IT Security Manager - Identity Data Quality

We are looking for a leader on our IAM team to manage and focus on data quality, you will work on a team of information security professionals and be accountable for operationalizing and administrating enterprise focused Identity and access management (IAM) solutions where the focus lies on centralization and standardization of IAM services. In this role, you will be required to demonstrate proficiency in identity and access management concepts as they pertain to every area of security management. Your role will also include interfacing with other business leaders and subject matter experts throughout the organization, responding requests related with Enterprise Identity access and Identity data availability to be consumed by security approved projects and initiatives.

 Responsibilities:

• Process data from API endpoints of different kind of systems: Workday (HR), Identity Governance (SailPoint IdentityNow), Identity Provider (Azure AD / Graph api), legacy Active Directories and PAM solutions like CyberArk Privileged Access Management.
• Retrieve data via MS Graph and Powershell about Identity objects (users, groups, devices, applications), attributes and their values from Active Directory, Exchange Online and Azure Active Directory.
• Design / configure , update and manage an Identity Analytics solution where data about Identity objects and their attributes can be found. Identities in scope: employees, contractors, service accounts, shared accounts, vendor accounts, privileged accounts.
• Use solutions like Azure Sentinel, Log Analytics and Power BI to retrieve meaningful insights of Identity data with the use of KPIs, dashboards reports with rich visualizations.
• Setup monitoring and alerting on Identity data (security and/or audit purposes).
• Primarily work with tooling which is SAAS/PAAS or build in the cloud, such as
  • SailPoint IdentityNow API
  • Workday APIs
  • Azure Active Directory
  • Azure log Analytics
  • MS Graph Api
  • Azure Security Center
  • Azure Sentinel
  • Cloud infra in Azure /AWS / GCP
• In your daily work you will interact with people who are globally distributed, such as IAM architects, Security and audit advisors, HR support teams and project managers.
• Create, update and Implement processes and procedures related with Identity data during the full Identity lifecycle, this included IAM use cases like joiners, movers, leavers, HR Hold, emergency termination.
• Supporting audits and access reviews of Privileged Access Management within IAM infrastructure and services
• Engaging infrastructure and application teams to collaborate on discussions and requirements for Identity and Access management Enterprise projects
• Work successfully as a member of a team through collaboration and support.
• Influence and collaborate with internal and external resources.
• Make decisions on moderately complex to complex issues, ability to solve problems and address obstacles.
• Manage multiple assignments/priorities in a fast-paced environment using discernment, organization, time and objectives management.
• Exercises considerable latitude in determining objectives and approaches to assignments.

Relationship Management

• Actively engage and build a network with many teams across the globe including:
  • Global IAM team leads and team members
  • Global Technology and Infrastructure teams

Job Qualifications

• Bachelor's Degree in Computer Science/MIS or equivalent
• Minimum 5+ years-of demonstrated experience in a role which is Identity and Access management related.
• 5+ years of experience with working with REST based APIs, such as MS Graph API and scripting
• Strong understanding of Identity provisioning concepts (onboarding, changes, offboarding) and possible related events which could be triggered.
• Experience with Identity Governance Automation solutions like SailPoint, Saviynt, Omada, OneIdentity, etc.
• Experience with Power BI dashboards and reports.
• Advanced expertise in Microsoft Office products – Outlook, Word, Excel, PowerPoint, Teams, & SharePoint
• Proven knowledge and experience regarding architecting and implementing hybrid Identity infrastructure with multiple AD Forests and Azure AD/Office 365.
• Experience with tooling responsible for user, group, device, attribute and password synchronization.
• An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative, and actionable manner
• Flexible working hours to support a global operation
• Understanding of security in cloud environments and a demonstrated understanding of the technical aspects of information security, such as network security, infrastructure security, and application security
• Ability to set and manage priorities judiciously.
• Exceptionally self-motivated with a superior analytical, evaluative, and problem-solving abilities.