IAM Analyst

Identity & Access Management Analyst (RACF Administrator)
Location: New York, NY 10004
Duration: 12 Months Contract Position

Requirements
We''re looking for an experienced (7-9+ years) IAM Security Administrator with RACF experience to lead security hardening efforts and IAM governance initiatives. This role combines technical expertise, project leadership, and strategic alignment with business and compliance requirements. You''ll drive remediation efforts, FIDO2 authentication rollout, identity governance enhancements, and business process alignment while ensuring the identity security.
What You''ll Do:

• Lead mainframe security remediation efforts, identifying and mitigating risks within RACF and IAM environments.
• Enhance mainframe security controls, including enforcing Multi-Factor Authentication (MFA) and password complexity policies for high-security applications.
• Oversee identity governance initiatives, ensuring compliance with industry regulations (NIST, ISO 27001, SOX, HIPAA).
• Utilize Vanguard Security Suite to generate audit reports, analyze access violations, and implement remediation strategies.
• Manage IAM projects related to FIDO2 authentication rollout, privileged access management (PAM), and risk mitigation.
• Work closely with IT, compliance, and security teams to align business processes with IAM best practices.
• Benchmark risk management practices in the transportation and government sectors to refine security frameworks.
• Collaborate with service providers and vendors to ensure IAM solutions align with business needs.
• Develop and maintain policies related to role-based access control (RBAC), access certifications, and risk assessments.
• Assist in application security vulnerability assessments for new and existing mainframe/RACF applications.

What We''re Looking For:

• Experience in RACF security hardening, remediation, and risk mitigation.
• Strong IAM knowledge, including role-based access control (RBAC), privileged access management (PAM), and identity governance.
• Hands-on experience with FIDO2 authentication, MFA implementation, and password policy enforcement.
• Experience in Vanguard Security Suite for security auditing and compliance reporting.
• Strong understanding of compliance frameworks (NIST, ISO 27001, PCI) and best security practices.
• Experience leading IAM projects and collaborating with cross-functional teams to align security initiatives with business processes.
• Excellent communication and project management skills, with experience working with service providers and vendors.
• Ability to monitor and enforce risk mitigation strategies, working closely with compliance, IT leadership, and security teams.

Preferred Qualifications:

• Certifications: CISSP, CISM, CRISC, or RACF-specific security certifications.
• Experience integrating mainframe security with IAM solutions such as SailPoint, Okta, or Microsoft Entra ID.
• Background in government or transportation IT security is a plus.
• Hands-on experience with automation tools for security monitoring and compliance reporting.

Category Skill Importance Experience Level

• Mainframe Security RACF Administration & Security Hardening 10/10
• Advanced Identity & Access Management (IAM) Multi-Factor Authentication (MFA) & Password Policies for RACF 9/10 Advanced
• Audit & Compliance Vanguard Security Suite for Reporting & Risk Analysis 9/10
• Advanced Project Leadership Leading Security Hardening & IAM Projects 8/10 Proficient