IAM/ Security Analyst

Brief Description of the Project:

These individuals will be working on Issues related to SoD for logical access. The objective is to interview experience owners within different division enterprise wide to assess if there is risk of internal fraud. If so, can it be controlled with SoD to eliminate the toxic pairs? Facilitate ask questions regarding risk and security.

Job Responsibilities:

· Identifies and manages existing and emerging risks that stem from business activities access and the job role.

· Ensures risks associated with business activities are effectively identified, measured, monitored, and controlled.

· Must interpret and follow written risk and compliance policies, standards, and procedures for business activities.

· Performs object life-cycle management and administration of access controls for a subset of Enterprise systems managed by Enterprise Security.

· Understand and operate the Enterprise System Access Review Certification process.

· Assists in the implementation and maintenance of processes for the administration of security access to new and existing enterprise systems.

· Analyzes routine access requests in partnership with stakeholders to ensure that the access is correct and complies with guidance and industry’s best practices.

· Provides routine troubleshooting and incident support for IAM related issues.

· Assists in the preparation and delivery of written and verbal briefings with recommendations to internal customers.

· Develops knowledge of Information Security standards as well as industry information security best practices, frameworks, laws, and regulations.

· Provides intermediate advice and guidance on routine IAM controls to the enterprise.

· Works under minimal supervision. Serves as a resource to team members on escalated issues of a routine nature.

Minimum requirements:

· Bachelor’s degree; OR 4+ years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree.

· Experience in Information Security, Cybersecurity, Identity and Access Management and/or Information Technology to include accountability for simple to moderately complex tasks and/or projects.

· Related experience in Identity and Access Management (IAM) platform administration and solutions supporting Mainframe, Windows, Linux and/or Apple systems and Enterprise applications.

· Familiarity with leading IAM concepts such as Least Privilege, Privileged Access, Segregation of Duty (SOD), and Role Based Access Control (RBAC).

· Possess a level of business acumen in the areas of business operations, risk management, industry practices and emerging trends.

· Possess working knowledge of different authentication types of protocols.

· Ability to work in a fast-pace complex environment leveraging Agile methodologies

Preferred experience:

· Experience with application identity and access management (cloud and on-premise), risk management, and compliance

· Working knowledge with various identity and governance tools (prefer SailPoint, OIG)

· Strong verbal and written skills to work with business units to define application security and modernize where possible

· Working knowledge of data manipulation within Talon

· Working knowledge of Service Now and Confluence (Wiki platform)

· Possess working knowledge of Agile S.A.F.E tools such as Rally and/or Jira

· Experience in working with Microsoft Office products (Excel, Word, PowerPoint, etc).