Senior Analyst - Information Security
Job Summary
Job Description
The Information Security Analyst/Analyst – Identity Governance and Compliance is responsible for managing identity governance and compliance activities, including User Access Reviews (UAR) and RBAC activities. This role ensures IAM practices adhere to internal policies and external regulatory requirements, maintaining and enhancing identity governance policies, standards, and procedures. The analyst will provide subject matter expertise on Active Directory, including group policies and access provisioning/deprovisioning, and align identity governance practices with frameworks like PCI DSS, ISO 27001, NIST CSF, and COBIT. Key duties also involve enforcing least privilege principles, conducting training, managing SharePoint and Jira spaces, participating in incident management and cloud migration initiatives, and driving continuous improvement in GRC processes.
Must have:
- Manage Identity Governance and Compliance activities
- Ensure IAM practices comply with regulations
- Maintain identity governance policies
- Expertise in Active Directory (AD)
- Familiarity with PCI DSS, ISO 27001, NIST, COBIT
- Enforce least privilege
- Excellent analytical and communication skills
- Ability to work independently and collaboratively
Good to have:
- Relevant certifications (CISSP, CISA, CISM, CRISC, GIAC)
- Experience with IAM tools (SailPoint, Saviynt, Okta, Azure AD)
- Prior experience supporting audits
- Knowledge of GRC tools
- Understanding of FERPA, CIS, data protection laws
- Knowledge of Cloud Identity (AWS or Azure)
4 skills required
Job Details
Description
Job Title: Information Security Analyst/ Analyst – Identity Governance and Compliance
Department: Information Security – Governance, Risk & Compliance (GRC)
Experience: Level: 2 – 4 years
Employment Type: Full-time
Key Responsibilities:
• Manage the Identity Governance and compliance activities, including periodic User Access Reviews (UAR) and RBAC activities.
• Ensure IAM practices comply with internal policies and external regulatory requirements.
• Maintain and enhance identity governance policies, standards, and procedures.
• Provide subject matter expertise on Active Directory (AD), including group policies and access provisioning/deprovisioning.
• Align identity governance practices with frameworks such as PCI DSS, ISO 27001, NIST CSF, and COBIT.
• Engage with IT, HR, and business units to enforce least privilege principles and maintain accurate access records.
• Conduct regular training sessions for the SM team on security controls and client requirements.
• Coordinate SME involvement in quarterly meetings and training initiatives.
• Maintain and organize SharePoint and Jira spaces for audit readiness and evidence management.
• Participate in incident management, change control meetings, and cloud migration initiatives.
• Engage in SOC operations and threat tracking.
• Drive continuous improvement initiatives in identity governance and GRC processes.
• Lead the annual review of security information presentations in collaboration with Compliance.
• Manage the Identity Governance and compliance activities, including periodic User Access Reviews (UAR) and RBAC activities.
• Ensure IAM practices comply with internal policies and external regulatory requirements.
• Maintain and enhance identity governance policies, standards, and procedures.
• Provide subject matter expertise on Active Directory (AD), including group policies and access provisioning/deprovisioning.
• Align identity governance practices with frameworks such as PCI DSS, ISO 27001, NIST CSF, and COBIT.
• Engage with IT, HR, and business units to enforce least privilege principles and maintain accurate access records.
• Conduct regular training sessions for the SM team on security controls and client requirements.
• Coordinate SME involvement in quarterly meetings and training initiatives.
• Maintain and organize SharePoint and Jira spaces for audit readiness and evidence management.
• Participate in incident management, change control meetings, and cloud migration initiatives.
• Engage in SOC operations and threat tracking.
• Drive continuous improvement initiatives in identity governance and GRC processes.
• Lead the annual review of security information presentations in collaboration with Compliance.
Required Qualifications:
• Bachelor’s degree in Information Security, Computer Science, or a related field.
• 2 – 4 years of experience in Information Security, with a focus on Identity Governance and Compliance.
• Strong understanding of User Access Review (UAR) processes and tools.
• Experience with Active Directory (AD) and identity lifecycle management.
• Familiarity with regulatory and compliance frameworks: PCI DSS, ISO 27001, NIST, COBIT.
• Excellent analytical, documentation, and communication skills.
• Ability to work independently and collaboratively in a fast-paced environment.
Preferred Qualifications:
• Relevant certifications such as CISSP, CISA, CISM, CRISC, or GIAC.
• Experience with IAM tools (e.g., SailPoint, Saviynt, Okta, Azure AD).
• Prior experience supporting internal or external audits.
• Knowledge of GRC tools and platforms.
• Understanding of legal and regulatory standards such as FERPA, CIS, and data protection laws.
• Knowledge of Cloud Identity (AWS or Azure Identity).
Similar Jobs
version 1
London, England, United Kingdom (Hybrid)
• 3 Months ago
binance
Dubai, Dubai, United Arab Emirates (Remote)
• 5 Months ago
Get notifed when new similar jobs are uploaded
Similar Skill Jobs
bytedance
Singapore (On-Site)
• 3 Weeks ago
Single Store
Raleigh, North Carolina, United States (Remote)
• 1 Month ago
Star Stable Entertainment
Stockholm, Stockholm County, Sweden (Hybrid)
• 1 Month ago
Ethernovia
San Jose, California, United States (Hybrid)
• 3 Months ago
Pluralsight
Dublin, County Dublin, Ireland (Hybrid)
• 1 Year ago
Get notifed when new similar jobs are uploaded
Jobs in Thiruvananthapuram, Kerala, India
Ajmera Infotech
Hyderabad, Telangana, India (On-Site)
• 1 Month ago
Capgemini
Mumbai, Maharashtra, India (On-Site)
• 3 Months ago
Get notifed when new similar jobs are uploaded
Cyber Security Jobs
PwC
Dublin, County Dublin, Ireland (On-Site)
• 10 Months ago
Epic Games
Porto Alegre, State Of Rio Grande Do Sul, Brazil (On-Site)
• 4 Months ago
Diligent Corporation
Bengaluru, Karnataka, India (Hybrid)
• 1 Month ago
London stock Exchange
London, England, United Kingdom (On-Site)
• 2 Months ago
Veeam Software
Lisbon, Lisbon, Portugal (On-Site)
• 1 Month ago
PwC
Rome, Lazio, Italy (On-Site)
• 10 Months ago
Get notifed when new similar jobs are uploaded
