Identity & Access Management Officer

 Identity and Access Management Operations

• User Provisioning and Deprovisioning:
  • Manage the full lifecycle of user identities (onboarding, transfers, and offboarding) across various bank systems, ensuring access is granted and revoked promptly and accurately based on approved requests and bank policies.
  • Perform daily operational tasks related to user access management, including password resets, account unlocks, and entitlement modifications.
• Access Reviews and Certification:
  • Execute regular access reviews (attestation campaigns) for all bank applications and systems to ensure the principle of Least Privilege is maintained.
  • Work with business owners and application custodians to validate and certify user entitlements periodically, in compliance with internal and regulatory requirements (e.g., Central Bank of Egypt regulations).
• Incident and Request Handling:
  • Act as the primary point of contact for IAM-related incidents and service requests via the ITSM platform (e.g., ServiceNow or Jira).
  • Investigate and resolve access-related issues, escalating complex problems to the appropriate cybersecurity or IT support teams when necessary.

Technical and System Administration

• Directory Services Management:
  • Administer and maintain core IAM infrastructure, specifically focusing on user and group management within Active Directory (AD).
  • Manage access controls and permissions for critical banking environments running on Windows and Linux operating systems.
• IAM Tool Utilization:
  • Effectively utilize and maintain the bank's IAM tools and systems, including the ITSM platform (ServiceNow/Jira) for tracking, prioritizing, and documenting all IAM activities.
  • Ensure configuration settings for access controls within these systems are accurate and aligned with security standards.
• System Integration Support:
  • Provide support for the integration of new applications and services with the central IAM solution, ensuring seamless and secure authentication and authorization mechanisms.

Policy, Compliance, and Documentation

• Policy Enforcement and Adherence:
  • Demonstrate strong understanding of IAM concepts, policies, and procedures, ensuring all daily operations strictly adhere to the bank’s security framework and regulatory compliance obligations.
  • Assist in the enforcement of strong password policies, multi-factor authentication (MFA) requirements, and appropriate segregation of duties (SoD) controls.
• Documentation and Reporting:
  • Maintain accurate and detailed documentation of all user access rights, provisioning processes, and access review results.
  • Develop and maintain comprehensive standard operating procedures (SOPs) for all key IAM functions.
  • Generate regular and ad-hoc reports on user access, compliance status, and operational metrics for management review.
• Audit Support:
  • Support internal and external audit requirements by providing necessary evidence and explanations regarding user access controls and compliance with IAM policies.