Sr. Cyber Identity and Access Specialist (Hybrid)

At Selective, we don't just insure uniquely, we employ uniqueness.

Selective is a midsized U.S. domestic property and casualty insurance company with a history of strong, consistent financial performance for nearly 100 years. Selective's unique position as both a leading insurance group and an employer of choice is recognized in a wide variety of awards and honors, including listing in Forbes Best Midsize Employers in 2025 and certification as a Great Place to Work in 2025 for the sixth consecutive year.

Employees are empowered and encouraged to Be Uniquely You by being their true, unique selves and contributing their diverse talents, experiences, and perspectives to our shared success. Together, we are a high-performing team working to serve our customers responsibly by helping to mitigate loss, keep them safe, and restore their lives and businesses after an insured loss occurs.

"Applicants must be authorized to work for any employer in the United States. Selective will not sponsor or assume the sponsorship of an employment visa at this time".

Note for NJ candidates: This role will be located at our future headquarters in Short Hills, N.J. Until the new headquarters is operational, the successful candidate will be offered the ability to work in our Branchville, N.J. location during this interim period.

We are seeking a highly experienced and knowledgeable Senior Specialist in Identity and Access Management (IAM) to join our IAM team. This role is an individual contributor role, and the ideal candidate will have 5-7 years of experience implementing enterprise-level IAM solutions and collaborating across departments to optimize lifecycle identity management, access governance, and compliance. This role will focus on shaping our organization's IAM roadmap, designing, implementing, and maturing our IAM systems to strengthen security, optimize access management, ensure regulatory compliance, and provide strategic IAM guidance.

• Evaluate and recommend Identity Governance and Administration (IGA) solutions to support enterprise-wide IAM objectives.
• Design and implement automated identity lifecycle workflows, including provisioning, de-provisioning, and access reconciliation.
• Establish and maintain API-based integrations for IGA functionalities, including access requests and reporting.
• Enforce access controls aligned with least privilege, segregation of duties, and identity governance best practices.
• Implement access re-certification processes to ensure compliance with regulatory requirements and internal policies.
• Define and enforce role-based access control (RBAC) models to align with organizational needs and security standards.
• Perform periodic assessments to optimize IAM processes, mitigate risks, and identify improvement opportunities.
• Develop metrics and reports for senior leadership to measure IAM performance and compliance.
• Collaborate with stakeholders, including Human Resources, Application Development, and Infrastructure teams, to design and optimize IAM solutions.
• Mentor and guide junior IAM team members, fostering a culture of continuous improvement and knowledge sharing

• 5-7 years of experience in cybersecurity and with IAM practitioner experience.
• Proven experience configuring and integrating IAM platforms using solutions like Microsoft Entra ID (Azure AD), Okta, Ping Identity, SailPoint, Saviynt, or ForgeRock.
• Relevant industry certifications such as CIAM, CISSP, CRISC, SailPoint Identity Certified Implementation Engineer, Okta Certified Administrator, or similar preferred.
• Experience implementing regulatory requirements such as 23 NYCRR 500, HIPAA, GLBA, and SEC cybersecurity rules.
• Experience with identity lifecycle management processes and workflows, access provisioning/deprovisioning, and user account management across multiple systems.
• Strong understanding of IAM principles, including RBAC, ABAC, PAM, SSO, MFA, and directory services.
• Experience with emerging IAM trends, including password-less authentication, zero trust, and advanced access control concepts.
• Hands-on experience with scripting languages (e.g., PowerShell, Python) for IAM automation.
• Solid knowledge of identity federation protocols and standards. (e.g., LDAP, SCIM, SAML, OAuth, OpenID Connect) and API integrations.
• Excellent analytical and problem-solving skills.
• Strong communication, interpersonal, leadership, and stakeholder engagement skills.
• Ability to work independently and as part of a team.

Selective Insurance offers a total rewards package that includes a competitive base salary, incentive plan eligibility at all levels, and a wide array of benefits designed to help you and your family stay healthy, achieve your financial goals, and balance the demands of your work and personal life. These benefits include comprehensive health care plans, retirement savings plan with company match, discounted Employee Stock Purchase Program, tuition assistance and reimbursement programs, and 20 days of paid time off. Additional details about our total rewards package can be found by visiting our benefits page.

The actual base salary is based on geographic location, and the range is representative of salaries for this role throughout Selective's footprint. Additional considerations include relevant education, qualifications, experience, skills, performance, and business needs.

Selective is an Equal Employment Opportunity employer. That means we respect and value every individual's unique opinions, beliefs, abilities, and perspectives. We are committed to promoting a welcoming culture that celebrates diverse talent, individual identity, different points of view and experiences - and empowers employees to contribute new ideas that support our continued and growing success. Building a highly engaged team is one of our core strategic imperatives, which we believe is enhanced by diversity, equity, and inclusion. We expect and encourage all employees and all of our business partners to embrace, practice, and monitor the attitudes, values, and goals of acceptance; address biases; and foster diversity of viewpoints and opinions.

For Massachusetts Applicants

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.