Technical Product Analyst

Job Title: Technical Product Analyst
Visa Eligibility: GC-EAD, TN
Location: Remote
Experience Level: 10+ Years Description:

The Technical Product Analyst will support Privileged Access Management (PAM) and Identity & Access Management (IAM) initiatives by gathering and analyzing requirements, driving risk reduction, enhancing security, and supporting compliance activities. This role partners closely with engineers, product owners, and business stakeholders to ensure that PAM and IAM processes, controls, and technologies are effectively implemented and aligned with enterprise standards. The candidate will also contribute to Agile/SAFe planning, reporting, and delivery across the PAM program.

Key Responsibilities: Requirements, Analysis & Documentation

Gather, analyze, and document business and technical requirements using interviews, use cases, and tools such as Azure DevOps (ADO).
Elicit, research, and document functional, non-functional, and data requirements through techniques such as workshops, process modeling, use case analysis, journey mapping, and prototyping.
Facilitate requirements sessions, present findings through multiple formats, and refine requirements based on stakeholder feedback.
Collaborate with vendors on the design, development, and delivery of IAM/PAM systems and capabilities.
Evaluate alternative solutions and processes and provide recommendations.

Security, Risk Reduction & Compliance

Capture business requirements to ensure the implementation of appropriate PAM/JIT controls across privileged users.
Maintain exceptions and issues, submit risk assessments, and collaborate with engineers to implement solutions.
Meet with teams to gather use cases for onboarding applications into CyberArk, and streamline PAM processes.
Support audit activities by preparing evidence packages and ensuring compliance with internal policies and standards.
Assign and review vulnerability tickets to mitigate security risks.

Program Planning, Reporting & Operations

Support Agile/SAFe planning activities and track quarterly PAM objectives within the Mission Padlock program.
Generate weekly, monthly, and quarterly metrics and reports for the PAM program.
Provide timely, concise communication across teams and stakeholders.
Identify risks and issues and collaborate with teams to drive resolution.
Manage multiple priorities independently and within team environments.

Required Experience & Qualifications:

Bachelor's degree in Management Information Systems, Computer Science, Software Engineering, or related field (or equivalent experience).
8+ years of experience as an IAM Systems Analyst, Business Systems Analyst, Technical Product Analyst, or similar role.
Strong understanding of IAM and PAM systems such as CyberArk and Saviynt.
Knowledge of data schemas and integration patterns for IAM tools.
Experience applying Agile delivery methodologies (SAFe, Scrum, Kanban).
Strong understanding of software/system engineering best practices.
Effective planning, analytical, research, and problem-solving capabilities.
Ability to communicate technical concepts to both technical and non-technical stakeholders.
Proficiency with Microsoft Office tools (Excel, PowerPoint, Visio).
Experience with financial services applications, systems, and standards.
Experience with Azure DevOps.

Preferred Certifications:

SAFe Agilist, Product Owner/Product Manager, Scrum Master, Lean Portfolio Management.
Certified Scrum Master (CSM), DevOps, Microsoft Azure, or other IT industry certifications.

Proposed Deliverables: 1. Requirements Delivery

Capture detailed stakeholder use cases, system requirements, and process flows for IAM lifecycle events (provisioning, authentication, password resets, self-service workflows).

2. Technical Systems Analysis

Produce a Database Schema Analysis Report for LDAP directories (e.g., OpenDJ) and relational databases (SQL).
Provide optimization recommendations (indexing, normalization, configuration tuning).

3. Systems Documentation: Mapping, Reporting & Diagramming

IAM Process Flow Diagrams
Depict provisioning, authentication (SAML, OAuth2/OIDC), self-service flows, and system integrations.
Include decision points, exception paths, and error-handling logic.

Technical Design Specifications
Document architecture, data flows, attribute mappings, authentication protocols, and system interfaces.

Runbooks & Deployment Guides
Provide step-by-step operational instructions for IAM environments:
component installation
directory configuration
policy agent setup
certificate management
rollback procedures
daily maintenance routines