IAM Analyst - SailPoint IIQ

Location Oakville
Discipline: InfoSec & Cyber Security
Job ref: 535
Published: about 1 month ago

The IAM Analyst position is a practitioner role working under the leadership of cybersecurity management. An IAM Analyst helps define, establish, maintain and manage identities across the organization. The analyst manages and maintains access to systems and applications following rigorous security, engineering and governance principles, especially when provisioning and de-provisioning access. This position works closely with IT, cybersecurity operations and incidence response, business units and third parties. In addition, the IAM Analyst helps with provisioning, governing access, SSO, directory services, technical integrations and supporting behavioral analytics. The ideal candidate has a technical background and possesses 3-5 years’ experience in technology and security administration across large heterogeneous networks, including third-party entities.

Here’s how you’ll contribute: 
• Serve on a distributed security and technology team responsible for establishing and maintaining identities and entitlements within IAM solutions. 
• Implement identity controls and settings that align with policies and governance structure. 
• Work closely with security leadership, teammates and stakeholders to evaluate and implement access models that align with organizational risk posture. 
• Support IAM governance, policies and solutions across SSO, directory, certificate, MFA, privileged accounts, automation and behavior analytics systems. 
• Assess and resolve IAM issues that occur across the employee base, as well as with external entities. 
• Secure access to both on-prem and cloud infrastructure, as well as to applications required to support a distributed remote workforce. 
• Evaluate business impact and risk exposure based on the level of access granted and make recommendations where improvements should be made. 
• Work closely with incident responders during potential incidents and escalate to management as needed. 
• Document access, policies and exceptions, and maintain integrity for audit reviews. 
• Review internal, external and contractor accounts as part of periodic audits. 
• Make recommendations for improvements in automation efficiencies, security practices and end-user experience. 
• Collect key performance indicators and related operational metrics, and track SLAs used to validate success as well as future areas of improvement. 
• Execute tactical requests and support the strategic vision for rigorous and scalable IAM controls. 
• Maintain understanding of business processes to aid in managing enterprise identity and access. 
• Frequently interact with business units to understand their plans, risk posture and tolerance, and how IAM supports their vision and business obligations with security in mind. 
• Implement IAM projects from inception to completion on time and within budget. 
• Openly support the organization, the management team and executive leadership, even during times of adversity. 

Here’s what you’ll bring: 
• Preferably 3-5+ years’ experience in security systems administration, with 2+ years’ technical hands-on IAM practitioner experience with SailPoint IIQ. 
• Bachelor's degree preferred in information assurance, computer science, engineering or related technical field. 
• One or more of CISSP, CISM, CRISC, CISSP, CGEIT, CIPP preferable, but not required. 
• Familiarity with administering directory services, Windows and Azure AD, SSO, MFA and role-based access control (RBAC). 
• Experience administering IAM systems, access controls, security and risk management, and security governance fundamentals. 
• Ideally familiar with one or more regulatory requirements and laws such as, but not limited to, OSFI Security and Integrity Guideline and B-13, PCI, ISO 17799, ITIL and NIST. 
• Preferable experience with one or more scripting languages (e.g., Python, PowerShell, Bash). 
• Strong written and oral communication skills across varying levels of the organization. 
• Understanding of service design, delivery concepts and control frameworks.