IAM Compliance Analyst

IAM capabilities are focussed on ensuring that the right people have the right access to digital assets at the right time.

This role is responsible for ensuring compliance with applicable information security standards, policies and industry best practices or frameworks.  This is to be done through activities such as application onboarding, monitoring and reporting controls, role-based access control, and segregation of duties (SOD).

The role necessitates a strong understanding of access management concepts and technologies.

Main Duties

You will:

• Ensure Identity and Access Management Services follow appropriate standards, policies, procedures and meet any regulatory requirements.
• Assist in the monitoring, control, and governance of all IAM activities to reduce the risk of audit findings before they occur.
• Work with Technology Risk & Assurance to support Internal and External audit requirements relating to IAM.
• Introduce IAM concepts to teams and stakeholders across business.
• Lead the onboarding of applications to IAM Services, working with Application and System owners and SMEs.
• Deliver on the user access review schedule according to new or changing requirements e.g. new applications being onboarded or new Security guidelines implemented.
• Be responsible for the delivery of recertification campaigns and ensure remediation non-compliant user accounts.
• Drive and maintain Role Based Access (RBAC) through Role Mining (where applicable) to allow users to access the information necessary to effectively perform their job duties whilst maintaining the principle of least privilege.
• Embed processes to manage the identification of access entitlements within applications and systems that would form toxic combinations; management of policies to enforce segregation of duties.
• Collaborate with IAM Engineers to promptly address incidents and resolve application errors.
• Contribute to the requirements gathering for system development.
• Produce KRI/KPI reports and other IAM Analytics as required.

Experience Required 

Essential:

• Understanding and experience of IAM and PAM best practices, processes and controls including recertification, toxic combinations, Segregation of Duties and role-based access control.
• A working knowledge of a variety of identity management systems to operate effective controls to include at least two of CyberArk, Saviynt, Active Directory, Azure AD, Google Cloud.
• Competent in using reporting tools, creating, and manipulating large volumes of data for wider consumption.
• Strong analysis and administration skills with excellent attention to detail.
• Excellent organisational skills with the ability to plan and prioritise work without supervision, managing workload effectively.
• Team player with ability to work autonomously, flexibly and with enthusiasm.
• Effective communication skills, both written and verbal, for seamless collaboration with various teams and stakeholders.

Desirable:

• ITIL certified.
• Experience in Confluence, JIRA and ITSM tools such as Service Now.
• SQL - ability to write queries.
• Good understanding of the Security frameworks such as NIST, CIS.

Location

For Hybrid workers (within a 50-mile radius of our Cardiff HQ) there is an expectation to work from the office twice a month.  For remote workers (outside of a 50-mile radius of our Cardiff HQ) there is an expectation to attend the office a handful of times a year when required (i.e big meetings, workshops etc).

Salary, Benefits, and Work-Life Balance

We do not have a set salary for this position, as it will be dependent on the successful candidate’s experience. We are happy to see CVs from all candidates who meet the requirements and will be happy to discuss the remuneration package.

At Admiral, we are proud to be a diverse business where we put our people and customers first. We have great benefits to ensure employees have a great work-life balance; it's one of the reasons we’re consistently voted one of the Sunday Times Best Big Companies to work for in the UK. We want you to have an element of freedom to define a working lifestyle that supports this, so accommodate flexible hours wherever possible.

All colleagues will receive 33 days holiday (including banks holidays) when they join us, and this will increase with length of service, up to a maximum of 38 days (including banks holidays). You also have the option to buy or sell up to five days of annual leave in addition to your allocation.

You can also view some of our other key benefits here.

#LI-NT1