Logo
CDW

IAM - Identity Access Controls Managment (Sailpoint)

CDW, Tulsa, OK, United States

Title: Identity Access & Control Management (Sailpoint)

Location: fully onsite in Tulsa, OK

Must be have EAD, Green Card or US Citizenship

Major Functions:

Role-Permissions Analysis - 40% of total job

  • Understand/Analyze/Document the goals and scenarios for roles (requirements)
  • Understand business functions and entitlement requirements for roles
  • Understand how regulatory and policy statements impact roles and entitlements (HIPAA, PII, CDE, etc.)
  • Analyze role and permissions candidates (developing the roles and entitlements)
  • Manage/Analyze/Communicate
  • Permission Context (translate role scenarios into permissions)
  • Permission Constraints and Privacy Expectations (segregation of duties and policy constraints)
  • Functional Requirements (from systems, applications, job descriptions, etc.)
  • Work with Cybersecurity for on-going discovery and audit of user accounts and access resource groups
  • Document access control matrices
  • Participate in discussions to refine existing RBAC structures and role rationalization
  • Ensure application onboarding and decommissioning processes address changes to RBAC roles or entitlements

Role-Permissions Management - 40% of total job

Proactively facilitate the management of permissions and entitlements, drive efficiencies in role entitlements

  • Serve as Liaison for RBAC/IAM issues
  • Manage Role Based Access controls, including role management, role mining, role remediation, and role re-certifications
  • Maintain user role definitions while maintaining naming conventions and updating entitlements as needed.
  • Change contexts, constraints, purpose, and hierarchies that feed RBAC rationale
  • Manage discovery and audit of user accounts and access resource groups
  • Work with IT Security Audit personnel to monitor access to critical systems and infrastructures such as Active Directory, E1, Cognos, TMA, etc. (Splunk alerting – analysis of who is requesting what types of entitlements in key applications, etc.)
  • Conduct change impact assessments (example: departmental re-structuring)
  • Maintain an understanding of access with respect to roles, rules, and policies.
  • Participate in kick-off and training on periodic access certification reviews for Role & Resource Owners.

Other job functions that support sustaining RBAC - 15% of total job

Participate in Sprint Planning meetings or review meeting outcomes to review significant System/Software configuration changes across technology infrastructure and business applications for change management

  • Participate and review User Acceptance Testing and Quality Assurance post RBAC deployment
  • Stay abreast of Identity and Access Management trends and technologies - 5% of total jobResearch, develop and stay current on access management techniques.
  • Participate in the evaluation and recommendation of security products, services and/or procedures.
  • Help develop security awareness content and provide education on security policies and practices both internal and external to the group.