Previous Job
Previous
Identity and Access Management
Ref No.: 18-05267
Location: Jersey City, New Jersey
A Major Financial Firm located in Jersey City, NJ has an immediate contract opportunity for an Information Security Analyst.

JOB DESCRIPTION
Position Responsibilities:
* Define and implement the IAM control framework.
* Enforce daily, weekly, and monthly Identity and Access Management (IAM) controls
* Adherence to ISO standards and active involvement in process enhancement and development
* Create, update, and maintain documentation (including process documents and procedures)
* Provides detailed reporting on current state of IAM controls (i.e. KRI reporting)

* Liaise with IT Security groups worldwide
* Participate in remediation of process and control gaps

* Develop and implement new process and procedures to address audit and regulatory issues
* Identify control gaps and recommended remediation and improvements for User Transfer and Exit process
* Assist in user re-certifications, reconciliations, system profile review, third party applications validation and other IAM related reviews
* Identify process and workflow improvements to address SoD violations
* Assist in control process monitoring and continuous improvements
* Execute RCSA and CMMI assessments for control process
* Support daily IAM BAU process and requests from user community as needed
* Ensure managers finish the required access rights re-certification within a timely manner.

Position Requirement:
* Minimum 4 year degree
* Minimum 3-5 years of professional IT / Audit / Compliance / Information Security / Risk Management related work experience
* Experience in Identity and Access Management including the areas of controls and governance

* Proven experience implementing IAM controls
* Very knowledgeable with Risk & Control Self-Assessment (RCSA) and Capability Maturity Model Integration (CMMI)
* Minimum 3-5 years of experience in developing RCSA framework and CMMI maturity assessment requirements framework
* Understanding of Role Based Access Controls (RBAC) model
* Understands modern IAM methodologies and approaches
* Familiar with User Administration and Provisioning, Identity and Access Governance, and Identity Governance and Administration concept
* Knowledgeable with industry best practices, ISO standards, NIST, FFIEC and other regulatory requirements for financial/banking industry
* Direct contribution to operational permanent control framework
* Understands Controls, Control Gaps, and Action Plans
* Experience managing access rights in a financial environment
* Able to work independently with minimal supervision
* Strong communication with senior management, application support groups and the user community
* Task oriented and well organized

Desired:
* CISSP, CISA, or other industry certification desired
* Project management and coordination skills desired
* Previous experience documenting procedures.
* Knowledge of IAM systems including SailPoint IdentityIQ, Control-SA, CyberArk or similar systems is a big plus