Identity Access Management Security Analyst

Job Summary:
 

We are seeking a skilled and detail-oriented Identity and Access Management (IAM) Analyst to support the design, implementation, and operation of our enterprise-wide access control framework. In this mid-level role, you will play a critical part in enforcing security best practices, supporting access provisioning and governance processes, and ensuring secure access to systems and data across multiple platforms.
 

Key Responsibilities
 

• Administer and manage user access across enterprise systems (e.g., Active Directory, Azure AD, SaaS platforms, on-prem applications).
   
• Analyze and enforce access control policies, ensuring least privilege and role-based access control (RBAC) models are applied.
   
• Collaborate with IT and business units to define, document, and improve identity lifecycle processes (e.g., provisioning, de-provisioning, access reviews).
   
• Implement and support tools for identity governance, authentication (MFA, SSO), and privileged access management (PAM).
   
• Monitor IAM systems for anomalies and coordinate incident response activities related to access violations or abuse.
   
• Participate in audits and support compliance initiatives (e.g., SOX, HIPAA, ISO 27001) by providing evidence of proper access controls.
   
• Conduct regular access reviews and assist in remediation efforts for policy violations or control gaps.
   
• Support the integration of new applications into the IAM ecosystem via SAML, OAuth, LDAP, and other standard protocols.
   

Requirements
 

• Bachelor’s degree in Computer Science, Information Security, or related field; or equivalent practical experience.
   
• 3–5 years of experience in identity and access management, cybersecurity, or IT operations with a focus on access controls.
   
• Proficient with IAM technologies and tools (e.g., SailPoint, Okta, CyberArk, Azure AD, etc.).
   
• Solid understanding of access control principles, RBAC, least privilege, separation of duties, and other security best practices.
   
• Experience with scripting and automation (e.g., PowerShell, Python) is a plus.
   
• Familiarity with compliance standards and frameworks (e.g., NIST, ISO 27001, SOC 2).
   
• Strong analytical, documentation, and communication skills.
   

Preferred Certifications (Nice to Have)
 

• Certified Information Systems Security Professional (CISSP)
   
• Certified Identity and Access Manager (CIAM)
   
• Microsoft Certified: Security, Compliance, and Identity Fundamentals
   
• CompTIA Security+