Available Locations: Lisbon, Portugal or Mexico City, Mexico
About the role
As an Identity and Access Management (IAM) Security Analyst you will play a key role in efficiently managing user identities and access across the enterprise. You will be responsible for implementing technologies and designing processes to ensure users have authorized access to resources and systems.
What You’ll Do
- Automate user provisioning and deprovisioning processes to enhance efficiency.
- Design, implement, and manage Identity Access & Governance policies and procedures.
- Conduct access certifications and enforce access controls based on organizational policies.
- Define and enforce privileged access management (PAM) policies to secure sensitive systems and data.
- Manage user onboarding, offboarding, and role changes, ensuring adherence to security policies and compliance requirements.
- Define and enforce access control policies, including, but not limited to, role-based access control (RBAC), least privilege principle, and segregation of duties (SoD).
- Conduct periodic access reviews and audits to maintain compliance.
- Collaborate with cross-functional teams, including IT, security, and compliance, to ensure IAM aligns with business goals.
- Communicate IAM-related updates and recommendations to stakeholders.
- Maintain comprehensive documentation of IAM policies, processes, and configurations.
- Generate reports and metrics related to IAM activities and security posture.
- Stay current with industry best practices, regulations, and compliance standards related to IAM, such as FedRamp, SOX, GDPR, PCI, and NIST.
Examples of desirable skills, knowledge and experience.
- In-depth understanding of IAM concepts, technologies, standards, and best practices.
- Experience in Identity and Access Governance performing policy enforcement, role management, and access certifications
- Experience implementing privileged access management (PAM)
- Experience drafting IAM security standards and policies
- Preferred background in scripting and/or application development to automate identity and access management processes.