Job Description: - year long contract. Local candidates only please. We are not working with third party vendors for this position.
Must have excellent data analysis experience as well as RBAC experience.
The IAM Access Reviews analyst will work closely with control owners and operators to ensure complete and accurate ITGC control operation is performed. As an IAM controls professional, you will contribute to effective control design, execution, and testing of controls.
You will maintain visibility to control status and track any issues to resolution. You will support the CIS EIAM team in all aspects of application and technology environment, assisting in the development of integration for high risk security environments and development of auditable and effective access controls processes. As a key risk advisor, you will be addressing business issues and processes that impact both current and future IT systems that come into scope for ITGC control requirements.
Major Job Functions/Components
Provide technical support in the assessment, design and implementation of access reviews and controls requirements.
Support the review of IT tools, control designs, and control remediation planning efforts.
Manage multiple concurrent projects with quality and in accordance with a documented schedule that meets or exceeds customer expectations.
Review test findings, facilitate the remediation of ITGC control gaps, and escalate possible critical issues to senior management within IT.
Validate and update user and application documentation as needed to ensure scope, testing, and remediation activities are accurate.
This role requires the ability to work cross-functionally with IT teams and key stakeholders, utilizing analytical skills in dissecting complex problems, and delivering clear recommendations to reduce risk and improve operational control results.
Discuss security roles with Business Applications with Business Owners with a focus on Access Control requirements/validation
Discuss Applicable Regulations with Compliance to identify access control requirements
Educate information / resource owners in the implementation of necessary information security controls or new upgraded security technologies
Deliver and discuss deliverables with customer
Additional Education/Technical Experience Preferences:
Bachelor's Degree in Accounting, Business, Information Technology or Computer Science preferred.
3 to 5 years work experience in IT SOX compliance and/or auditing and a strong background in internal controls.
Pro-active, strategic approach to problem solving and controls execution.
Knowledge of current technological trends and developments in the area of SOX, PCI, HIPPA and auditing standards.
Industry related certification preferred (e.g. CISSP, CISA, PMP, CIA).
Experience with Service Management software (i.e. Service Now)
Experience with IAM Products (i.e. Oracle IAM, and CA SiteMinder).
Experience with Directory Services Products (i.e. Microsoft Active Directory, Oracle Directory
Experience with SharePoint development and management is a plus.
Systems access administration experience within other aspects of IT.
Must be detail-oriented with a high level of accuracy.
Strong analytical, interpersonal, and communication skills.
Demonstrated ability to develop and maintain collaborative working relationships across multiple teams.
Strong customer focus and the ability to manage customer expectations.
Demonstrated commitment to continuous process improvement.
Demonstrated ability to collaborate with a diverse set of internal and external stakeholders, including senior leaders, business and functional representatives, and vendors / consulting partners.
Ability to identify project impacting issues and work with control owners and various IT solution teams to develop and implement solutions.
Pinpoint Resource Group