IT Product Owner- GRC and IAM

Build Your Career. Build America's Future.
Vulcan Materials Company is the nation's largest producer of construction aggregates and a major producer of aggregates-based construction materials, including asphalt and ready-mixed concrete. When you join Vulcan, it's more than starting an exciting career - you get to make a difference for millions of people every day across the country.

When you join Vulcan, you join a dynamic culture in which career development is encouraged, excellence is rewarded, and diversity is valued. No matter the role or the location across the country, every member of the Vulcan team lives through the Vulcan Way: doing the right thing, the right way, at the right time.

IT Product Owner - Governance, Risk, and Compliance

We are seeking a highly experienced and strategic GRC Leader to lead our identity and access governance (IAG) initiatives. In this pivotal role, you will be responsible for defining, implementing, and optimizing our identity governance frameworks, ensuring robust security, compliance, and operational efficiency across the organization. You will leverage your deep expertise in IAM tools, process transformation, and cross-functional leadership to drive significant improvements in our identity posture.

• Strategy and Framework: Develop and implement comprehensive identity governance strategies, frameworks, policies, and procedures, ensuring alignment with business goals and regulatory mandates.

• IAM Tool Optimization: Drive the adoption and optimization of IAM tools, with a strong emphasis on SailPoint, to automate identity lifecycle management, streamline access certifications, and enforce policies.

• System Enhancement and Testing: Oversee and actively participate in the testing and deployment of new IAM capabilities and system enhancements.

• Transformation Leadership: Lead complex transformation projects focused on identity and access management, ensuring successful delivery within defined scope, budget, and timelines.

Risk Management

• Risk Assessment: Utilize established methodologies to identify, assess, and prioritize IT and security risks, including those related to identity management, data protection, and third-party vendors.

• Mitigation and Compliance: Develop, implement, and monitor risk mitigation and treatment plans, ensuring controls are effective and align with the organization's risk appetite and regulatory obligations (e.g., NIST, ISO 27001, SOX).

Governance and Compliance Leadership

• Change Management: Act as a key liaison within the Change Advisory Board (CAB) or similar governance bodies, reviewing change requests for compliance, security impact, and adherence to established controls.

• Control Monitoring: Monitor the post-implementation effectiveness of change controls, identifying deficiencies and driving corrective action plans to minimize operational disruption and security exposure.

• Industry Expertise: Maintain current knowledge of industry best practices, emerging threats, and new technologies in identity governance and cybersecurity.

Operational Excellence and Reporting

• Process Improvement: Spearhead initiatives for process transformation and improvement, focusing on streamlining workflows and enhancing operational efficiency within the GRC domain.

• Data Analysis: Conduct in-depth data analysis to identify trends, risks, and areas for improvement within governance frameworks.

• Management Reporting: Design and create comprehensive dashboards and reports for effective management reporting, delivering actionable insights on compliance efforts.

Collaboration and Mentorship

• Cross-Functional Partnership: Lead and collaborate effectively with cross-functional teams, including IT, security, audit, and various business units, to ensure seamless integration and adoption of identity governance practices.

• Team Development: Mentor and guide junior team members, fostering a culture of continuous learning and professional development.

Skills You'll Need:

• Minimum of 10 years of progressive experience in technology roles with a focus on Identity and Access Management (IAM).

• Demonstrated hands-on experience with leading IAM and security tools, particularly SailPoint.

• Proven track record in successfully leading large-scale technology transformation projects.

• Expertise in testing and deployment readiness methodologies.

• Extensive experience in creating, implementing, and managing process frameworks.

• Strong strategic thinking abilities with a proven capacity for strategy creation and execution.

• Experience in process analysis, transformation and continuous improvement.

• Proficiency in data analysis and the ability to create impactful dashboards for various stakeholders.

• Excellent written and verbal communication skills, with experience in preparing and presenting management reports.

• Demonstrated ability to lead and drive cross-functional efforts, influencing stakeholders at all levels.

• Relevant industry certifications (e.g., CISSP, CISM, CISA, Sailpoint Identity Security Leader, SailPoint Identity Security Engineer) are a plus.

• Deep understanding of ITIL framework and experience with ITSM tools, specifically ServiceNow.

• Demonstrated experience in managing vendor relationships and external partnerships.