Purpose of the Job / Position Summary: The Identity & Access Management (IAM) Specialist is responsible for managing and securing user identities and access controls across the organization. They ensure that access to systems and data is appropriately managed and controlled, supporting both security and operational efficiency.

Business Complexity / Context: The IAM Specialist operates in a complex and evolving environment where managing user identities and access controls is crucial for protecting sensitive information and ensuring compliance with security policies and regulations. The role involves working with various teams to enforce access policies, monitor access activities, and respond to security incidents. Balancing security requirements with user convenience and operational needs is essential for maintaining a secure and efficient IT infrastructure.

Key Responsibilities:

• Manage user access to systems and applications, ensuring appropriate permissions and security controls are applied.
• Implement and maintain identity management solutions, including user provisioning, de-provisioning, and access reviews.
• Provide Level 1 SOC support by monitoring security alerts, investigating potential security incidents, and escalating issues as necessary.
• Configure and manage multi-factor authentication (MFA) and single sign-on (SSO) solutions to enhance access security.
• Conduct regular access audits and reviews to ensure compliance with internal policies and external regulations.
• Develop and maintain documentation related to identity and access management processes and procedures.
• Collaborate with cybersecurity teams to identify and address access-related issues and vulnerabilities.
• Assist in the development and implementation of IAM policies, standards, and best practices.
• Support the integration of identity management systems with other IT systems and applications.
• Provide technical support and training to end-users on identity management and access-related issues.
• Monitor and analyze access logs to detect and respond to unauthorized access attempts or anomalies.
• Participate in incident response activities, including investigating and mitigating access-related security incidents.
• Ensure compliance with data protection regulations and industry standards related to identity and access management.
• Continuously evaluate and recommend improvements to IAM processes and technologies.

Core KPIs: 

• Percentage of Incident Tickets Resolved Within SLA Targets
• Percentage of Service Request Tickets Resolved Within SLA Targets
• User Satisfaction Ratings for Identity and Access Management related tickets
• Accuracy of user provisioning and de-provisioning activities, ensuring correct access rights are assigned

“What you bring”

The ideal candidate brings a strong background in identity and access management with hands-on experience in managing user identities and access controls. They possess a solid understanding of security principles and IAM technologies. The candidate is detail-oriented, proactive, and capable of handling security incidents and access-related issues efficiently.

Knowledge & Experience:

• Bachelor’s degree in information technology or a related field.
• Master’s degree in a related field is a plus.
• Proven experience of at least 5+ years in identity and access management or a related role.
• In-depth knowledge of IAM principles, tools, and technologies.
• Experience with SOC operations and providing Level 1 support.
• Familiarity with multi-factor authentication (MFA), single sign-on (SSO), and access control mechanisms.
• Excellent written and verbal English language proficiency.

Skills:

• Proficiency in identity and access management systems and tools.
• Strong analytical skills for investigating and resolving security incidents and access issues.
• Knowledge of security policies, procedures, and best practices.
• Effective communication and interpersonal skills for interacting with various stakeholders.
• Ability to manage and prioritize multiple tasks and responsibilities.
• Familiarity with security information and event management (SIEM) systems.

Competencies & Proficiency Level:

• Technical Proficiency: Advanced - Demonstrates mastery in managing IAM systems, tools, and security practices, effectively resolving access-related issues and incidents.
• Incident Response: Advanced - Effectively responds to and manages security incidents, analyzing and mitigating potential threats and vulnerabilities.
• Communication: Intermediate - Communicates technical information clearly to stakeholders and provides support and training on IAM processes.
• Problem-Solving: Advanced - Identifies and resolves complex access and security issues promptly, applying strong analytical skills and attention to detail.
• Collaboration: Intermediate - Works collaboratively with IT and security teams to address access-related challenges and improve IAM processes.