Security Engineer, Identity and Access Management (IAM) Analyst
c. £65,000 per annum
Bedford Based
Hybrid Working
Permanent
As Security Engineer, Identity and Access Management (IAM) Analyst at Money and Pensions Service (MaPS), you will be responsible for supporting the Cyber Security Manager and the Identity and Access Manager with cybersecurity and IAM operations, continuous service improvement and identity management, protecting the organisation’s cloud technology platforms, data and identities.
The post holder will ensure that best practices for cybersecurity and IAM are implemented and documented, and that the organisation is compliant with regulatory and audit requirements.
Duties include managing the operational security and IAM toolsets including MIMECast, Windows Defender, Symantec WSS, Tenable and Microsoft Office 365 Security and Compliance, Intune and JAMF for MAC security, Entra ID and Okta.
The role will embed regular reporting of the security and IAM performance of the technology infrastructure and report on exceptions or breaches of policies and procedures.
This position will be working with colleagues across the organisation, including an outsourced managed security operations centre and provide cover for the Cyber Security Manager and Identity Manager.
The role includes hands-on activities to deliver and support the Cyber and IAM Strategy. The Security Analyst should have a number of years’ experience in the security industry and hold a broad skillset enabling them to support numerous technologies quickly and effectively. Any professional security qualifications would be beneficial.
In this role you will be responsible for the following:
* Support the current Cyber Security Manager and Identity and Access Manager.
* Demonstrate a passion for cybersecurity and IAM, experience in monitoring security controls and Authentication, Authorization, and Accounting implementation and governance.
* Providing advice to the organisation, ensuring compliance with appropriate regulations and, generally, on information risk.
* Experience of optimising security and IAM toolsets – including antivirus (Windows Defender), Office 365 Security & Compliance, vulnerability management and patching. JAMF for Apple MAC, Entra ID and Okta.
* Understanding of a broad range of security tools using Microsoft tooling where possible, including but not limited to SIEM, Email Security, DLP.
* Delivering new cybersecurity toolsets and capability as required and investigating cybersecurity incidents and undertaking reporting/remedial action as required.
* Maintaining risk, issue and change registers for cybersecurity and identity.
* Build and maintain methodology and technology used to implement Identity Governance and Administration (IGA) and Identity and Access Management (IAM) systems including SSO, MFA, Provisioning / Reconciliation, Federations, Access reviews.
* In-depth knowledge of multifactor authentication (MFA) architectures, Role-based Access Control (RBAC) and Attribute-based access control (ABAC)/Policy-based access control (PBAC) implementations and best practices.
* Ability to work independently and as part of a team when required.
* Work collaboratively within Infrastructure Services and other IT functions to ensure effective management and delivery of Security and Identity and Access Management services.
You will need to demonstrate the following skills and experience:
* Microsoft 365 Security stack (all elements).
* Cloud security experience, tooling, best practices, security posture.
* Experience of writing various security policies and documentation.
* Implementation of Identity Governance and Administration and Identity and Access Management systems including SSO, SAML, OpenID.
* Good knowledge of MFA, RBAC.
* EntraID experience, setup and improvements (not just resetting user passwords).
Job Reference: MaPS00675
Close Date: 26/11/2024
Job Types: Full-time, Permanent
Pay: £65,000.00 per year
Work authorisation:
* United Kingdom (required)
Work Location: Hybrid remote in Nottingham, Nottinghamshire
#J-18808-Ljbffr