Identity Security Posture Management (ISPM) Specialist (Cybersecurity)

TL;DR

Identity Security Posture Management (ISPM) Specialist (Cybersecurity): Manages and matures identity security posture by continuously monitoring and remediating identity risks and access exposures across IAM/IGA/PAM with an accent on risk prioritization, remediation orchestration, and audit/compliance enablement. Focus on identifying excessive privileges and attack paths, coordinating fixes with stakeholders, building dashboards and metrics, and automating posture checks.

Location: Hybrid role in Downers Grove, IL, Dallas, TX or Jacksonville, FL offices

Salary: $89,000 to $148,100 base + annual bonus, equity, and benefits

Company

hirify.global is one of the nation’s leading specialized insurers providing products and services to customers with unique needs.

What you will do

• Operate and mature ISPM capability to discover identity exposures across identity providers, SaaS apps, cloud, and business systems.
• Identify and track issues like excessive privileges, dormant accounts, misconfigured roles, and privilege escalation paths; maintain exposure register with remediation plans and SLAs.
• Triage and prioritize risks, coordinate remediation including least privilege enforcement, MFA improvements, and entitlement clean-up.
• Provide evidence for identity controls, produce audit-ready reporting for SOX/ITGC and regulators.
• Build dashboards and KRIs on posture trends; present to leadership and stakeholders.
• Integrate with tools like ServiceNow, SIEM, IGA/PAM; automate checks via APIs/scripts; advise teams on best practices.

Requirements

• Bachelor's degree or equivalent in Information Cyber Security, Risk Management, or GRC
• 7+ years in third-party cyber/data risk management and assessments
• 5+ years in identity security, IAM/IGA, security operations, or risk management
• Working knowledge of identity concepts: authentication, authorization, RBAC/ABAC, privileged access, lifecycle, entitlements.
• Experience with Entra ID/Azure AD, Active Directory, SailPoint/CyberArk, AWS/Azure identities, SaaS admin models.
• Strong documentation, reporting, analytical, and stakeholder collaboration skills.

Nice to have

• Experience with ISPM/identity exposure tools for threat detection and attack path analysis.
• Regulated industries experience (insurance, financial services) and audit support (SOX, NYDFS, GLBA).
• Practical automation skills (PowerShell, Python, KQL, APIs).
• Certifications: Security+, SSCP, CISSP, GIAC IAM, Microsoft/AWS security.

Culture & Benefits

• High-performing culture with personal development, professional challenges, and work-life balance.
• Comprehensive benefits: Medical, Dental, Vision, PTO, 401k.
• Annual discretionary bonus and equity eligibility.
• Equal opportunity employer committed to diversity and inclusion.