Security Analyst

Position Objectives: The position objective is to protect and detect organization’s digital assets through proper management of identity & access management initiatives, including user authentication, authorization, provisioning, deprovisioning, and governance to ensure secure and compliant access to our systems. Additionally, this role would be implementing various security automation initiatives in the identity lifecycle domains, including managing governance and operation of joiners, movers, leavers, and ongoing recertification. This role will drive continuous improvement, collaborate with cross-functional teams, and ensure the organization maintains a strong and resilient security posture.Requirements: Education: University degree in one of the following or related disciplines (Computer Science, Computer Engineering, Information Security, Information Systems).Min. 2 years of experiences of information security domain, with hands-on experience in managing identity lifecycle management both from technical and governance perspective (joiner, mover, leaver, review, privilege ID).Strong understanding of IAM concepts and technologies. Experience with IAM tools (e.g., Okta, Ping Identity, ForgeRock, SailPoint). Knowledge of directory services (LDAP, Active Directory), SAML, OAuth, OpenID Connect. Familiarity with scripting languages (e.g., PowerShell, Python) for automation especially related to identity lifecycle process. Good interpersonal and communication skill, with ability to deliver the key message of “why” certain things are needed for remediation with elaboration of the risks, severity and impact. Knowledge of Windows, Linux, and Kubernetes architecture would be strong added advantage.Certifications/licenses: Preferably a holder of one or more of the following information security qualifications: GSOC, CSA, ECSA, CISSP, CEH, or similar.Key Responsibilities: Identity Access & Management (IAM)Oversee identity lifecycle processes, including onboarding, offboarding, and periodic access reviews, while enforcing least privilege access and segregation of duties to maintain strong governance and minimize risk. Ensure IAM practices align with organization standards, including conducting regular access reviews to identify and remediate risks, and continuously monitor systems for excessive privileged access. Manage BAU processes of provisioning and deprovisioning workflows using various tools such as SailPoint, Okta, or Azure AD, and optimize IAM processes for scalability and operational efficiency, and also provide timely troubleshooting and support for access-related issues. Security Automation (Scripting, Orchestration, and Dashboard) Design, develop, and maintain/enhance security automation scripts and workflows to streamline lifecycle management process / review. Manage and enhance various reporting dashboards based on JIRA, Power BI, and other technology platforms. Ensure automation solutions are scalable, maintainable, and aligned with security policies and standards. Additionally, to stay keep ahead with emerging technologies (especially AI security) to continuously improve automation capabilities securely.Security Operations Metrics Track and populate security operations metrics. Automate as much as possible the process of gathering, analyzing, and presenting the security operation metrics. Involve in the preparation of various security reports and deck. Security Operations Initiatives Support the team in various security operations projects and initiatives. Involved in a security operation automation project and provide contributions, ideas, and deliverables.