IAM Information Security Controls Specialist

IAM Information Security Controls Specialist

Requirements

• Minimum of 3 years’ experience within the operational side of the Information Technology, Security industry and Identity and Access Management
• Ability to analyze data and evaluate relevance to a specific issue or incident under investigation
• Ability to handle multiple competing priorities in a fast-paced environment; ability to be decisive and take action without causing an undue delay
• Ability to exercise independent judgment when responding to alerts
• Ability to communicate effectively across all levels of the organization, to both technical and non-technical audiences
• Familiarity with identity management standards, social engineering TTPs, and the incident response lifecycle
• Knowledgeable of current access based exploits in traditional and cloud environments, for both human and non-human accounts
• Proven experience presenting findings via written reports and orally to key stakeholders in clear and concise language
• Ability to work in a strong team-orientated environment that is geographically dispersed with a sense of urgency and resilience
• Critical thinking – must be able to think outside the box and develop solutions to accomplish seemingly impossible tasks while remaining risk and objective focused
• A strong working knowledge of security threat vectors, networking, network security and application security
• Advanced problem solving skills
• Demonstrates the capability of working in a team environment and collaborating with overseas partners
• Ability to work independently
• Strong leadership skills and qualities which enable you to work with peers and various levels of management
• Strong analytical skills/problem solving/conceptual thinking

Responsibilities

• Actively troubleshoot access issues, verify policy compliance approach to resolving incident tickets
• Communicate effectively with end users and business partners
• Build and monitor alerting and dashboards
• Identify areas for further process automation, simplification, and improvement
• Provide status updates for executives and stakeholders in non-technical terms encompassing risk, impact, containment, remediation, etc.
• Risk management experience and mindset
• Comprehensively document analysis, investigative activities, actions, etc.
• Ability to work non-standard hours, to include occasional on-call time during nights, weekends, and holidays
• Apply knowledge of the Identity and Access Management industry policies and standards including laws, rules, regulations, and information security concepts related to access provisioning, validate alignment of processes and controls to requirements, and report on gaps related to adherence to policy requirements
• Lead complex technical projects to successful delivery, includes facilitating project meetings, authoring project documentation and driving adoption

Preferred Qualifications

• Broad technical knowledge of IAM lifecycle, ecosystem and enterprise scale products
• Experience in the deployment of multi-factor authentication, role and attribute-based access control, and other strong authentication methods and solutions
• Hands-on experience with IAM products and particularly on Ping suite of products (Ping Access, Ping Federate and PingID) and federation concepts
• Strong technical knowledge of authentication and authorization protocols: OIDC, SAML, XACML, LDAP, OAuth, OpenID
• 3-5 years’ experience with cloud platforms (AWS, Azure, GCP etc.)