IAM ANALYST - JACKSONVILLE,FL/ SURREY,BC
Purpose of Position
Job Description: We are seeking an experienced and dynamic individual to join our team as an Identity and Access Management (IAM) Analyst. In this role, you will lead our IAM team in designing, implementing, and managing robust IAM solutions to ensure the security, integrity, and availability of our organization's systems and data. As well as be responsible for the maintenance, monitoring, and optimization of our AD, Office 365, and Azure environments. You will play a crucial role in ensuring the stability, security, and efficiency of our IT infrastructure, enabling seamless operations across the organization.
Essential Functions:
- IAM Architecture and Implementation:
- Design and implement scalable and resilient IAM architectures and solutions to manage user identities, authentication, authorization, and access privileges.
- Identifying and addressing identity and access management risks and issues.
- Working with the IAM team to resolve identity and access management problems.
- Maintaining up-to-date knowledge of identity and access management best practices.
- Evaluate and select IAM technologies, tools, and vendors based on business requirements, security standards, and industry trends.
- Provide Identity and access management advisory, solution architecture, and consulting to internal projects of varying size.
- Identify and resolve gaps in the business processes which may include security/authorization set-up, user documentation, data interface design, data migration and reconciliation.
- Use Active Directory knowledge to manage access entitlements between diverse systems.
- Access Governance and Compliance:
- Develop and enforce IAM policies, procedures, and standards to maintain compliance with regulatory requirements, industry standards, and internal controls.
- Enforcing company policies and procedures related to identity and access management.
- Monitoring user activity in the identity and access management system.
- Reporting on identity and access management system activity.
- Establish access governance processes to regularly review and certify user access rights, entitlements, and roles.
- Coordinate with internal audit, compliance, and legal teams to support IAM-related audits, assessments, and regulatory inquiries.
- Assist in alignment of overall security governance as it relates to IAM with IT architecture governance and project and portfolio management (PMO)
- Maintain business Roles and all associated data, rules including access bundling rules, and processes.
- Identity Lifecycle Management:
- Drive organization wide strategy and implementation plans including but not limited to Privileged Access Management, Single Sign On and IAM governance
- Define and optimize identity lifecycle processes, including provisioning, deprovisioning, and access recertification, to streamline operations and enhance security.
- Implement automated provisioning and deprovisioning workflows to enable efficient user onboarding and offboarding processes.
- Managing user accounts and permissions in the identity and access management system.
- Granting or denying access to company resources based on user role and privileges.
- Creating and managing user groups in the identity and access management system.
- Integrate IAM solutions with HR systems, directories, and other authoritative sources to ensure accurate and timely identity data synchronization.
- Active Directory/Office 365/Azure Administration
- Administer and maintain on-premise Active Directory and integration with Microsoft Entra ID.
- Administer and maintain Office 365 services including Exchange Online, SharePoint Online, Teams, and OneDrive.
- Configure and manage user accounts, licenses, and security settings.
- Monitor service health, troubleshoot issues, and implement enhancements.
- Deploy and manage Azure virtual machines, virtual networks, and Azure AD.
- Monitor Azure services and resources to optimize performance and cost-effectiveness.
- Implement and maintain Azure security best practices, including identity and access management.
- Monitor system performance, capacity, and availability of AD, Office 365, and Azure environments.
- Respond to alerts and incidents promptly, troubleshoot issues, and implement solutions.
- Conduct regular system audits to ensure adherence to security and compliance standards.
- Maintain accurate documentation of configurations, procedures, and troubleshooting steps.
- Generate reports on system performance, usage trends, and security metrics.
- Collaborate with IT teams to develop and update disaster recovery and business continuity plans.
- Provide technical support and guidance to end-users on AD, Office 365, and Azure-related issues.
- Participate in on-call rotation and off-hours maintenance activities as needed.
Education and Experience:
- Bachelor's degree in Information Security, Computer Science, or a related field; advanced degree or professional certifications (e.g., CISSP, CISM, CIAM) preferred.
- Proven experience in leading IAM programs, managing and supporting Active Directory/Office 365/Azure environments, complex organizations, with a track record of successful IAM implementations and transformations.
- Deep understanding of IAM principles, technologies, and standards, including identity governance, authentication methods, directory services, and access control mechanisms.
- Familiarity with regulatory requirements (e.g., GDPR, CCPA, SOX), industry frameworks (e.g., NIST, ISO 27001), and security best practices.
- Strong leadership, communication, and stakeholder management skills, with the ability to influence and collaborate effectively across functions and levels of the organization.
- Excellent problem-solving abilities, analytical thinking, and attention to detail.
- Experience with IAM vendor evaluation, selection, and vendor management.
- Ability to thrive in a fast-paced environment and manage multiple priorities with a customer-focused mindset.
- Hands-on experience with Microsoft Active Directory, Azure Entra ID, Office 365 services such as Exchange Online, SharePoint Online, Teams, and OneDrive.
- Proficiency in Azure services and management tools, including Azure AD, VMs, virtual networks, and security.
- Solid understanding of network protocols, TCP/IP, DNS, DHCP, and VPN technologies.
- Experience with PowerShell scripting for automation and administration tasks.
- Excellent problem-solving skills and the ability to troubleshoot complex issues independently.
- Strong communication skills with the ability to interact effectively with technical and non-technical stakeholder
- Microsoft certifications such as MCSE: Core Infrastructure, MCSA: Office 365, or Azure Administrator Associate.
- Experience with cloud migration projects and hybrid cloud environments.
- Knowledge of ITIL practices and principles.