Lead Analyst Identity Access Management Operations (SailPoint IIQ)
Organization/department: Global Security Operations
Reports to: Global Manager, Identity Access Operations
Direct reports: Individual contributor.
Effective date: February 2024
WSP is a global consulting firm assisting public and private clients to plan, develop, design, construct, operate and maintain thousands of critical infrastructure projects around the world.
Position Summary
Reporting into the Global Manager Identity Access Operations, as Lead Analyst IAM Operations you will be responsible for overseeing the day-to-day operations of our IGA/IAM system. Your primary focus will be on managing and maintaining user identities, access privileges and ensuring compliance with security protocols and day to day IAM operational activities. Candidate should be qualified to be a tier 3 level support coordinator with the demonstrated ability for being able to maintain the overall function of the operations and maintenance of IAM capabilities and components of IAM system.
The Lead IAM Analyst Operations is expected to conduct the following activities:
Lead and manage a team responsible for the operation of IAM system (Identity IIQ)
Oversee the design, implementation, and provisioning and deprovisioning processes, ensuring efficient and secure user lifecycle management.
Collaborate with cross functional teams to define and enforce control policies, roles, and responsibilities within the IAM system.
Utilize PowerShell scripting for automation and customization of IAM processes and task.
Leverage your strong knowledge of Active directory to manage user accounts, groups, and permissions.
Administer and maintain Microsoft Exchange and office 365 environment, including user mailbox management, email routing and security configurations.
Monitor and analyze performance, identifying areas for improvement and implementing necessary enhancements.
Trouble shoot and resolve complex issues related to user access, permissions, and authentication with the IAM system, PowerShell scripts, active directory, and MS Exchange/Office 365
Develop and maintain system documentation, including standard operating procedure and configuration guide. Function as a subject matter expert, providing guidance and training sessions.
Familiarity with industry standards and best practices in IAM, such as OAuth, SAML, LDAP and MFA.
Requirements:
Required
Bachelor's degree in computer science, Business Information Systems, Business, Mathematics & Statistics, Engineering or relevant discipline, or a comparable combination of education and work experience
Experience in implementing and managing Identity Access management solutions. Including one year in a lead role.
Must be able to perform as a hands-on technical lead performing IAM functions and maintaining systems.
Proficiency in IAM/IGA tool SailPoint Identity IIQ
Experience with Service Now, understanding of SLAs and the importance of meeting SLAs.
Ability to provide 24/7 on call support as SME.
Experience with documentation of IGA policies and procedures
Knowledge of Azure AD/Active Directory, SSO and MFA and PAM
In-depth experience with Python, Scripting, MS Excel, Visio and PowerPoint
Strong understanding of business process design, security protocols, access controls, and risk management, including risk analysis, mitigation, and monitoring
Good people skills, and the ability to communicate effectively verbally and written with end users at all levels of the organization.
Good understanding of software development lifecycle and standard industry practices relating to requirements gathering, design, development, testing, deployment, and post-deployment activities
Initiative-taking, self-directed, and attentive to detail and quality
Strong analytical and critical thinking skills
Ability to effectively prioritize and execute tasks in a high-pressure environment.
Experience working in a team-oriented, collaborative environment.
Languages required: English.
Languages nice-to-have: French, Spanish and/or Portuguese.
**
Preferred
Working direct familiarity with HCM, Oracle Financial, Delinea, Service Now, Power BI etc.
Strong technical and business acumen, understanding of regulatory and industry frameworks (ISO, NIST etc.)
WSP Benefits
WSP provides a comprehensive suite of benefits focused on a providing health and financial stability throughout the employee's career. These benefits include coverage related to medical, dental, vision, disability, and life; retirement savings; paid sick leave; paid vacation (or other personal time); paid parental leave; and paid time off for purposes of bereavement, voting, and/or attendance at naturalization proceedings.
Compensation:
Expected Salary (all locations): $116,000 - $160,900
WSP USA is providing the compensation range that the company in good faith believes it might pay and offer for this position, based on the successful applicant's education, experience, knowledge, skills, abilities in addition to internal equity and specific geographic location. WSP USA reserves the right to ultimately pay more or
Expected Salary (Colorado only): 116,000 - $160,900
WSP USA is providing the compensation range that the company in good faith believes it might pay and/or offer for this position within the state of Colorado, based on the successful applicant's education, experience, knowledge, skills, and abilities in addition to internal equity and specific geographic location. WSP USA reserves the right to ultimately pay more or
About WSP
WSP USA is the U.S. operating company of WSP, one of the world's leading engineering and professional services firms. Dedicated to serving local communities, we are engineers, planners, technical experts, strategic advisors and construction management professionals. WSP USA designs lasting solutions in the buildings, transportation, energy, water and environment markets. With more than 15,000 employees in over 300 offices across the U.S., we partner with our clients to help communities prosper.
www.wsp.com
WSP provides a flexible and agile workplace model while meeting client needs. Employees are also afforded a comprehensive suite of benefits including medical, dental, vision, disability, life, and retirement savings focused on providing health and financial stability throughout the employee's career.
At WSP, we want to give our employees the challenges they seek to grow their careers and knowledge base. Your daily contributions to your team will be essential in meeting client objectives, goals and challenges. Are you ready to get started?
WSP USA (and all of its U.S. companies) is an Equal Opportunity Employer Race/Age/Color/Religion/Sex/Sexual Orientation/Gender Identity/National Origin/Disability or Protected Veteran Status.
The selected candidate must be authorized to work in the United States.
NOTICE TO THIRD PARTY AGENCIES:
WSP does not accept unsolicited resumes from recruiters, employment agencies, or other staffing services. Unsolicited resumes include any resume or hiring document sent to WSP in the absence of a signed Service Agreement where WSP has expressly requested recruitment/staffing services specific to the position at hand. Any unsolicited resumes, including those submitted to hiring managers or other business leaders, will become the property of WSP and WSP will have the right to hire that candidate without reservation - no fee or other compensation will be owed or paid to the recruiter, employment agency, or other staffing service.