Responsibilities
Business collaboration and requirements analysis
- Partner with business stakeholders to analyze and define role-based access control (RBAC) requirements and permission models
- Conduct access reviews and collaborate with business units to establish appropriate access levels and segregation of duties
- Translate business requirements into technical IAM specifications and access policies
- Facilitate workshops and requirements gathering sessions with cross-functional teams
Assist IAM Implementation
- Support IAM leadership and engineers to execute IAM roadmaps
- Design and document access control matrices, role hierarchies, and permission structures
- Assist in the deployment and configuration of identity management solutions across enterprise systems
- Coordinate with technical teams to ensure proper integration of IAM systems with business applications
Process Improvement
- Continuously evaluate and improve IAM processes, workflows, and user experiences
- Create and maintain comprehensive documentation for IAM processes, procedures, and system configurations
- Develop training materials and provide guidance to end users and business stakeholders
- Analyze access patterns and recommend optimization opportunities
Support Security Management and Risk Management
- Help developing, maintaining, and enforcing IAM policies, standards, and procedures
- Assess and document access-related risks and recommend appropriate mitigation strategies
- Investigate and resolve access-related security incidents and policy violations
- Support privilege access management (PAM) initiatives and monitor high-privilege account usage
- Help Cyber Defense Operations triage incidents as need especially related to IAM
- Work with Internal Audit, IT, and Digital Security to address access review gaps and ensure compliance with security policies and regulatory requirements
Qualifications
Experiences
- 5+ years of hands-on experience in identity and access management, preferably in technology companies or enterprise environments
- 3+ years of experience with RBAC design, implementation, and management
- Extensive experience in the framework and process to define roles and permissions in IGA or RBAC implementations
- Proven experience working with business stakeholders to gather requirements and translate them into access control specifications
- Solid experience with IAM tools and platforms (e.g., AD, Okta, SailPoint, ForgeRock, CyberArk, or similar)
- Demonstrated experience conducting access reviews, certifications, and compliance audits
Technical
- Strong understanding of identity and access management concepts, protocols, and standards (SAML, OAuth, OpenID Connect, LDAP)
- Proficiency with directory services and identity providers
- Knowledge of privileged access management (PAM) concepts and tools
- Understanding of segregation of duties (SoD) principles and risk-based access controls
- Familiarity with compliance frameworks (SOX, PCI-DSS, HIPAA, etc.)
Communication and Collaboration
- Exceptional written and verbal communication skills with ability to explain technical concepts to non-technical stakeholders
- Proven ability to work collaboratively across diverse teams and organizational levels
- Experience facilitating meetings, workshops, and training sessions
- Strong customer service orientation and stakeholder management skills
- Strong analytical and organizational skills
Preferred Qualifications
- Bachelor's degree in Information Technology, Computer Science, or related field
- Industry certifications such as CISSP, CISA, CISM, or vendor-specific IAM certifications
- Experience with cloud IAM platforms (AWS IAM, Azure AD, Google Cloud IAM)
- Knowledge of zero trust architecture and modern identity security concepts
- Experience with automated provisioning and deprovisioning workflows
- Familiarity with IT service management (ITSM) tools and processes