Sr Analyst, IAG & IT GRC

What Will You Be Doing?

The Sr Analyst will support functional and technical aspects of the IT Governance, Risk and Compliance (IT GRC) & Identity Access Governance (IAG) functions. This person will work with both the manager of IT GRC and IAG to help support the implementation, maintenance, and improvement of the IT GRC processes & identity and access management processes across the organization, The Analyst will lead projects that help the organization further implement and mature operational and IT processes. The Sr. Analyst must be able to work with both technical and nontechnical stakeholders. By championing the importance of strong logical access controls (IAG), this will help to reinforce Frontier's related efforts to strengthen its cybersecurity control framework and risk posture (IT GRC).

On the GRC side, the analyst will work to conduct risk assessments, help to build and maintain systems of record to ensure accuracy and completeness, and project manage projects that help to strengthen the GRC program. On the IAG side, the candidate will work to ensure that employees, business partners, and contractors have the right access to the right systems at the right times for the right reasons.

Essential Functions

• Work collaboratively with other teams to develop, implement and maintain policies and procedures across the organization to ensure compliance with regulatory requirements and industry best practices.
• Work with internal stakeholders/business partners to gather and document requirements for new and existing applications and systems.
• Work closely with stakeholders to understand their requirements, translate them into technical specifications, and design/implement solutions that meet those requirements.
• Support technical functions that automate provisioning and de-provisioning of user access, managing entitlements, managing roles, and enforcing policies for compliance purposes.
• Conduct regular access reviews and certifications to validate that users have appropriate access privileges and roles based on their job responsibilities.
• Monitor, manage, and troubleshoot the IAG platform environment to ensure its high availability, stability, reliability, and security.
• Analyze system requirements, including identifying interactions and appropriate interfaces between affected components and sub systems.
• Work collaboratively with vendors, consultants, and other third-party service providers to understand the IT ecosystem and help ensure its protection.
• Develop and/or review system specifications, including output requirements, flow charts and technical diagrams.
• Supports software system testing & validation procedures, programming, and documentation.
• Provide technical expertise in the areas of access control, identity governance, and authentication & authorization to ensure compliance with industry regulations and standards such as SOX, PCI-DSS, and TSA.
• Work collaboratively with internal and external auditors to provide evidence of compliance with policies/procedures and develop remediation plans for any identified gaps.
• Stay up to date with emerging technologies and best practices and provide recommendations for improving processes to meet the evolving needs of the organization.

Qualifications

• Bachelor's degree in computer science, Information Systems, or a related field; or equivalent work experience (required).
• 5+ years' experience project managing IT related work.
• 4+ years of experience configuring, implementing, or helping to and maintain a packaged or custom IAG solution, such as: Saviynt, SailPoint, ForgeRock, or equivalent tool (required).
• Experience with Microsoft Azure Active Directory (required).
• Experience using PowerShell for reporting and automation (required).
• Experience using database connections and SQL queries (required)
• Working knowledge in infrastructure technologies such as Linux, Windows, and LDAP (required).
• Experience on SailPoint IdentityNow with developing custom workflows, connectors, rules, and policies (desired).
• Certifications such as SailPoint Certified IdentityNow Engineer (desired).
• Certifications such as CISSP, CISM, or CISA (desired).

Knowledge, Skills, and Abilities

• Proficient in developing and maintaining policies, standards, and guidance artifacts.
• In-depth knowledge of Identity and Access Management concepts, technologies, and best practices, including user provisioning, access certification, role management, and entitlements management.
• Subject matter expert for IAG including role-based access control (RBAC), access request, and certification.
• Demonstrates extensive understanding of IAG concepts such as directory services, SSO, federation, MFA, provisioning, access certification, roles, and segregation of duties (SOD).
• In-depth knowledge of legacy and modern authentication protocol differences (such as RADIUS, SAML, OpenID, Oauth, and LDAP).
• Security best practices for Windows-based and Linux-based systems including authentication principles and components.
• Experience in implementing and supporting IGA solutions in large and complex environments.
• Solid understanding of security and compliance regulations such as SEC, SOX, PCI DSS, and TSA.
• Strong problem-solving and troubleshooting skills with the ability to analyze complex issues, identify root causes, and implement effective solutions.
• Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and business partners.
• Strong project management skills, with the ability to manage multiple projects simultaneously and deliver on time and within budget.
• Exceptional consultative and interpersonal skills that have resulted in business relationships of impeccable trust, confidence, and results.
• Exhibit leadership skills required to manage resources as well as projects deliverables.
• Knowledge of industry trends and current and emerging risks.
• Self-directed professional with strong work ethics and excellent organizational skills.

Equipment Operated

Computer and IGA-related infrastructure.

Work Environment

Typical office environment, adequately heated and cooled.

Physical Effort

Light physical effort required by handling objects up to 20 pounds occasionally and/or up to 10 pounds frequently.

Supervision Received

General Direction: The incumbent normally receives little instruction on day-to-day work and receives general instructions on new assignments.

Positions Supervised

Does not supervise resources.

Salary Range

$92,880 - $116,100

Please note: this posting has a closing date of 4/12/2024, midnight MT.