SitusAMC is where the best and most passionate people come to transform our client’s businesses and their own careers. Whether you’re a real estate veteran, a passionate technologist, or looking to get your start, join us as we work together to realize opportunities for everyone, we proudly serve. At SitusAMC, we are looking to match your unique experience with one of our amazing careers, so that we can help you realize your potential and career growth within the Real Estate Industry. If you are someone who can be yourself, advocate for others, stay nimble, dream big, own every outcome, and think global but act local – come join our team! This role is responsible for overseeing the strategy, implementation, and governance of identity and access management across corporate and client environments. This role ensures secure, complaint, and efficient access to systems and applications, safeguarding critical assets and data. The AVP will lead initiatives to strengthen identity security, enforce access controls, and maintain compliance with organizational and regulatory standards. This role possesses a deep technical expertise in IAM platforms, strong leadership skills, and the ability to collaborate effectively with business and technology stakeholders. Essential Job Functions: - Define and maintain the IAM strategy, roadmap, and reference architecture covering workforce, privileged, non-human, and application identities. - Champion Zero Trust principles—strong authentication, continuous evaluation, least privilege, and just-in-time access. - Align IAM programs with enterprise security architecture, cloud adoption, data protection, and digital transformation initiatives. - Establish governance for identity lifecycle, access policies, and compliance with internal standards and external regulations (SOX, HIPAA, PCI DSS, GDPR, ISO 27001). - Own joiner–mover–leaver (JML) processes and ensure accurate, timely provisioning and deprovisioning integrated with HRIS and directories. - Implement and maintain RBAC/ABAC models, role mining, segregation of duties (SoD), and toxic combination controls. - Govern federation standards (SAML, OIDC/OAuth2), app onboarding, token lifecycles, and session management. - Optimize user experience while maintaining security for workforce, partners, and service accounts. - Enforce least privilege, credential vaulting, session recording, and JIT elevation for admins and high-risk roles. - Govern break-glass procedures and reduce standing privileges across servers, network devices, cloud control planes, and DevOps toolchains. - Govern identities, roles, and policies across cloud providers (Azure, AWS, GCP) and SaaS platforms. - Implement controls for workload identities, service principals, managed identities, and API authentication. - Maintain IAM controls to meet regulatory requirements and internal policies. - Prepare for audits, produce evidentiary artifacts, and manage remediation plans. - Conduct periodic access reviews, entitlement clean-up campaigns, and report residual risk to leadership. - Lead day-to-day operations of IAM platforms ensuring availability, scalability, and incident response. - Establish SLAs/OLAs, runbooks, and knowledge articles; drive MTTR improvements and change management discipline. - Oversee identity data quality, directory hygiene, and deprovisioning efficacy to minimize orphaned accounts. - Coordinate with Security, HR, Legal, Compliance, IT Operations, App Owners, and Data Governance for end-to-end alignment. - Communicate complex identity risks and trade-offs to executive stakeholders in business terms. - Maintain user accounts and permissions for corporate and client systems, including proprietary platforms. - Resolve access-related issues (e.g., MFA failures, provisioning errors) within established SLAs. - Document resolutions for compliance and knowledge sharing. - Benchmark against industry best practices and drive IAM capability maturity (e.g., NIST/CMMI frameworks). - Conduct post-incident reviews and prioritize backlog for continuous improvement. - Other activities as may be assigned by your manager. Qualifications/ Requirements: - Bachelor’s degree in related field or equivalent combination of education and experience - Minimum of 6+ years of industry and/or relevant experience, typically with 1+ years in a Senior Associate level role or external equivalent. - Hands-on experience with IAM platforms such as Microsoft Entra ID (Azure AD), SailPoint, CyberArk, Okta, or similar. - Proven track record in implementing SSO, MFA, RBAC/ABAC, and Privileged Access Management (PAM) solutions. - Experience managing identity lifecycle processes (JML) and integrating with HR systems and directories. - Strong background in cloud identity management (Azure, AWS, GCP) and federation protocols (SAML, OAuth 2.0, OpenID Connect). - Proficiency in PowerShell or other scripting languages for IAM automation. - Knowledge of Windows Server, Active Directory, and modern authentication technologies. - Familiarity with Zero Trust principles, identity threat detection, and risk-based access controls. - Understanding of regulatory frameworks such as SOX, HIPAA, PCI DSS, GDPR, ISO 27001. - Experience preparing for audits and maintaining evidentiary artifacts for IAM controls. - Proficiency in IAM technologies and protocols, including SAML, OAuth 2.0, OpenID Connect, and MFA solutions. - Strong knowledge of Microsoft Active Directory, Azure AD/Entra ID, and Windows operating systems (including Windows 11). - Experience with IAM automation using scripting languages such as PowerShell or Python. - Familiarity with regulatory and audit requirements (SOX, HIPAA, PCI DSS, GDPR, ISO 27001) and ability to maintain evidentiary artifacts. - Understanding of Zero Trust principles and identity-centric security frameworks. - Ability to analyze complex identity challenges, exercise sound judgment, and develop strategic solutions. - Skilled in troubleshooting identity-related issues and resolving conflicts with diplomacy and professionalism. - Exceptional oral, written, and technical communication skills for engaging stakeholders at all levels. - Strong interpersonal skills to influence and collaborate across IT, Security, and business teams. - Preferred Certifications (Optional): CISSP, CISM, Microsoft Certified: Identity and Access Administrator, SailPoint, CyberArk, or Okta certifications. - Requires attending any department provided training. - Requires the ability to work shifts outside of normal working hours - Requires the ability for extended travel in the event of a catastrophic event - Requires the ability to be on call and support a 24x7x365 operations - Requires the ability to support both planned and unplanned events #LI-AS1 #LI-Remote Note: This job description is not intended to be all inclusive or exclusive. At any time, employees may perform other related duties as required to meet the ongoing needs of the organization and participate in additional trainings. SitusAMC does not accept unsolicited resumes from staffing agencies, search firms or any third parties. Any unsolicited resume submitted to SitusAMC in any manner will be considered SitusAMC property, and SitusAMC will not pay a fee for any placement resulting from the receipt of an unsolicited resume. The annual full time base salary range for this role is $80,000.00 - $120,000.00 Specific compensation is determined through interviews and a review of relevant education, experience, training, skills, geographic location and alignment with market data. Additionally, certain positions may be eligible to receive a discretionary bonus as determined by bonus program guidelines, position eligibility and SitusAMC Senior Management approval. SitusAMC offers PTO and paid holidays, the terms of which are set forth in the program policies. All full time employees also are eligible to participate in various benefit plans, including medical, dental, vision, life, disability insurance and 401K; in each case in accordance with the terms of the applicable plans. Pay Transparency Nondiscrimination Provision SitusAMC is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. Know Your Rights, Workplace Discrimination is Illegal

• Drive the generation services and technologies business to meet or exceed quarterly and annual quota objectives in partnership with the account and domain teams. • Follows the Optiv Standardize Sales Operating Processes (SOPs) to achieve consistent success. • Maintain advanced knowledge of the client’s security environment, business operations, security needs, and risk appetite. • Identify their security concerns and how they correlate to Optiv’s strategic solutions across the assigned domain and holistic cyber security programs. • Identify cross-sell and upsell opportunities across clients and Optiv's partner relationships. • Qualify lead and partner with internal colleagues to determine scope, proposal management, and follow through to closure. • Participate in sales opportunities across Optiv's entire portfolio. • Actively participate in the Field Center of Excellence and position Optiv services and our key Network/SASE/OT technology partners and their products to deliver value to clients. • Collaborate with service delivery to ensure the team has necessary supporting domain specialty materials that presents a consistent and comprehensive approach. • Effectively work with multiple client personas across the security team, as well as other relevant personas to develop security strategy and define roadmaps to execute on security strategy aligned business goals, budgetary spend, and metrics based on return of investment. • Maintain advisory relationships with key stakeholders at clients by facilitating thought leadership, support, information, and guidance in conjunction with sales partners. • Maintain strong working relationships with relevant Optiv technology partners, based on client spend, and Optiv focus. • Design and solution complete security programs to meet client objectives across technology and services including; facilitating new discussions by leveraging peer and industry network contacts performing requirements gathering analysis, and technology selection criteria coordinating demonstrations and security technology evaluations. • Interface and partner with the internal Optiv teams, particularly service delivery liaisons, to align client expectations with the entire Optiv solution portfolio to ensure service delivery excellence and client satisfaction. • Listen for client feedback and continually share with internal teams to evaluate and cultivate continuous improvement. • Participate in account planning, forecasting, and pipeline management activities. • Participate in managing and prioritizing the proposal process to create business proposals, contracts, and respond to RFI/RFP’s. • Actively pursue personal development by maintaining and obtaining technical capabilities, soft skills, and security specific knowledge through formal education, certification, and other avenues.

• Drive the generation services and technologies business to meet or exceed quarterly and annual quota objectives in partnership with the account teams. • Following the Optiv Standardized Sales Operating Processes (SOPs) to achieve consistent success. • Understand and maintain knowledge of the client’s security environment, business operations, security needs, and risk appetite. • Identify their security concerns and how they correlate to Optiv’s strategic solutions across the assigned domains and holistic cybersecurity programs. • Actively participate in the Field Center of Excellence for the assigned domain and position Optiv services and our key technology partners and their products to deliver value to clients. • Identify cross-sell and upsell opportunities across clients and Optiv's partner relationships. • Qualify leads and partner with internal colleagues to determine scope, proposal management, and follow through to closure. • Participate in sales opportunities across Optiv's entire portfolio. • Clearly articulate how the necessary elements of the Optiv technology and services portfolio meet the specific needs of the client stakeholders at the leadership level. • Stay abreast of industry trends, news, and maintain a broad understanding of the security landscape to facilitate thought leadership, support, analysis, and guidance to clients and internal Optiv groups. • Collaborate with service delivery to ensure the team has the necessary supporting domain specialty materials that present a consistent and comprehensive approach. • Effectively work with multiple client personas across the security team, as well as other relevant personas, to develop a security strategy and define roadmaps to execute on the security strategy aligned with business goals, budgetary spend, and metrics based on return of investment. • Maintain advisory relationships with key stakeholders at clients by facilitating thought leadership, support, information, and guidance in conjunction with sales partners. • Maintain strong working relationships with relevant Optiv technology partners, based on client spend and Optiv focus. • Design and solution complete security programs to meet client objectives across technology and services including; facilitating new discussions by leveraging peer and industry network contacts performing requirements gathering analysis, and technology selection criteria coordinating demonstrations and security technology evaluations. • Interface and partner with the internal Optiv teams, particularly service delivery liaisons, to align client expectations with the entire Optiv solution portfolio to ensure service delivery excellence and client satisfaction. • Listen for client feedback and continually share with internal teams to evaluate and cultivate continuous improvement. • Participate in account planning, forecasting, and pipeline management activities. • Participate in managing and prioritizing the proposal process to create business proposals, contracts, and respond to RFI/RFP’s. • Actively pursue personal development by maintaining and obtaining technical capabilities, soft skills, and security-specific knowledge through formal education, certification, and other avenues. • Proficient sales techniques; makes connections, facilitates meetings, reads the room, asks probing questions, overcomes objections, gains trust, maintains composure under pressure, positions solutions, and assists in finalization of sale.

• This position will be pivotal to problem definition and discovery of the overall solution and guide teams on project processes, deliverables. • Drive the technical relationship with our customers and partners by providing advanced architecture, implementation and operational support. • Acts as overall industry leaders and leaders of technical excellence providing exceptional services and support to strategic clients setting the bar for others to aspire to. • Work with customers to help them articulate their business requirements and how those requirements translate into security features and functionality. • Assist with development of cyber engagement plans for customers which will enable them to execute upon strategies. • Rationalize different security solutions against requirements, risk, and constraints. • Contribute to industry groups and/or publications.