Talent.com
Senior Information Security Analyst - Identity and Access Management (IAM)

Senior Information Security Analyst - Identity and Access Management (IAM)

Zurich InsuranceKuala Lumpur, Kuala Lumpur, Malaysia
3 hari lalu
Penerangan pekerjaan

Senior Information Security Analyst - Identity and Access Management (IAM)

The Information Security Analyst’s role is to support the organization’s identity and access management (IAM) program and services for the APAC region with collaboration with other global regions. Candidates will need to be analytical, ethical, reflect professional attitude, and passionate for learning.

Responsibilities

  • Administer users, accounts, and access privileges in the organization’s identity management system to ensure that the right subjects have access to the right resources with set rules.
  • Responsible for administration of IAM system requests.
  • Identify, troubleshoot, and resolve IAM issues.
  • Participate in and drive IAM initiatives, projects, and delivery as per agreed timeline.
  • Work with internal customers, business analysts, application teams and IT Support to understand requirements for access management projects.
  • Coordinate with extended IAM team members in other countries to deliver service.
  • Maintain updated documentation for the IAM program.
  • Engage in IAM control assessment, audits and evidence gathering.
  • Review access control processes and reports to identify potential risks and gaps; remediate within the agreed timeline.
  • Provide awareness, guidelines, and training to new and existing users on the IAM system.
  • Update and maintain the IAM system and processes according to changes in the organization’s business needs.

Job Duties

  • Manage accounts and permissions in the IAM system.
  • Grant or deny access to company resources based on user role and privileges.
  • Create and manage users, roles, accounts, and groups in the IAM system through approved request and change management processes.
  • Enforce policies and procedures related to IAM.
  • Monitor unauthorized activity in the IAM system using logs.
  • Generate reports on IAM system activities.
  • Identify and resolve IAM issues.
  • Maintain up-to-date knowledge of IAM best practices.
  • Document IAM processes and procedures for the wider team.
  • Proactively identify control gaps within the access management process and perform continuous improvements using technology and process automation.

    • Job Qualifications

  • Bachelor’s degree in computer science, information technology, or related field.
  • At least three to four years of experience in Identity and Access Management, Information Security, or Information Technology-related fields.
  • Candidates without sufficient years of experience may apply if they have completed Information Security certifications or demonstrated self-learning through online courses.

    • Certifications and Learning (Vendor Neutral)

  • Microsoft Security, Compliance and Identity Fundamentals (SC-900)
  • Microsoft Azure Fundamentals (AZ-900)
  • Microsoft : Identity and Access Administrator Associate (SC-300)
  • Microsoft Windows Active Directory Fundamentals
  • ISACA - IT Audit, IT Risk, or Cybersecurity Fundamentals Certificate
  • (ISC)² Certified in Cyber Security (CC) or (ISC)² SSCP
  • CompTIA IT Fundamentals (ITF+) or CompTIA Security+
  • GISF Information Security Fundamentals (GISF)
  • Familiarity with Access Control concepts, Security Principles, Compliance and Security best practices
  • Understand security principles like CIA Triad, authentication vs authorization, Identity and Access Lifecycle
  • Excellent verbal and written communication skills
  • Strong analytical, attention to detail, and problem-solving skills
  • Good organizational and project administration skills
  • Dynamic and able to adapt to the needs of the organization and business
  • Ability to work independently and collaboratively to deliver set objectives
  • Positive attitude, proactive improvements, and willingness to learn

    • Technical Skills

  • Familiarity with operating systems (Windows, UNIX / Linux, etc.)
  • Strong understanding of directory services (LDAP, Microsoft Active Directory, Azure Active Directory), and PowerShell
  • Knowledge of security protocols (SSH, TLS, SAML)
  • Proficient in at least one scripting or programming language (PowerShell, SQL)
  • Experience with IAM / PAM tools (e.g., Ping Identity, SailPoint, Oracle Identity Governance, Okta, CyberArk, IBM Security Verify, ForgeRock)
  • Experience using ITSM tools (ServiceNow, BMC Remedy, Zendesk) for incident, request, and change management
  • Familiarity with database concepts and relational databases (e.g., Microsoft SQL, Oracle)
  • Proficient with Microsoft Excel and other Microsoft 365 applications

    • Job Expectations

  • Understand and articulate the organization’s IAM policy and team IAM strategy
  • Adhere to IAM metrics and KPIs to track progress and measure success
  • Know the various IAM tools and technologies and recommend solutions to meet organizational needs
  • Participate in and manage IAM projects, including developing project plans, requirements gathering, and timelines
  • Troubleshoot IAM issues and develop creative solutions
  • Have a strong understanding of security concepts as they relate to IAM
  • Deliver IAM training to technical and non-technical staff
  • Stay up to date on IAM trends and information security best practices
  • Work with Business and IT teams to integrate IAM processes and solutions into IT infrastructure

    • Location : MY - Kuala Lumpur

    #J-18808-Ljbffr

    Buat amaran kerja untuk carian ini

    Security Analyst • Kuala Lumpur, Kuala Lumpur, Malaysia