Identity and Access Engineer - 9 months contract

Key Responsibilities

Support control activities around Digital bank’s workforce identity and access lifecycle, including employee and application onboarding, access request management, provisioning, certification and reconciliation

Be involved in Privileged Access Management (PAM) activities, such as administration of the PAM tool, operating/developing/enhancing processes in the privileged access management space, and reviewing privileged access activities

Maintain a high level of access control assurance for the Digital bank

Requirements:

Experience in implementation of controls related to IAM and PAM activities, to meet industry best practices and regulatory expectations

Experience in employee lifecycle access management i.e. on-boarding, account management, off-boarding, certification and reconciliation

At least 4-5 consecutive years of experience in IT with direct experience in implementation and/or administration of IAG/IAM products and services (e.g. integration of an IAG solution with business applications, Cloud based ldPs) and PAM products

Experience in access administration in systems (e.g. payment/transactions/clearing/settlements systems, Swift, G3) used commonly within financial services is a strong advantage

Experience in dealing with technical and non-technical stakeholders from various levels and domains to improve state of access control across managed technology platforms and applications

Experience in implementing privileged access monitoring related controls

Able to design and develop standards for related to IAM and PAM

Experience working with cloud-based access control systems (AWS IAM, AWS SSO) and how to manage roles and policies at scale using automation

Experience working with cloud-native privileged access management systems that integrate with approval systems via API

Ability to automate the detection of deviations from identity & privileged access management policy to scale audits as part of continuous compliance programs

Possess broad knowledge of IT infrastructure and corresponding processes as well as in-depth and up-to-date experience of SaaS cloud only environment

Results oriented; ready to challenge the status quo for continuous improvement

Strategic thinking, and ability to draw lateral connections between subject areas

Capable of working in a collaborative team environment as well as being able to operate in a self-directed capacity

Critical thinker with the ability to determine root-cause analysis, assess and articulate risk to organizational leaders

CISSP or relevant certification, as well as public cloud related certifications is an advantage, not mandatory

Knowledge of automation such as scripting with PowerShell, Java, etc is an advantage, not mandatory