As part of the Information Security team, you will design and implement Identity and Access Management (IDAM) policies, processes and solutions to ensure access to information systems to the authorized/authenticated users only, by following the Principle of Least Privilege as well as applicable company governance rules and industry best practices.
You have a sound understanding and proven experience of the day-to-day operation and management of electronic identities and access control to enterprise business systems and databases, both on-premise and in the Cloud.
The Identity and Access Management Analyst will report to the Senior IT Security Specialist.
ROLE AND RESPONSIBILITIES
You will be responsible to:
- Develop IDAM governance and operating model, architecture and solution blueprints covering people, process and technology components, develop use cases for joiner, mover, leaver and approval workflows for core business applications (AD, Azure AD, Office 365, ERP, etc.).
- Monitor the implementation of IDAM policies, processes and procedures required to maintain optimal levels of access and for the Privileged Access Management (PAM).
- Design and periodically review the Identity Life Cycle to ensure conformity with best practices and evolving technologies. Amend the cycle in response to emerging threats.
- Identify and recommend appropriate tools to provide effective management of access to Company’s IT systems and applications to facilitate controlled access based on the Principle of Least Privilege for system security.
- Carry out technical analysis and provide recommendations for continuous improvement of all IDAM capabilities, including but not limited to identification, authentication, authorization, and user management activities, to maintain a continually robust security posture.
- Leverage available technology to set up IDAM configuration, implementation, and management of IDAM solutions including: user provisioning, Single Sign-on, directory services, RBAC, etc., and integrate or on-board applications using disparate authentication and/or authorization services (i.e. Windows Active Directory, Azure Active Directory, LDAP, Databases, etc.)
- Ensure timely completion of all routine IDAM processes to maintain IDAM systems and other directory services synchronized with the Bapco organizational hierarchy and the schedule of authorities, and for the prevention of account misuse, if any.
- Assess the health of the IDAM systems, initiate regular housekeeping, maintenance and configuration works as per Bapco standards and procedures, and ensure maintenance of detailed records of such activities for optimal performance.
- Perform all remediations related to IDAM-related security incidents recommended by the Security Operations Centre (SOC) to mitigate threats, and documenting all relevant information, for further remedial actions and for future reference.
- Support internal and external audit teams by providing relevant and accurate information on time and follow up on the implementation of audit recommendations as a part of audit compliance.
Qualifications
REQUIREMENTS
- BSc/MSc Degree in Computer Science or equivalent
- 7+ years of IT security experience, preferably in Oil & Gas or similar critical infrastructure process industry, out of which at least 3 years in a senior IDAM analyst role covering multiple domains, process areas, systems, and applications, in a complex enterprise environment.
- Relevant IT Security Certifications from recognized institution.
- Excellent knowledge of AD, Azure AD, Office 365, ERP, Role based access control (RBAC), authentication protocols, Privileged Account Management tools and Identity Management tools, preferably Oracle Identity Manager.
- Good knowledge of Cloud solutions and Cloud Security architecture requirements.
- Good written and spoken communication skills with the ability to communicate effectively at all levels.
- Excellent analytical and problem-solving skills.
- Excellent planning and organization skills.
- Good team-player, with ability to effectively prioritize and execute tasks under pressure
- Fluent English
Comments
Post a Comment