Senior Cyber Posture Management Analyst

Overview

Hybrid
Depends on Experience
Full Time

Skills

Identity & Access Management
Authentication
ForgeRock
IAM
PAM
MFA
IGA
CISSP

Job Details

The Senior Cyber Posture Management Analyst, IAM plays a meaningful role in analyzing, strengthening, and securing the company's IAM systems. The Analyst will help to strengthen and mature Jackson's Identity & Access Management posture. This position will be performing analysis of IAM systems to identify vulnerabilities, inefficiencies, and areas for improvement as well as proactively recommend and implement strategies to enhance security, streamline processes, and ensure optimal system functionality. They will work closely with development teams, information security experts, and other stakeholders to integrate secure identity solutions throughout the product lifecycle and foster open communication and collaboration to ensure successful IAM implementation and adoption across the organization. The ideal analyst will continuously stay abreast of evolving IAM best practices, industry standards, and emerging threats. Adapt and implement new technologies and processes to maintain a robust and secure IAM environment.

Essential Responsibilities

  • Provides support for the implementation and administration of IAM platforms & end-to-end identity life cycle management.

  • Ensures IAM solutions adhere to regulatory, compliance, and internal requirements.

  • Provides reports as requested for compliance.

  • Collaborates with development teams and other IAM service consumers.

  • Provides guidance on the implementation and usage of IAM capabilities in enterprise systems.

  • Collaborates with other IAM team members to provide guidance on IAM related matters and provides input to solution design and system support.

  • Implements access controls and policies to restrict and monitor the use of privileged accounts.

  • Administers and leverages SIEM tools to analyze security event data for anomalies and potential threats.

  • Maintains documentation related to IAM processes, configurations, incident response procedures and run books.

  • Works closely with cross-functional teams, including IT, Legal, Privacy, and HR to align IAM processes with policy and regulatory requirements.

  • Participates in rotating on-call schedule.

Other Duties

  • Supports development and presentation of relevant security awareness training to associates.

  • Supports development of effective communications for security initiatives.

  • Performs other duties and/or projects as assigned.

Knowledge, Skills and Abilities

  • Proven experience in identity and access management, with a focus on Privileged Access Management (PAM), Multi-Factor Authentication (MFA), Identity Governance and Administration (IGA), and Digital Certificate Management Lifecycle.

  • Knowledge of scripting languages (e.g., PowerShell, Python) for automation and customization of IAM solutions.

  • In depth understanding of identity Protocols and technologies: OpenID Connect (OIDC,) OAuth, SAML, AD-Fed, API Gateways, SCIM, and platforms such as Ping Identity, Okta, MS Entra, and ForgeRock.

  • Knowledge of fraud prevention and detection, identity proofing and identity verification technologies.

  • Experience with IGA solutions such as SailPoint, Oracle Identity Manager, Saviynt, or Microsoft Identity Manager.

  • Knowledge of identity & access management vulnerabilities, threats and mitigations.

  • Ability to determine how a security system works (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes.

  • Expertise of modern software life cycle development and automated cloud infrastructure deployment.

  • Understanding of network architecture, operating systems, and security protocols.

  • Proficiency in working with SIEM tools.

  • Ability to work independently and collaboratively in a fast-paced environment.

  • Excellent analytical and problem-solving skills.

  • Strong communication and interpersonal skills.

  • Strong understanding of security controls, risk management, and regulatory compliance (NIST CSF/SOX/GDPR/etc.).

Qualifications

  • Bachelor's Degree in computer science, information systems, and/or equivalent experience required.

  • 5+ years of progressive Information Security experience required.

  • 3+ years of IAM experience required.

  • CISSP Certified Information Systems Security Professional upon hire preferred.

  • Certified Information Security Manager (CISM) upon hire preferred.

  • CCSP Certified Cloud Security Professional upon hire preferred.