Identity Access Management - Analyst

Short Description

Deloitte is seeking an Analyst who can develop procedural documentation for AccessServices and Auditing purposes and maintain access request audit trail. Maintain all records in an orderly fashion.

Job Description

This role requires someone who understands the administration of user access and security profiles across applications and systems in a corporate environment, security policies, and audit controls. Administrators are also responsible for reporting and investigating exceptions, testing and maintaining access controls, and supporting the business and IT staff for security-related identity and access issues. May serve internal or external client such as approved vendors.
Primary Responsibilities Include:
  • 24x365 IAM tools monitoring, operation, and management
  • First responder to monitored alerts, incidents, and issues.
  • Security Operations Center Identity and Access and Management
  • Provide assistance to IAM team and project teams for management and implementation of IAM services
  • Follow through with firm and vendor resources to close out availability, performance, and security incidents.
  • Second level support and escalation path for the IAM operations group.
  • Coordinate, triage and troubleshoot activities with all IAM and security teams.
Additional responsibilities:
  • Accountable for execution according to established standards, procedures, and processes.
  • Cross-functional support for development and implementation of IAM systems.
  • Application and user identity and access administration (including maintaining end-user security access rules and profiles across multiple systems and platforms)
  • Assisting in policies and procedures (including staff support for security related to identity and access incidents and awareness)
  • Ability to work after business hours as required (nights, weekends) due to project needs and operational emergencies.
  • Respond to and manage incidents and service requests in ServiceNow within SLA.
  • Respond to and manage service issues and problems.
  • A report, pursue, communicate, and when needed escalate any breaches in information security or policies.
  • Assist in reviewing processes, policies, and standards as they relate to the access and provisioning principles.
  • Represent AccessServices Team and/or AD Administration Team on related incidents.
  • Analyze and resolve technical and end-user incidents during standard business hours and on-call rotations; Monitor issue resolutions and collaborates with the application teams, vendors and engineers when necessary to resolve issues.
  • Manage user accounts and access permissions for Deloitte computer systems and applications by reviewing user IDs or access request forms to determine if they are accurate, complete, approved and appropriate. Contact requestor, manage and/or data owner as necessary. If in order, establish the requested access and notify the user.
  • Must be able to gain familiarity and understanding with the following technologies: Web-based applications, VPN, Exchange, and Active Directory.
  • Conduct periodic audits of accounts and access by performing online research and producing reports of users with access to particular systems or resources. Provide updated user listings periodically for review or upon request by management or Data Owners.
  • Ensure timely removal or modification of access-based upon termination listings, emergency requests and change request forms.
  • Develop procedural documentation for AccessServices and Auditingpurposes and maintain access request audittrail. Maintain all recordsin an orderly fashion.
  • Ensure knowledge obtained in the resolution of significant incidents is captured into process documentation and properly trained and communicated to the team.
  • Identify and work with appropriate referral resource groups (Messaging Operations, Applications Operations, Information Security, End User Technology Services, DirectoryServices, MessagingOperations TechnicalSupport, U.S. Technology Call Centers) to resolve ongoing or widespread technology issues
  • Able to coordinate and work with onsite engineers during outage situations.
  • Adhere to established incident management SLA and SLOs.
  • Able to document troubleshooting/process related documents for the team.

The team
The Cyber Defense teams expertise is applied to a number of tactical areas. We perform various vulnerability and penetration testing initiatives across our systems and applications to allow us to measure security control effectiveness.  Our team works with various teams to manage patching and close system weaknesses in a timely manner.

 Required Specific Skills
  • Ability to analyze user request forms to determine the appropriateness of the request.
  • Proven teamwork qualities with emphasis on customer service, team building, and strength-based teams.
  • Strong organizational skills and ability to multitask under pressure and project deadlines.
  • Ability to troubleshoot user access problems and determine appropriate corrective action.
  • Ability to view incidents and problems from customer-perspective and taking initiatives to
  • represent the customer when working with other teams toward a resolution.
  • Proven performance in monitoring performance against defined Service Level Agreements with internal customers, internal departments and external vendors. Dedicated to increasing performance levels.
  • Demonstrated awareness of Information Technology trends, directions and emerging technologies including systems/technologies administration and policies.
  • Excellent presentation and communications skills ?? both oral and written.
  • Commitment to enforcement of administrative procedures and policies including policy change control.
  • Must be able to write and review process documentation. Customer Service-oriented to provide a positive end user experience.
  • Strong interpersonal and written communications skills, strong work ethic, and strong problem-solving skills are required.
Required Technical Skills:
  • Intermediate MS Office/Outlook
  • Experience with Enterprise directory services (ActiveDirectory)
  • Exposure to managing user accounts, (human) privileged accounts and service accounts.
  • Preferred experience with Identity and Access Management technologies including Thycotic Secret Server, CyberArk, Sailpoint, Azure MFA and RSA MFA and other PAM, MAC, and MFA applications as required.
  • Familiar with running PowerShell scripts.
  • Experience with Active Directory and SharePoint preferred.
  • Experience with ExchangeShared Mailboxes and Distribution Lists

Mid-Senior-level Information Technology | Technology | Information Full-time Information Technology | Engineering Senior Programmer Analyst | Data Analyst | Engineer - Research Analyst
Deloitte drives progress. Our firms around the world help clients become leaders wherever they choose to compete. Deloitte invests in outstanding people of diverse talents and backgrounds and empowers them to achieve more than they could elsewhere. Our work combines advice with action and integrity. We believe that when our clients and society are stronger, so are we.