IAM Analyst- Stone Bridge
IAM Analyst- Stone Bridge
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
Identity & Access Management (IAM) / Security Analyst
We are seeking a proactive and technically skilled Identity & Access
Management (IAM) / Security Analyst to lead and manage our enterprise
identity infrastructure with a strong emphasis on cybersecurity and
operational ownership. This role is critical to our organizations IT
and security strategy responsible for the secure management of user
identities access controls and directory services with a
forward-looking focus on Entra ID.
Role Summary
This position will lead the migration from on-premises Active Directory
to Microsoft Entra ID (Azure AD) and maintain long-term ownership of
Entra ID. Additionally the analyst will serve as the primary point of
contact (POC) for cybersecurity matters including direct coordination
with our Security Operations Center (SOC) ensuring our identity
infrastructure and access management practices are secure compliant
and continuously improving.
Key Responsibilities
IAM Operations & Identity Governance
- Own the identity lifecycle process: provisioning de-provisioning
re-certification and periodic access reviews.
- Enforce RBAC least privilege and zero trust identity principles
across all systems.
- Govern Microsoft Entra ID capabilities such as Conditional Access
Access Reviews Entitlement Management and Privileged Identity
Management (PIM).
- Serve as a key liaison to business stakeholders for system access
needs role definitions and access policies.
- Align IAM controls with regulatory compliance frameworks (NIST ISO
27001 SOX HIPAA).
Application Access and Compliance
- Manage user access and permissions across enterprise applications
such as Enertia Cygnet OpenInvoice and others.
- Audit and track access changes via ServiceNow and related tools to
support compliance and operational integrity.
- Define and document access workflows procedures and ownership
models for supported applications.
- Support both internal and external audit activities with timely
data evidence and analysis.
Active Directory & Entra ID Management
- Lead the strategic migration from legacy Active Directory to
Microsoft Entra ID including assessment planning change
management and decommissioning of AD infrastructure.
- Post-migration act as owner of the Entra ID platform ensuring
availability resilience and integration with core enterprise
services and third-party SaaS platforms.
- Implement governance models for Entra ID including Conditional
Access Authentication Methods Service Principals Managed
Identities and role assignments.
- Collaborate with application teams to transition authentication
methods and identity federation to Entra ID-native configurations.
Cybersecurity Oversight
- Act as the primary POC for all cybersecurity workstreams related to
IAM and beyond.
- Maintain direct and continuous coordination with the Security
Operations Center (SOC) to ensure rapid response to identity-based
threats alerts and indicators of compromise.
- Monitor and respond to suspicious behavior related to user access
credential abuse and privilege escalation.
- Implement Zero Trust-aligned identity protections including
phishing-resistant authentication identity protection risk
policies and role segregation.
- Contribute to the broader organizational cybersecurity strategy and
risk management initiatives.
Process Automation & Continuous Improvement
- Continuously improve IAM processes with a focus on automation
self-service and policy-based enforcement.
- Develop or integrate scripts and tools to automate
onboarding/offboarding approvals group membership and audit
trails.
- Lead cybersecurity-focused improvement efforts including:
- Hardening IAM posture through MFA SSPR and passwordless
authentication.
- Eliminating legacy accounts and reducing identity attack surface.
- Enhancing real-time monitoring and alerting of anomalous access
behaviors.
- Maintain detailed documentation of architectures controls and
workflows for internal use and audit purposes.
Required Qualifications
- Strong experience with Active Directory Microsoft Entra ID (Azure
AD) and hybrid identity environments.
- Solid understanding of identity governance authentication protocols
(OAuth SAML OIDC) and RBAC/ABAC models.
- Proficient in Microsoft Entra features: PIM Access Reviews
Conditional Access Identity Protection.
- Familiarity with identity security best practices and compliance
standards such as NIST ISO HIPAA SOX.
- Hands-on experience supporting or working with a Security Operations
Center (SOC) and SIEM tools.
- Proficient in technical documentation process design and workflow
automation.
- Excellent communication and collaboration skills with both technical
and non-technical stakeholders.
Preferred Qualifications
- Certifications such as Microsoft Certified: Identity and Access
Administrator Azure Security Engineer Associate Security or
CISSP.
- Scripting or automation skills (e.g. PowerShell Python) for IAM
process enhancements.
- Experience leading enterprise-wide IT transformations or platform
migrations.
POWERSHELL , AZURE AD , OAUTH , PYTHON , HIPAA , SAML , CHANGE MANAGEMENT
Employment Type
Full Time
