Senior Analyst - Information Security

1 Month ago • 2-4 Years • Cyber Security

Job Summary

Job Description

The Information Security Analyst/Analyst – Identity Governance and Compliance is responsible for managing identity governance and compliance activities, including User Access Reviews (UAR) and RBAC activities. This role ensures IAM practices adhere to internal policies and external regulatory requirements, maintaining and enhancing identity governance policies, standards, and procedures. The analyst will provide subject matter expertise on Active Directory, including group policies and access provisioning/deprovisioning, and align identity governance practices with frameworks like PCI DSS, ISO 27001, NIST CSF, and COBIT. Key duties also involve enforcing least privilege principles, conducting training, managing SharePoint and Jira spaces, participating in incident management and cloud migration initiatives, and driving continuous improvement in GRC processes.
Must have:
  • Manage Identity Governance and Compliance activities
  • Ensure IAM practices comply with regulations
  • Maintain identity governance policies
  • Expertise in Active Directory (AD)
  • Familiarity with PCI DSS, ISO 27001, NIST, COBIT
  • Enforce least privilege
  • Excellent analytical and communication skills
  • Ability to work independently and collaboratively
Good to have:
  • Relevant certifications (CISSP, CISA, CISM, CRISC, GIAC)
  • Experience with IAM tools (SailPoint, Saviynt, Okta, Azure AD)
  • Prior experience supporting audits
  • Knowledge of GRC tools
  • Understanding of FERPA, CIS, data protection laws
  • Knowledge of Cloud Identity (AWS or Azure)

Job Details

Description

Job Title: Information Security Analyst/  Analyst – Identity Governance and Compliance
Department: Information Security – Governance, Risk & Compliance (GRC)
Experience: Level: 2 – 4 years
Employment Type: Full-time
 
Key Responsibilities:
•    Manage the Identity Governance and compliance activities, including periodic User Access Reviews (UAR) and RBAC activities.
•    Ensure IAM practices comply with internal policies and external regulatory requirements.
•    Maintain and enhance identity governance policies, standards, and procedures.
•    Provide subject matter expertise on Active Directory (AD), including group policies and access provisioning/deprovisioning.
•    Align identity governance practices with frameworks such as PCI DSS, ISO 27001, NIST CSF, and COBIT.
•    Engage with IT, HR, and business units to enforce least privilege principles and maintain accurate access records.
•    Conduct regular training sessions for the SM team on security controls and client requirements.
•    Coordinate SME involvement in quarterly meetings and training initiatives.
•    Maintain and organize SharePoint and Jira spaces for audit readiness and evidence management.
•    Participate in incident management, change control meetings, and cloud migration initiatives.
•    Engage in SOC operations and threat tracking.
•    Drive continuous improvement initiatives in identity governance and GRC processes.
•    Lead the annual review of security information presentations in collaboration with Compliance.

Required Qualifications:
•    Bachelor’s degree in Information Security, Computer Science, or a related field.
•    2 – 4 years of experience in Information Security, with a focus on Identity Governance and Compliance.
•    Strong understanding of User Access Review (UAR) processes and tools.
•    Experience with Active Directory (AD) and identity lifecycle management.
•    Familiarity with regulatory and compliance frameworks: PCI DSS, ISO 27001, NIST, COBIT.
•    Excellent analytical, documentation, and communication skills.
•    Ability to work independently and collaboratively in a fast-paced environment.

Preferred Qualifications:
•    Relevant certifications such as CISSP, CISA, CISM, CRISC, or GIAC.
•    Experience with IAM tools (e.g., SailPoint, Saviynt, Okta, Azure AD).
•    Prior experience supporting internal or external audits.
•    Knowledge of GRC tools and platforms.
•    Understanding of legal and regulatory standards such as FERPA, CIS, and data protection laws.
•    Knowledge of Cloud Identity (AWS or Azure Identity).

Similar Jobs

version 1 - Oracle Cloud Service Delivery Manager

version 1

London, England, United Kingdom (Hybrid)
3 Months ago
hogarth - Senior Transformation Consultant

hogarth

London, England, United Kingdom (Hybrid)
2 Months ago
Fireworks AI - Support Engineer

Fireworks AI

Redwood City, California, United States (Hybrid)
1 Month ago
Tencent - Sr. Workday Business System Analyst

Tencent

Shanghai, Shanghai, China (On-Site)
4 Months ago
flying wild hog - Senior Character Artist

flying wild hog

(Remote)
4 Months ago
Techland - Security Engineer (Blue Team)

Techland

Warsaw, Masovian Voivodeship, Poland (On-Site)
2 Months ago
Glocomms - Security Risk Analyst IV

Glocomms

Orlando, Florida, United States (On-Site)
1 Month ago
binance - Pioneer Talent Program - Smart Contract Security Engineer

binance

Dubai, Dubai, United Arab Emirates (Remote)
5 Months ago
Ion - Senior Platform Security Engineer

Ion

London, England, United Kingdom (On-Site)
1 Month ago
Winzo - Security Engineer

Winzo

New Delhi, Delhi, India (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Boomi  - Boomi Technical Architect

Boomi

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Ubisoft - IT Technician

Ubisoft

Tokyo, Japan (Hybrid)
3 Weeks ago
Huuuge Games - Office Manager

Huuuge Games

Warsaw, Masovian Voivodeship, Poland (Hybrid)
2 Weeks ago
Single Store - Director of Customer Marketing and Analyst Relations

Single Store

Raleigh, North Carolina, United States (Remote)
1 Month ago
Star Stable Entertainment - Marketing Video Artist

Star Stable Entertainment

Stockholm, Stockholm County, Sweden (Hybrid)
1 Month ago
Ethernovia - Senior ASIC (Front-End) Design Engineer

Ethernovia

San Jose, California, United States (Hybrid)
3 Months ago
Trek - Service Manager

Trek

Gig Harbor, Washington, United States (On-Site)
1 Month ago
Pluralsight - Principal Acquisition Account Executive - French

Pluralsight

Dublin, County Dublin, Ireland (Hybrid)
1 Year ago
Sony Music Career - Content & Marketing Supervisor/Manager

Sony Music Career

Beijing, China (On-Site)
3 Weeks ago

Get notifed when new similar jobs are uploaded

Jobs in Thiruvananthapuram, Kerala, India

luxsoft - Senior Python Developer

luxsoft

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Capgemini - LDD

Capgemini

Chennai, Tamil Nadu, India (On-Site)
3 Months ago
Ajmera Infotech - Manual QA Engineer – Ensure Compliance in Life-Critical Systems

Ajmera Infotech

Hyderabad, Telangana, India (On-Site)
1 Month ago
Opendoor - Analyst - Finance & Strategy

Opendoor

Chennai, Tamil Nadu, India (Hybrid)
1 Month ago
Capgemini - Selenium Java

Capgemini

Gurugram, Haryana, India (On-Site)
3 Months ago
Capgemini - Presale Business Solution Technology Lead

Capgemini

Mumbai, Maharashtra, India (On-Site)
3 Months ago
Capgemini - Products & Systems Engineer

Capgemini

Bengaluru, Karnataka, India (On-Site)
2 Months ago
MiQ - Data Scientist II

MiQ

Bengaluru, Karnataka, India (Hybrid)
2 Weeks ago
Netomi - SDE II/III Backend

Netomi

India (Remote)
3 Months ago
Cred - Operations Excellence

Cred

Bengaluru, Karnataka, India (On-Site)
11 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Loft Orbital - Senior Security Engineer

Loft Orbital

Golden, Colorado, United States (Remote)
1 Month ago
bytedance - Security Software Engineer

bytedance

Singapore (On-Site)
9 Months ago
Epic Games - Security Engineer - Backend (Asset Integrity)

Epic Games

Porto Alegre, State Of Rio Grande Do Sul, Brazil (On-Site)
4 Months ago
Diligent Corporation - Senior Staff Security Governance & Compliance Analyst

Diligent Corporation

Bengaluru, Karnataka, India (Hybrid)
1 Month ago
Glocomms - Network and Security Engineer

Glocomms

Reno, Kansas, United States (On-Site)
3 Months ago
London stock Exchange - Cyber Threat Intelligence Analyst

London stock Exchange

London, England, United Kingdom (On-Site)
2 Months ago
Veeam Software - Cloud Application Security Engineer (Middle/Senior)

Veeam Software

Lisbon, Lisbon, Portugal (On-Site)
1 Month ago
Perplexity - Cloud Security Engineer

Perplexity

California, United States (On-Site)
2 Months ago
PwC - Senior Associate Cybersecurity Governance & Compliance

PwC

Rome, Lazio, Italy (On-Site)
10 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Thiruvananthapuram, Kerala, India (On-Site)

Chicago, Illinois, United States (On-Site)

Berwyn, Pennsylvania, United States (Hybrid)

Berwyn, Pennsylvania, United States (Hybrid)

Berwyn, Pennsylvania, United States (Hybrid)

Thiruvananthapuram, Kerala, India (On-Site)

United States (Remote)

Berwyn, Pennsylvania, United States (Hybrid)

Thiruvananthapuram, Kerala, India (On-Site)

Thiruvananthapuram, Kerala, India (On-Site)

View All Jobs

Get notified when new jobs are added by Yodlee

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug