TQUSI0197_4880 - Identity Access Management IAM Specialist

SC Clearence is mandatory

Job Profile Identity Specialist Utilities Active Directory Entra Okta SailPoint CyberArk

Summary

• Working in the Microsoft and Identity Product group you will be part of the team that focuses on Corporate identify but the role is aligned to the delivery of our new Operational Technology project that blend both technologies
• We are looking for an experienced Identity Access Management IAM Specialist with expertise in Active Directory Entra ID Azure AD Okta Experience or a good knowledge of either SailPoint or CyberArk an advantage
• Management configuration and the security of identity solutions in a utilities environment in IT and OT Operational Technology systems is the overal role which will be responsible for supporting the management designing and implementing IAM solutions with an eye on ensuring compliance with CAF and eCAF and NIST Frameworks as well as transition of operational management to 3rd party support partners
• The ideal candidate will have experience in Identity Governance and Administration IGA with SailPoint Privileged Access Management PAM with CyberArk and hybrid identity integrations for critical infrastructure environments

Key Responsibilities

Project implementation

• Support the deployment of identity solutions relating to 3rd party smart access solutions
• Assisting in the design of both IT and OT identities highlighting design limitation and working towards resolving system related identity mismatches
• Support the transition of services across both IT and OT platforms including process and technology changes for successful delivery hypercare
• Investigate and resolve IAMrelated security incidents access anomalies and authentication failures
• Review Identity Threat Detection Response ITDR solutions for realtime monitoring
• Collaborate with SOC teams to detect and respond to privileged account misuse and insider threats
• Identity Access Management IAM
• Design implement and manage IAM solutions using Active Directory Entra ID Okta SailPoint and CyberArk
• Design and configuration e Single SignOn SSO MultiFactor Authentication MFA and Conditional Access Policies for OT working in tandem with current IT tooling integration
• Develop RoleBased Access Control RBAC and enforce Least Privilege Access across enterprise and industrial systems where appropriate
• Identity Governance Administration IGA SailPoint
• Implement and manage SailPoint ISC for automated provisioning deprovisioning and access certification
• Classified as Internal
• Develop workflows for user lifecycle management identity reconciliation and compliance reporting
• Integrate SailPoint with Active Directory Entra ID SAP ServiceNow and other enterprise applications
• Privileged Access Management PAM CyberArk
• Deploy and administer CyberArk PAS for securing privileged accounts and credentials
• Manage Privileged Session Manager PSM Vault and Endpoint Privilege Manager EPM
• Monitor privileged access enforce JustInTime JIT access and generate compliance reports
• Hybrid Identity Security
• Implement Hybrid Identity Solutions connecting onprem Active Directory with Azure AD Okta and SailPoint for OT whilst adapting to IT Identity platforms
• Apply Zero Trust Architecture and insert Security framework controls controls to IAM processes
• Compliance Security
• Ensure IAM solutions comply with insert Security framework controls and other regulatory frameworks
• Build access audits identity risk assessments and compliance reporting
• Work with cybersecurity compliance and risk teams to align IAM strategies with regulatory requirements
• Collaboration Documentation
• Work with OT cybersecurity compliance and risk teams to define IAM policies and access controls
• Develop IAM runbooks playbooks and user access reviews
• Provide IAM training and awareness programs for employees and technical teams

Technical Skills

• IAM Directory Services
• Active Directory AD DS AD FS Group Policy LDAP Kerberos NTLM
• Microsoft Entra ID Azure AD Conditional Access and Identity Protection
• Okta Identity Cloud SSO MFA API integrations and identity governance
• Experience with SCADA ICS and OT identity management
• Identity Governance IGA SailPoint
• Implementation and administration of SailPoint IdentityNowIdentityIQ
• Classified as Internal
• Experience with access reviews identity lifecycle automation and compliance workflows
• Integration with enterprise applications ServiceNow Oracle
• Privileged Access Management PAM CyberArk
• Vault administration credential rotation and JustInTime JIT access
• Privileged session monitoring and compliance reporting
• Security Compliance
• Understanding of CAF eCAF and NIST
• IAM controls for critical infrastructure and industrial cybersecurity
• Incident response and IAM threat detection