Identity & Access Management Senior Officer

IAM Strategy and Implementation

• Platform Management: Design, deploy, configure, and maintain core IAM/IGA tools (e.g., SailPoint, ForgeRock) to automate identity lifecycle management, provisioning, and de-provisioning processes.
• Privileged Access Security: Lead the implementation and operational management of PAM solutions (e.g., CyberArk) to tightly secure, monitor, and manage administrative and service accounts across critical infrastructure.
• Access Architecture: Implement and manage advanced access control technologies, including Single Sign-On (SSO) via protocols (SAML, OAuth) and various Multi-Factor Authentication (MFA) methods.
• Integration: Collaborate with application development and IT infrastructure teams to onboard new applications and systems onto the central IAM platform, ensuring seamless integration and centralized access control.

Governance, Risk, and Compliance (GRC)

• Access Governance: Define, enforce, and continuously refine access policies based on the Principle of Least Privilege and Segregation of Duties (SoD) requirements.
• Regulatory Adherence: Ensure the IAM program is fully compliant with financial industry regulations and security standards (e.g., NIST, ISO 27001, COBIT, GLBA, SOX, etc.).
• Access Certification: Conduct and document regular User Access Reviews (UARs) or recertification campaigns to validate that users' access rights remain appropriate for their current role.
• Audit and Reporting: Generate detailed audit trails and access reports for internal, external, and regulatory audits, actively supporting the remediation of any findings related to identity controls.

 Operations and Support

• Troubleshooting: Serve as a subject matter expert (SME) to troubleshoot complex authentication and authorization issues related to IAM platforms, directory services (e.g., Active Directory, LDAP), and integrated applications.
• Documentation: Create and maintain comprehensive documentation for all IAM policies, standards, processes, and system configurations.
• Incident Response: Participate in security incident response activities related to compromised accounts, unauthorized access attempts, or IAM system failures.
• Stakeholder Collaboration: Work closely with business owners, internal auditors, and risk management teams to gather access requirements and communicate security risks clearly.