Head of Identity

**Job Description**:
**Life at Grab**:
At Grab, every Grabber is guided by The Grab Way, which spells out our mission, how we believe we can achieve it, and our operating principles - the 4Hs: Heart, Hunger, Honour and Humility. These principles guide and help us make decisions as we work to create economic empowerment for the people of Southeast Asia.

**Make an impact every day with Grabber Technology Solutions-IAM Team**

Our Identity Access Management (IAM) team sits within the Groups GTS function, which is more of an internal technology function responsible for mission-critical enterprise technology stack. We have a challenging journey that impacts our customers\partners across the SEA. Our IAM team ensures all users; internal apps\systems\infra are discreetly provided with accurate AuthN, with granular AuthZ in place. The IAM team drives access-related processes and builds partnerships to benefit internal teams and users.

We thrive in providing solutions to complex IAM-specific issues, devote time and energy to designing new and innovative IAM workflows, and help provide an environment that demands being risk-aware, not risk-averse.

We are looking for a strong, experienced leader to make a meaningful impact with a diverse and passionate team of creators, innovators and achievers. With us, you’ll learn, be inspired, and make an impact every day. The success of our work hinges on how we use the unique diversity of our people to realise the effects we seek to achieve: Always on. Always safe. Always Simple.

**The Day-to-Day Activities**:

- Strategy
- Provide leadership and oversight by setting the direction, strategy, deliverables, and operating model for Identity Access Management focused on the processes and the associated technological pillars, & fostering brilliant automation and engineering functions.
- Own the definition, implementation and ongoing maintenance of service roadmaps to ensure fit-for-purpose services, organisation, processes and tools are in place to support the delivery of the team’s access-related operational objectives.
- Act as the thought leader for IAM and ensure the service stays on par/ahead of competitive and industry trends.
- Institutionalise “IAM as a service” practices across the various Grabs teams through advocacy, training, and associated aspects.
- Business
- Thrive to provide the Right Grab User with the “Right Access” to the “Right Resource” for the “Right Reason” and maintain a record of who has “Access to What”.
- Lead complex and global IAM improvement efforts that work across business functions
- Plan and manage the financing of the IAM service within the applicable budget framework
- Processes
- Ownership of the IAM catalogue content (including service fact sheets, service descriptions, service level objectives etc.)
- Providing leadership over the operation of IAM-specific tools, planning and execution, researching and analysing new features\functions, identifying relevant access threats, corrective action recommendations, summarising and reporting results.
- Responsible for establishing and managing advanced IAM dimensions towards a zero trust model, which will be leveraged to deliver robust offerings through a highly scalable, reliable and secure platform, methodology, and process
- Ensure IAM services are agile to cater for various consumer requirements for DevOps and cloud-based environments
- Develop and advocate the use of automated workflows and processes, standardised frameworks and standards to enhance the agility and effectiveness of IAM services
- Responsible for establishing and operating a quality IAM service assurance process to assure the quality of third parties engaged by Grab occasionally for regulatory purposes to deliver a best-in-class IAM experience.
- People and Talent
- Manage, motivate and develop a high-performing team of technical and non-technical specialists (approximately 20+) that is proactively involved in making sure we embed regional compliance & regulatory controls, which we intend to offer as a Single, Standardized, Operationally Efficient, & secure IAM platform across Grab, including its M&A’s and JV, shared environments
- Define resource, training, and technology requirements to ensure the success of the team’s mission.
- Risk Management
- Consolidate identified access gaps into a single risk-focused view to help guide senior management access-related risks and remediation decisions.
- Provide thought leadership, research and report on the Grabs environments exposure to the access related gaps and emerging threats and vulnerabilities through periodic management briefings and bulletins and working closely with relevant teams to implement short-gap remediation activities and compensating controls to reduce risk while identifying access gaps are being addressed
- Manage and influence stakeholders in understanding access risk exposure and containment measures from the IAM perspective, which Grab