Manager: Identity and Access Management (IAM) – CRDB Bank
Reporting Line
Head of Cybersecurity
Location
Tanzania Head Office
Department
Cybersecurity Unit
Number of Openings
1
Employment Terms
Permanent
Application Deadline
12 February 2026
Job Purpose
The Manager: Identity and Access Management (IAM) leads the design, governance, and operation of enterprise identity and access controls. The role ensures secure, compliant, and efficient access to the bank’s systems and digital services by managing Access Management, User Access Management (UAM), and Privileged Access Management (PAM). The position drives automation, reduces access-related risks, and ensures IAM capabilities are fully integrated into business processes and cybersecurity initiatives.
Key Responsibilities
• Define and own the IAM strategy and roadmap aligned with business, cybersecurity, and regulatory requirements
• Establish and enforce IAM policies, standards, and best practices (least privilege, zero trust, segregation of duties)
• Govern the enterprise RBAC model, including role design, approval, and documentation
• Manage Joiner–Mover–Leaver (JML) processes with strong automation across all systems
• Lead user access reviews and attestations, track remediation, and maintain audit-ready evidence
• Own and administer the PAM platform, including onboarding of privileged accounts and policy enforcement
• Enforce privileged access controls such as JIT access, credential rotation, session monitoring, and break-glass procedures
• Lead access-related incident management, root cause analysis, and corrective actions
• Ensure secure integration of IAM with applications, directories, cloud platforms, SSO, and MFA
• Manage IAM/PAM vendors, licensing, upgrades, and platform performance
Qualifications and Experience
• Bachelor’s degree in Computer Science, Cybersecurity, Software Engineering, or related field
• Minimum of 5 years’ experience in cybersecurity with focus on IAM, UAM, or PAM
• Experience with IAM/PAM tools such as CyberArk, BeyondTrust, or similar platforms
• Professional certifications such as CISA, CISSP, or ISO 27001 LA/LI are an added advantage
• Knowledge of security frameworks including NIST, ISO 27001, and PCI DSS
• Experience in user access reviews, access matrices, and entitlement management
• Understanding of ICT infrastructure, networks, and application administration
• Strong analytical, problem-solving, collaboration, and documentation skills
CRDB Commitment
CRDB Bank is committed to Sustainability and ESG principles and promotes an inclusive workplace. Applications from women and persons with disabilities are encouraged.
CRDB Bank does not charge any fees during the recruitment process.
Only shortlisted candidates will be contacted.
