Senior Security and IAM AnalystRate: £450 - 550 per day
IR35: In scopeDuration: 6 monthsLocation: Leeds 2 days / Remote 3 daysReporting into the IT Risk & Security Lead. Taking into account the further heightened cyber-security environment, work with a focused IT Risk and Security team and other stakeholders, in the provision of security dependencies across multiple Bank requirements, focussing primarily on leading on the continued design, development and implementation of the Identity and Access Management (JML/RBAC) in a Microsoft Azure cloud environment, and assisting where necessary across other ITSec requirements such as mitigating Cyber Risks, responding to security incidents, and processing BAU security functions as required.Core role accountabilities
1. Primary responsibility to lead and deliver the continued design, development and implementation of the Identity and Access Management in a Microsoft Azure cloud environment.
2. Responsible for role-based access control (RBAC) - analysis and policy definition
3. Work with a diverse set of stakeholders across the business including 3rd party and partner organisations in relation to secure implementation of policies and controls as relevant to JML/RBAC
4. Support the management of the identity lifecycle as part of the joiner, mover and leaver process.
5. Deliver best practise relevant to IAM.
6. Understand technical IAM aspects and decode / engage with the business
7. Contribute to other IT security functions or policies as required.
8. Awareness of emerging cyber security threats and ways to manage them.
9. Awareness of emerging tools or technologies to improve cyber resilience and general Information Security.
Knowledge, Skill and Experience requirements
10. Demonstrable experience of IAM implementations in a Microsoft environment ( Azure Access Directory / Entra ID).
11. Thorough understanding of JML/RBAC and principles and how to implement across Microsoft environments (SharePoint/Azure/etc)
12. Experience in Identityernance and management tools.
13. Understanding of key industry frameworks (such as NIST, ISO and Cyber Essentials).
14. Strong ability to leverage data security principles in deliverables.
15. Excellent investigative, problem solving and fault diagnosing skills and ability to articulate solutions in a business context.
16. Ability to work in a team with minimal supervision and prioritise own work effectively.
17. Able to deliver detailed and clear documentation.
Desirable
18. Relevant professional qualifications/certifications, preferably in Microsoft Azure/M365 technologies
19. Understanding and awareness of Data Protection responsibilities and practise.
20. Good facilitation experience.
21. Experience working with multiple IT managed service providers.
22. Knowledge and understanding of the business processes, ideally within financial services.
23. Wider role may include providing security direction across other workstreams across the bank.
IAM, IDENTITY ACCESS MANAGEMENT, ITSEC, CYBER RISK, AZURE, CLOUD, JML, RBAC, SHAREPOINT, NIST, ISO, CYBER ESSENTIALS, SECURITY, FINANCIAL SERVICES,ERNMENT, PUBLIC SECTOR #4573388 - Phil Barrowclough