and SoD. Experience supporting external audits and producing defensible evidence. Familiarity with cloud-based identity platforms and SaaS access models. Preferred Qualifications Experience with ERP and financial systems (SAP, Oracle, Workday, NetSuite). IAM or security certifications (CISSP, CISM, CRISC, SailPoint, Saviynt). Exposure to privileged access governance in cloud environments. Understanding of zero trust and modern identity security principles. Key Competencies SOX and audit discipline Attention to detail and execution rigor Clear documentation and evidence management Cross-functional collaboration Influence through subject-matter expertise