Identity Management Consultant
Job Description
<p><span>Key Responsibilities</span></p><p><span>· Be responsible and accountable for the identity and access management program for the company.</span></p><p><span>· Maintain and manage the IAM platform, create and enhance the knowledge base for ongoing operations of the platform.</span></p><p><span>· Conduct periodic review of user accesses, identify, and address any process gaps.</span></p><p><span>· Strengthen and mature the IAM program by maturing the user access management with implementation of RBAC.</span></p><p><span>· Be responsible for conducting internal vulnerability assessment and penetration testing (VAPT) exercise on demand. </span></p><p><span>· Able to conduct security architecture and network security review and provide right recommendations on gaps identified.</span></p><p><span>· Conduct technology, process risk assessment, and articulate them in business language.</span></p><p><span>· Conduct risk assessment of vendor information security in context of traditional managed services and cloud-based service.</span></p><p><span>· Conduct periodic review of the cloud infrastructure and ensure remediation of security risks.</span></p><p><span>· Support the team with topics on regulatory mandates, security audits.</span></p><p><span>· Support the team with security projects and initiatives as per the strategic direction of the company year on year basis.</span></p><p><br></p><p><br></p><p><span>Operational & technical responsibilities</span></p><p><span>· Support the team on BAU of security operational activities </span></p><p><span>· Support the team on tracking, follow up and closure of security issues.</span></p><p><span>· Support the team on incident investigations whenever its necessary. </span></p><p><span>· Support the team on closure of audit and regulatory topics. </span></p><p><span>· Provide necessary feedback to the team to ensure the knowledge from the security in projects, security designs are cascaded well within the team.</span></p><p><br></p><p><strong><span class=”ql-cursor”></span>Minimum requirements of role </strong></p><p><span>Essential:</span></p><p><span>· Well versed with Identity and Access Management (IAM) concepts.</span></p><p><span>· Have run IAM as a program in banking, financial services, or insurance industry.</span></p><p><span>· Experienced in at least one of the industry leading IAM solution. </span></p><p><span>· Have hands on expertise conducting vulnerability assessment and penetration testing.</span></p><p><span>· Well versed with security architecture concepts.</span></p><p><span>· Strong knowledge of network security.</span></p><p><span>· Conceptual and foundational knowledge on cloud service providers like AWS, Azure etc. </span></p><p><span>· Any security certifications on any of the reputed public cloud technologies is a plus.</span></p><p><span>· Must have worked on either 2 or more security frameworks like ISO27001, CSA, OWASP, NIST,etc.</span></p><p><span>· Any security certifications like CompTIA, SSCP, OSCP, CCSA, CCSP, OSCP, OSWE is a plus.</span></p><p><span>· Very good in communication, professional English. </span></p><p><span>· One of the primary requirements for the candidate is to be able to build great relationship internally and deliver the objectives in timely manner. </span></p><p><br></p><p><span>Desirable:</span></p><p><span>A desirable candidate must have minimum 6 years of experience in the relevant security fields mentioned above with a must in the IAM domain and VAPT domain. A candidate who is smart, self-motivated and runs their shop with minimal governance, with a solution driven attitude and strong appetite to continuously enhance their skillsets and knowledge in the security domains is preferred. Someone who integrates well within and outside the security team builds strong relationship and adopts to a friendly work atmosphere. Lastly, any two of the above listed certifications would be seen as a big positive for the desired candidate.</span></p>
