Job Description
We have an incredible opportunity for an Identity & Access Management Analyst!You’ll be joining a dynamic, hands-on team, where you will perform the provisioning, recertification and Privileged Access Management (PAM) processes, as part of the Identity Lifecycle Management activities across the Legal & General Group and business divisions. This includes the support and management of multiple IAM tools to monitor and control all privileges held by Human & non-Human accounts, across all of the L&G infrastructures such as AD, Mainframe, SQL, ORACLE, DB2 and cloud based services.What you'll be doing:
1. Liaising with Group Technology and business divisions to perform Joiner, Mover, Leaver (JML) access management processes as outlined in Legal & General’s policies and standards to help ensure that user access is appropriate as employees and contractors join, move within or leave the organisation
2. Defining, implementing & ongoing maintenance or Group RBAC, ensuring least privileged access
3. Managing IAM IT General controls with regular reviews of access requests, suitability of use and segregation of user and privileged access
4. Liaising with Group Technology and business divisions to conduct regular recertification reviews for user access to help ensure that physical and electronic access requirements are up to date for all users
5. Working with application owners and business divisions to map business roles to IT entitlements to help ensure that the appropriate access rights are given to individual users based on business roles
6. Managing the user account authentication and password management processes as outlined in Legal & General’s policies and standards to help ensure only the account owners are able to access these
7. Monitoring privileged accounts on an ongoing basis and manage provisioning and de-provisioning of privileged access based on the principle that only those that require these enhanced accounts have them for a limited time period to help ensure data breaches are minimised
8. Overseeing vendors responsible for providing IAM tools and services and escalate any process deficiencies and remediation actions required to the IAM Manager to help ensure providers meet contractually defined Service Level Agreements (SLAs) required to manage Legal & General risks
QualificationsWho we're looking for:
9. Strong technical expertise in areas such as identity lifecycle management, access management, single sign-on, identity federation, privileged access management, MFA, enterprise directory architecture, access certification etc.
10. In-depth knowledge of directories, SSO, Federation, API gateways etc.
11. Understanding of IAM related protocols such as SAML, SPML, SCIM, OpenID, OAuth and XACML
12. Ability to understand a multitude of infrastructure operating Systems and sub systems such as AS400, AD, SQL, Oracle, DB2.
13. Prior work experience in managing user access accounts, service accounts and privileged accounts is required. Able to assess and implement least privilege access methodologies
14. Experience with managing User Provisioning Onboarding, RBAC Authorisation models, SSO Active Directory is preferred
15. Experience with installation, integration and deployment of technology solutions (IAM solutions would be a bonus)
16. Experience of working and managing vendor IAM tools and PAM tools such as SailPoint IdentityIQ, CyberArk, CA PAM, Imprivata, Azure MFA etc
Whatever your role, we reward performance and behaviour with a package that looks after all the things that are important to you. Here are some of the benefits we offer:
17. The opportunity to participate in our annual, performance-related bonus plan and valuable share schemes
18. Generous pension contribution
19. Life assurance
20. Private medical insurance (permanent employees only)
21. At least 25 days holiday, plus public holidays, 26 days after 2 years’ service. There’s also the option to buy and sell holiday
22. Competitive family leave
23. Participate in our electric car scheme, which offers employees the option to hire a brand-new electric car through tax efficient salary sacrifice
24. There are the many discounts we offer – both for our own products and at a range of high street stores and online
25. In 2023, some of our workspaces were redesigned. Our offices are great spaces to connect and collaborate and have your wellbeing at the heart
Additional InformationLegal & General is a leading financial services organisation, named in 2023, for the second year running. Rated top in our sector and top for inspirational leadership, we have a strong heritage and an exciting future. We’re one of the world's largest asset managers, homebuilders, pension providers and insurers. Connecting to form a unique business model which drives value for our customers and society. And enabling our people to create impact through work that is meaningful and valued. If you join us, you’ll be part of a welcoming, inclusive culture, with opportunities to collaborate with people of diverse backgrounds, views, and experiences. Guided by leaders with integrity who care about your future and wellbeing. Empowered through initiatives which support people to develop their careers and excel. We strive to be open, mindful, and inclusive, so are always willing to discussing flexible working arrangements and reasonable accommodations for candidates with specific needs. It doesn’t matter if you don’t meet every single criterion in this advert. Instead, think about what you excel at and what else you can bring in terms of strengths, potential and connection to our purpose. If you’re open to find out more, we'd love to hear from you. Share this article