IAM Security Analyst

at Plante & Moran, PLLC in ChicagoChicago, Illinois, United States

Job Description

Location: United States, Michigan

Location: United States, Ohio

Location: United States, Illinois

Location: United States, Colorado

Make your mark. Plante Moran's technology services team has been awarded Insider Pro and Computerworld's "100 Best Places to Work in IT" for five consecutive years. We are also previous recipients of the InformationWeek IT Excellence award and the CIO 100 award. If you're seeking professional growth, like being innovative and challenged, and have a desire to work on impactful business technology solutions, we want to hear from you!

This IAM (Identity & Access Management) Security Analyst role will be an integral member of our Cybersecurity Team and contribute to maturing the firm's cybersecurity operations model. Reporting to the Cybersecurity Operations Manager, an IAM analyst helps define, establish, maintain, and manage identities across the organization. The analyst manages and maintains access to systems and applications following rigorous security, engineering, and governance principles, especially when provisioning and de-provisioning access. This position works closely with IT, cybersecurity operations and incidence response, business units and third parties. In addition, the IAM analyst helps with provisioning, governing access, SSO, directory services, technical integrations and supporting behavioral analytics.

Your role.
Your work will include, but not be limited to:
Serve on a distributed security and technology team responsible for establishing and maintaining identities and entitlements within IAM solutions.
Implement identity controls and settings that align with policies and governance structure.
Work closely with security leadership, teammates, and stakeholders to evaluate and implement access models that align with organizational risk posture.
Support IAM governance, policies, and solutions across SSO, directory, certificate, MFA, privileged accounts, automation, and behavior analytics systems.
Assess and resolve IAM issues that occur across the employee base, as well as with external entities.
Secure access to both on-prem and cloud infrastructure, as well as to applications required to support a distributed remote workforce.
Evaluate business impact and risk exposure based on the level of access granted and make recommendations where improvements should be made.
Work closely with incident responders during potential incidents and escalate to management as needed.
Document access, policies, and exceptions, and maintain integrity for audit reviews.
Review internal, external and contractor accounts as part of periodic audits.
Make recommendations for improvements in automation efficiencies, security practices and end-user experience.
Collect key performance indicators and related operational metrics, and track SLAs used to validate success as well as future areas of improvement.
Execute tactical requests and support the strategic vision for rigorous and scalable IAM controls.
Maintain understanding of business processes to aid in managing enterprise identity and access.
Frequently interact with business units to understand their plans, risk posture and tolerance, and how IAM supports their vision and business obligations with security in mind.
Research and stay up to date on industry standards and any new vulnerabilities and risks.
Perform other duties as directed by leadership.
The qualifications.
Bachelor's degree in Information Systems or related degree preferred.
1-3 years of combined experience working with IAM solutions, SOC/IR, endpoint, network, or application security solutions.
Technical knowledge, familiarity, and/or experience with several of the following:
Next generation AV tools
Administering directory services, Windows and Azure AD, SSO, MFA and role-based access control (RBAC).
Active Directory groups, user accounts and Windows folder security structure.
Identity and Access Management procedures, ADFS/AAD.
Microsoft Windows Server and Cloud Security (IaaS, SaaS, etc.) is preferred.
Knowledge of Microsoft Azure security practices will be a bonus.
Basic Understanding of malware distribution, technical risks, and containment/mitigation.
Ability to prioritize work to compete task/activities based on intake queues and service level agreements (SLAs).
History acting with integrity, taking pride in work, seeking to excel, and being curious and flexible.
Strong written and oral communication skills across varying levels of the organization.
Ideally familiar with one or more regulatory requirements and laws such as, but not limited to, PCI, Federal Financial Institutions Examination Council (FFIEC), Sarbanes-Oxley (SOX), HIPAA, GDPR and GLBA.
Bonus to have experience in one or more of the following preferred: ISO 17799, ITIL and NIST.
Experience with one or more scripting... For full info follow application link.

Plante Moran is an Equal Opportunity Employer, committed to a diverse workplace.