Sr IAM ABAC and RBAC Controls Manager

Date Posted:

2021-01-22-08:00Country:

United States of AmericaLocation:

OT999: 1CP – Farmington, CT One Carrier Place, Farmington, CT, 06032 USA

We are looking for a Sr.IAM RBAC and ABAC Controls Manager to join our multi-national Identity Access Management (IAM) team. Acting as a key facilitator and driver, working closely with internal business stakeholders, program and project leads, architects, and developers this person will ensure business requirements are translated into technical documentation and other relevant artifacts for development teams to deliver against.

As an integral member of the IAM team, the Sr.IAM RBAC and ABAC Controls Manager is responsible for making sure employees/non-employees are only allowed to access information necessary to effectively perform their job duties. Access can be based on several factors, such as country, department, authority, responsibility, and job competency.  This person will help the IAM team to help troubleshoot issues while working with the business to improve the solutions and associated processes for continuous improvements. As the program grows they will work with the team and partner with the business to enhance rules and roles to improve the automation of the Joiner/Mover/Leaver processes and associated access and certification reviews. This person will identify and document Segregation of Duties scenarios and compose applicable access control roles.

This role will require excellent written and verbal communication skills as well as a desire to research and build knowledge about the products, services and technologies. In this capacity, the Sr.IAM RBAC and ABAC Controls Manager is also a leader for change and process improvement.

Job Responsibilities Include:

Implement Role Based Access Controls (RBAC), including analytical role mining and entitlement analysis.

Ensure that data ownership and responsibilities are established for each authorization boundary, to include accountability, access rights, and special handling.

Automates or streamlines existing processes and workflows. Work with IAM team and corporate stakeholders to design self-service capabilities in RBAC administration.

Defines, validates, and maintains user access roles.

Analyzes user access roles and processes to independently assess compliance with defined standards.

Partner with IAM Managed Services Vendor to ensure roles and rules are built appropriately as designed to meet requirements and compliance needs.

Assist and support periodic internal and external IT audit and SOX audits

Regularly reviews and maintains documentation to ensure it reflects current processes and procedures and identifies opportunities for process improvement

Participate in projects and initiatives in support of regulatory, audit and IAM directives when called upon.

Collate statistical data as requested in support of Operational and Performance metrics/measurements

Ensure security configurations and parameters are set appropriately and in compliance per policy and/or standards

Assist as required to remediate operational roadblocks.

This role makes sound decisions in addressing end-user access and other security related issues. Recommends improvements to address security issues or gaps.

Develops, participates and documents standard operating procedures.

Facilitate business process design as it relates to managing identities and access privileges such as architecture, delegated administration models, work flow models, and access control models.

Skills and experience

  • 10 years or more years of progressive experience with IAM or ITIL processes
  • 5+ years designing Role and Attribute based access controls
  • Cyber professional with a minimum of 3 years business and systems analysis experience with customer relationship focus.
  • 2 years or more understanding governance and audit impacts of Identity and Acess Management, such as running audit related access certification reviews
  • Must have hands-on experience/worked in a highly regulated environment
  • Prior experiences with working with Identity Governance and Administration solutions
  • Strong understanding of the full lifecycle of workforce identity lifecycle processes, including; joiner, mover, leaver, access request, access certification
  • As a plus, experience with:
    • IGA Products (i.e. Gemalto, CyberArk, Thycotic, OIM, SailPoint IdentityIQ, or RSA IGA)
    • Access Management Products (CA SiteMinder, AAD/ADFS, or other)
    • Operating Environments (Azure, Microsoft ActiveDirectory, Oracle, UNIX, or Mainframe)
    • Privileged Access tools (Multi-factor authentication, Cyberark, or Thycotic)
  • Working knowledge of relevant SOX controls and demonstrated ability to effectively execute associated deliverables
  • Functional areas and work experience should include; fine-grained access control, policy driven security, Identity Governance, Access Management, and Privileged access management, user provisioning/de-provisioning, and federation.
  • Experience with onshore/offshore model and managed services
  • Excellent verbal and written communication skills
  • Knowledge and proficiency in business process optimization
  • Knowledge and proficiency in software test planning and execution
  • Knowledge and proficiency in troubleshooting application problems or issues (from a functional perspective)
  • Experience with programming or scripting languages and/or Excel for data analysis and manipulation
  • General familarity with Agile and Waterfall development processes
  • Proven ability to learn new business domains and technical applications.
  • Strong technical, conceptualization, analytic, and communication skills including the ability to facilitate interactive sessions with business/functional personnel
  • Ability to work effectively in teams, including instances where teams span multiple business units, locations or countries
  • Motivated, self-directed and able to prioritize
  • Ability to build strong relationships with project teams and other stakeholders

Education and Certifications

  • Bachelor degree in Information Management, Computer Science, or equivalent experience.
  • Certifications from ISACA or ISC2 a plus

Otis is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

Privacy Policy and Terms:

Click on this link to read the Policy and Terms

Job ID : 20025558

More Information

Apply for this job

Leave your thoughts