- Sailpoint experience (not as important as certification)
- Not looking for an order taker
Identity Governance and Controls - Remote, United States - Veterans Sourcing Group
Description
Job Description
Job DescriptionTitle:
Identity Governance and Controls (IGA) Principal Controls Analyst
Duration: Temp to Hire
Open to remote
Location:
Hybrid- Looking for someone close to an Client office- NYC, Jersey City, Alpharetta, Chicago, Dallas, Atlanta, Charlotte, San Fran, Houston, Jeffersonville
Manager Call Notes
- manage team of - working on all control
- the head to work with PWC to make sure Client is getting everything we need
- face work with PWC
- ask about experience regarding IGA and how they use it to make the business better off
About the role
The Identity Governance and Controls (IGA) Principal Controls Analyst is responsible for working with business stakeholders, regulators, auditors and vendors to define the governance and control parameters for the IAM Program.
In this role you are responsible for reporting on user access to enterprise resources while keeping the audit teams apprised of any user inconsistencies.
You will also build appropriate controls into related processes and ensure alignment with enterprise IT strategies and plans.Identify and evaluate complex business and technology risks as it relates to IAM and relay opportunities for automation/transformation improvements.
Create and maintain IAM company-wide governance policy, procedures, standards, and guidelines while adhering to IAM best practices.
Point of contact for internal and external audit partners as it relates to IAM (user access and identity lifecycle).
Possess SME knowledge in privacy and security laws and regulations as it relates to IAM.
Conduct regular audits of the organizations IGA/PAM/Authentication environment to identify and address any security risks or Segregation of Duty violations.
Recommend and implement access policies, password policy, and authorization approval workflows.Maintain broad understanding of information security including HIPAA, PCI, ISO27002, NIST and other information security frameworks and regulations.
What we're looking for
Bachelor's degree in a Cybersecurity, Information Technology, or related field, such as Computer Science or Information Technology.
12+ years of IT experience and 8+ years of applied work experience in cyber security programs, audits, assessments, risk, remediation, or cyber security compliance management.
Advanced knowledge of applicable information security management, governance, and compliance principles, practices, laws, rules and regulations.Advanced knowledge of Information technology systems and processes, network infrastructure, data architecture, data processes, and protocols.
Advanced knowledge of Cyber and cloud security standard frameworks, architecture, design, operations, controls, technology, solutions, and service orchestration.
Advanced knowledge of Information systems auditing, monitoring, controlling, and assessment process.
Proven track record of developing and implementing enterprise governance, risk, and compliance strategy and solutions.
Self-starter who is proactive, motivated, and resourceful individual who takes ownership of their work, embraces challenges, and consistently strives for excellence.
Ability to apply a risk-based approach to planning, executing, and reporting on audit engagements and auditing process.Excellent communication skills and the ability to collaborate effectively with technical and non-technical stakeholders.
Interact positively with regulatory agencies in order to enhance effectiveness and to promote quality service.
Work independently and prioritize multiple tasks and adapt to needed changes.
Strong leadership skills, with the ability to inspire and motivate a team to achieve goals.
36505