Information Security Analyst/ Analyst – Identity Governance and Compliance

1 Month ago • 2-4 Years • Cyber Security

Job Summary

Job Description

The Information Security Analyst role focuses on Identity Governance and Compliance within the Governance, Risk & Compliance (GRC) department. Responsibilities include managing User Access Reviews (UAR), ensuring IAM practices align with internal policies and external regulations (PCI DSS, ISO 27001, NIST CSF, COBIT), and maintaining identity governance policies. The analyst will provide expertise on Active Directory, enforce least privilege, and conduct training on security controls. They will also manage SharePoint and Jira for audit readiness, participate in incident management, change control, cloud migrations, SOC operations, and drive continuous improvement in GRC processes. The role requires leading annual security information reviews.
Must have:
  • Manage Identity Governance & Compliance activities
  • Ensure IAM practices meet policies/regulations
  • Maintain identity governance policies
  • Subject matter expertise in Active Directory
  • Align practices with PCI DSS, ISO 27001, NIST, COBIT
  • Enforce least privilege principles
  • Bachelor’s degree in Information Security/Computer Science
  • 2-4 years of experience in Information Security
  • Strong understanding of UAR processes
  • Experience with Active Directory
  • Familiarity with regulatory frameworks
  • Excellent analytical and communication skills
  • Ability to work independently and collaboratively
Good to have:
  • CISSP, CISA, CISM, CRISC, or GIAC certifications
  • Experience with IAM tools (SailPoint, Saviynt, Okta, Azure AD)
  • Experience supporting audits
  • Knowledge of GRC tools
  • Understanding of FERPA, CIS, data protection laws
  • Knowledge of Cloud Identity (AWS or Azure Identity)

Job Details

Job Title: Information Security Analyst/ Analyst – Identity Governance and Compliance
Department: Information Security – Governance, Risk & Compliance (GRC)
Experience: Level: 2 – 4 years
Employment Type: Full-time
 
Key Responsibilities:
•    Manage the Identity Governance and compliance activities, including periodic User Access Reviews (UAR) and RBAC activities.
•    Ensure IAM practices comply with internal policies and external regulatory requirements.
•    Maintain and enhance identity governance policies, standards, and procedures.
•    Provide subject matter expertise on Active Directory (AD), including group policies and access provisioning/deprovisioning.
•    Align identity governance practices with frameworks such as PCI DSS, ISO 27001, NIST CSF, and COBIT.
•    Engage with IT, HR, and business units to enforce least privilege principles and maintain accurate access records.
•    Conduct regular training sessions for the SM team on security controls and client requirements.
•    Coordinate SME involvement in quarterly meetings and training initiatives.
•    Maintain and organize SharePoint and Jira spaces for audit readiness and evidence management.
•    Participate in incident management, change control meetings, and cloud migration initiatives.
•    Engage in SOC operations and threat tracking.
•    Drive continuous improvement initiatives in identity governance and GRC processes.
•    Lead the annual review of security information presentations in collaboration with Compliance.

•    Bachelor’s degree in Information Security, Computer Science, or a related field.
•    2 – 4 years of experience in Information Security, with a focus on Identity Governance and Compliance.
•    Strong understanding of User Access Review (UAR) processes and tools.
•    Experience with Active Directory (AD) and identity lifecycle management.
•    Familiarity with regulatory and compliance frameworks: PCI DSS, ISO 27001, NIST, COBIT.
•    Excellent analytical, documentation, and communication skills.
•    Ability to work independently and collaboratively in a fast-paced environment.

Preferred Qualifications:
•    Relevant certifications such as CISSP, CISA, CISM, CRISC, or GIAC.
•    Experience with IAM tools (e.g., SailPoint, Saviynt, Okta, Azure AD).
•    Prior experience supporting internal or external audits.
•    Knowledge of GRC tools and platforms.
•    Understanding of legal and regulatory standards such as FERPA, CIS, and data protection laws.
•    Knowledge of Cloud Identity (AWS or Azure Identity).

Similar Jobs

Tesla - Electrician - Energy & Supercharging

Tesla

North Brabant, Netherlands (On-Site)
6 Months ago
London stock Exchange - Contracts Negotiator

London stock Exchange

St. Louis, Missouri, United States (On-Site)
3 Months ago
Arkose Labs - Technical Account Manager

Arkose Labs

Portland, Oregon, United States (Remote)
1 Month ago
Agate studios - Quality Assurance Intern

Agate studios

Indonesia (On-Site)
4 Months ago
boulder media - Production Coordinator

boulder media

Dublin, County Dublin, Ireland (Hybrid)
1 Month ago
Fortra - Senior Security Engineer

Fortra

Canada (On-Site)
1 Month ago
Pegasystems - Cloud Security Engineer

Pegasystems

Bengaluru, Karnataka, India (On-Site)
10 Months ago
Jane Street - Cybersecurity Engineering - Threat Modelling

Jane Street

London, England, United Kingdom (On-Site)
3 Months ago
Jane Street - Network Automation Engineer, Security

Jane Street

New York, United States (On-Site)
3 Months ago
Sony Pictures Entertainment - Sr. Engineer, Information Security

Sony Pictures Entertainment

Culver City, California, United States (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Sumo logic - Senior Product Manager II - Integrations

Sumo logic

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Canonical - Software Engineer - Python/Golang - Kubernetes

Canonical

(Remote)
3 Months ago
Plug power - Field Service Technician

Plug power

Olney, Illinois, United States (On-Site)
1 Year ago
Deutsche Bank - BM Analyst

Deutsche Bank

Mumbai, Maharashtra, India (On-Site)
10 Months ago
Nintendo - (Associate) Localisation Producer (Software) (m/f/d)

Nintendo

Frankfurt Am Main, Hessen, Germany (On-Site)
10 Months ago
bytedance - Research Engineer / Scientist - AI for Databases

bytedance

San Jose, California, United States (On-Site)
3 Months ago
playrix  - Customer Support Representative (German)

playrix

Portugal (Remote)
9 Months ago
Scopely - Director of Community

Scopely

California, United States (Remote)
5 Months ago
Power Integrations - Purchasing Manager

Power Integrations

Penang, Malaysia (On-Site)
10 Months ago
HP - Compliance & Control Lead - AMS Region

HP

Bengaluru, Karnataka, India (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Jobs in Thiruvananthapuram, Kerala, India

TALA - Head of Operations

TALA

India (Hybrid)
3 Weeks ago
Enverus - Customer Support Representative/Application Support Analyst

Enverus

Bengaluru, Karnataka, India (Remote)
1 Month ago
Ramboll3 - Senior/Lead Machine Learning Engineer

Ramboll3

Gurugram, Haryana, India (Hybrid)
1 Month ago
AECOM - Designer to Principal Designer - Dry Utilities / Substation

AECOM

Bengaluru, Karnataka, India (Hybrid)
1 Month ago
Netomi - Senior Android Developer

Netomi

Gurugram, India (Remote)
4 Months ago
Barracuda - Software Development Engineer in Test

Barracuda

Koramangala, Karnataka, India (Hybrid)
7 Months ago
Techstar group - Pune

Techstar group

Pune, Maharashtra, India (On-Site)
1 Month ago
Capgemini - Senior Software Engineer - C

Capgemini

Hyderabad, Telangana, India (On-Site)
2 Months ago
HCL Tech - Senior Business Analyst

HCL Tech

Hyderabad, Telangana, India (On-Site)
3 Months ago
Intel  - Advanced Process Control Software Engineer

Intel

Bengaluru, Karnataka, India (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Tide - Staff Backend Engineer - DevEx, Security and Technology Foundations

Tide

Sofia, Sofia City Province, Bulgaria (Hybrid)
3 Months ago
cyara - Senior Security Engineer

cyara

Hyderabad, Telangana, India (Hybrid)
10 Months ago
Kyruus Health - Staff Application Security Engineer

Kyruus Health

United States (Remote)
3 Weeks ago
Guardian - Senior Lead Engineer - Network Security

Guardian

Gurugram, Haryana, India (On-Site)
3 Months ago
PhonePe - Information Security Engineer

PhonePe

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Riot Games - Security Engineer

Riot Games

Shanghai, China (On-Site)
3 Months ago
Interactive Brokers - Security & Fraud Prevention Triage Analyst

Interactive Brokers

Mumbai, Maharashtra, India (Hybrid)
1 Month ago
FICO - Security Engineer - Lead Engineer

FICO

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Techland - Security Analyst

Techland

Warsaw, Masovian Voivodeship, Poland (On-Site)
2 Months ago
smarsh - Cloud Platform Engineer – Information Security and Networks

smarsh

Portland, Oregon, United States (Remote)
5 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Thiruvananthapuram, Kerala, India (On-Site)

Chicago, Illinois, United States (On-Site)

Berwyn, Pennsylvania, United States (Hybrid)

Berwyn, Pennsylvania, United States (Hybrid)

Berwyn, Pennsylvania, United States (Hybrid)

Thiruvananthapuram, Kerala, India (On-Site)

United States (Remote)

Berwyn, Pennsylvania, United States (Hybrid)

Thiruvananthapuram, Kerala, India (On-Site)

Thiruvananthapuram, Kerala, India (On-Site)

View All Jobs

Get notified when new jobs are added by Yodlee

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug