| Hands-onIAM business systems analyst with Engineering Experience at Remote, Remote, USA |
| Email: [email protected] |
|
https://jobs.nvoids.com/job_details.jsp?id=2278772&uid= From: Anju Pathak, Tek Inspirations LLC [email protected] Reply to: [email protected] Job Description - Hands-on IAM business systems analyst with Engineering Experience 12 months, likely to extend Remote; must be in Austin or San Fran, with occasional onsite visits Austin local is priority, then SFO, then Seattle. USC GC Must have LinkedIn with profile picture KPM notes: So, YES, this is hands-on, but they need someone super strong to strategize and bring coherence to their enterprise. For example: they need to improve their corporate IAM practice, as they have 6,000 roles, which, is way too many. Looking at JIT processes/process improvement. We are looking for a mix of custom IAM development and zero trust / continuous authentication skills with experience / understanding of job family architectures. Candidate needs to possess extensive experience in access certification, risk based authentication, dynamic access control, token management, API / microservices and event driven architectures. Needs to be an exemplary communicator with the ability to explain translate business requirements into technical requirements. For e.g., based on conversations with the business, consultant needs to understand the data they access and determine the applications / personas / roles and access controls that need to be in place. Experience with developing innovative ways of Just-In-Time access is a must. Experience with working on Security Incident Response Teams is a must. Note: Experience with off the shelf solutions such as Okta and SailPoint wont suffice. The ability to custom develop solutions in a complex application environment is required. We are looking for a highly effective communicator. --------------------------------- Job Description: We are seeking a highly IAM business systems analyst with a strong focus on automation, integration, and business process interconnection to join our team. In this role, you will be responsible for designing, building, and maintaining IAM solutions that enhance security and streamline user access management across our organization. You will work on automating the access certification process, developing custom connectors and microservices, and implementing a range of IAM strategies such as zero trust, dynamic certifications, and continuous authentication. The ideal candidate should have experience building custom IAM solutions, including developing microservices, working with event-driven architectures, and managing complex access processes, all while ensuring a seamless experience for end users. Key Responsibilities: Build and Integrate IAM Solutions: Design, develop, and deploy custom IAM connectors and middleware to automate access certification processes. Build integration automation solutions in code to connect business processes and systems, ensuring streamlined identity management and access provisioning. Collaborate with stakeholders to gather requirements and build access certifications that meet business needs while keeping user experience seamless. Automate Access Certification & Risk Scoring: Implement and configure dynamic access certification campaigns to ensure users only have the access they need. Apply risk scoring and dynamically adjust access certifications based on user behavior, roles, and job functions. Automate continuous authentication and enforce zero trust principles for all users, ensuring high levels of security without interrupting the user experience. Efficient Access Management: Develop solutions to enable quick access provisioning and facilitate seamless user experiences while maintaining robust security. Revoke SAML tokens and other credentials across all apps with minimal disruption, ensuring that only authorized users have access at any given time. Handle different methods and categories of termination, suspension, session revocation, and mobility during emergency terminations or SIRT (Security Incident Response Team) sessions. Custom Microservices Development: Build and maintain custom microservices for critical IAM operations such as termination, session revocation, and access policy enforcement. Develop a common pattern and API contract for IAM services that ensures consistency and reliability in event-driven architectures. Work on automating token revocation, ensuring that access is revoked dynamically without suspending user accounts. Policy Enforcement & Zero Trust: Design and implement policies based on Zero Trust principles, enforcing continuous authentication based on user profiles. Ensure that IAM policies adhere to security requirements while supporting agile and efficient business processes. Work closely with the HR team to understand job family architecture and develop personas for business users. Collaborate with business units to identify access needs and build customized personas based on roles and access levels. Work with business functions teams to discuss access personas and define access rules for different user groups. Implement just-in-time access provisioning mechanisms that are time-bound and data-bound, ensuring that users have the necessary access for their roles and duration. Facilitate rapid access provisioning while maintaining compliance and security. Collaborate with Business Functions: Work closely with the HR team to understand job family architecture and develop personas for business users. Collaborate with business units to identify access needs and build customized personas based on roles and access levels. Work with business functions teams to discuss access personas and define access rules for different user groups. Access Provisioning & Revocation: Implement just-in-time access provisioning mechanisms that are time-bound and data-bound, ensuring that users have the necessary access for their roles and duration. Facilitate rapid access provisioning while maintaining compliance and security. Required Skills & Qualifications: Experience: Proven experience in designing, implementing, and managing IAM systems, including working with microservices, custom connectors, and middleware. Experience in automating access certification processes and configuring dynamic certifications. Experience working with access management tools for automating the provisioning and revocation of access across hybrid environments. Hands-on experience in the HR domain, specifically with job family architecture and developing business personas. Expertise in access control models such as RBAC (Role-Based Access Control) and ABAC (Attribute-Based Access Control). In-depth experience with Zero Trust security principles and continuous authentication models. Solid experience with identity management protocols (e.g., SAML, OAuth2, OpenID Connect), and ability to revoke SAML tokens or similar credentials across integrated systems. Technical Skills: Strong coding skills in languages such as Python, Java, or Go to develop automation scripts and IAM solutions. Experience with event-driven architectures and tools like Kafka or similar technologies for IAM system integrations. Expertise in IAM solutions such as Okta, Ping Identity, SailPoint, or custom-built solutions. Hands-on experience with cloud-based IAM platforms (e.g., AWS IAM, Azure AD, Google Identity). Experience implementing just-in-time access provisioning and dynamic access controls. Problem-Solving & Process Design: Ability to design scalable and reliable IAM solutions to handle complex identity and access management scenarios. Deep understanding of the business processes involved in suspension, termination, and session management, with the ability to unify different methods of access termination or session revocation. Proven track record of successfully building and maintaining secure, user-friendly IAM solutions that are aligned with business needs. Soft Skills: Strong collaboration skills with cross-functional teams, including HR, IT, and business stakeholders. Ability to communicate complex IAM concepts to non-technical business partners effectively. Detail-oriented and highly organized, with the ability to manage multiple projects simultaneously. Preferred Qualifications: Familiarity with SIRT (Security Incident Response Team) procedures and emergency access termination processes. Certifications such as Certified Identity and Access Manager (CIAM). For quick interview and submission, please email me ALL of the following details: First and Last name as it appears on your passport: Anything we should know about you for presentation (this is our chance to showcase why this consultant is amazing compared to their competition): Reason you are looking for a change (detailed explanation or dont bother): Communication skills/C-Level interaction (1-10): Leadership skills/presence (1-10): Hourly rate, all-inclusive: US Work Status: Resume in MS Word: Education and pertinent certs - degree, year, university: Availability to start (must be in Austin TX or SFO, CA): Email and phone number: LinkedIn Profile (must have pic): Are you TEAMS/video interview ready (Y/N): Current location (city & state): Keywords: cprogramm active directory information technology golang green card microsoft California Texas Hands-onIAM business systems analyst with Engineering Experience [email protected] https://jobs.nvoids.com/job_details.jsp?id=2278772&uid= |
| [email protected] View All |
| 02:45 AM 22-Mar-25 |