Security Access Analyst (IAM)

Our leading Douglas-based Finance Sector Client is expanding its Technology Team as they progress an ambitious transformation programme. As the evolution continues, they now require a Security Access Analyst to join the team.

Reporting to the Head of IT Security, the Security Access Analyst role is integral to the management and integrity of network and system access within the group. You will be responsible for ensuring that access rights are granted according to role-based access control (RBAC) principles and are in compliance with organisational policies.

You will conduct regular audits of access rights to verify adherence to security protocols and to identify any discrepancies that may pose a risk. Key duties will include:

• Support the joiners/movers/leavers process ensuring timely provisioning, modification, or revocation of access rights
• Assist in enforcing the "Principle of Least Privilege" by contributing to access reviews and adjustments under guidance
• Assist in utilising automated tools or mechanisms to facilitate periodic access reviews within specific operational domains
• Aid in defining RBAC roles, permissions, and access levels aligned with business needs

The ideal candidate for the role of Security Access Analyst will have:

• A Level or higher qualification in Computer Science, Information Security, or a related field, or equivalent hands-on experience
• A minimum 2 years' experience in an IT Support role and 1+ years in roles that focus on network and/or Cloud security, Identity Access Management (IAM), Role Based Access Control (RBA) and showcasing a track record of increasing responsibility
• Possess an analytical mind-set, enabling the assessment of security risks and formulation of appropriate mitigation strategies
• Knowledge of access management solutions and identity management protocols
• Good analytical skills to interpret access data and identify security risks
• Awareness of regulatory requirements affecting access controls, such as PCI-DSS and GDPR