Manager-Information Security

Job Title: Manager-Information Security TechM221039

Buyer Company: Tech Mahindra

Skills: IAM Compact Identity

Job Type : Full Time/Lateral

Location: Kuala Lumpur MY

Senior Analyst IAM Assurance & Compliance Identity & Access Management

Role Summary

The Senior Analyst IAM Assurance & Compliance is responsible for leading and enhancing Identity & Access Management (IAM) governance ensuring strong control execution and driving compliance across the enterprise. This role oversees critical IAM control processes partners with auditors and application teams and acts as a subjectâmatter expert on SOX ITGC access governance and Identity Governance & Administration (IGA) platforms such as SailPoint or equivalent solutions.

The role requires endâtoâend ownership of access reviews control design remediation and continuous improvement across IAM processes. The position also leverages automation and dataâdriven techniques to improve the efficiency consistency and auditability of IAM control execution and monitoring.

Key Responsibilities â GRC

• Own endâtoâend SOX ITGC Access Management controls including User Access Reviews (UAR) Privileged Access Management (PAM) JoinerâMoverâLeaver (JML) processes and periodic control attestations.
  
• Lead internal and external audit cycles including walkthroughs evidence coordination issue response and remediation tracking.
  
• Perform control design assessments and operating effectiveness evaluations.
  
• Govern remediation activities and provide management oversight through structured reporting and dashboards.
  

Operational Excellence & Control Enhancement

• Supervise execution of access governance cycles including UARs PAM reviews and periodic access validations.
  
• Design and implement automation using Python Power Automate or RPA to enhance IAM control execution evidence generation and exception handling
  
• Automate recurring control activities such as access population extraction reconciliation aging analysis and reviewer followâups
  
• Build reusable IAM assurance frameworks scripts and templates to standardize control execution.
  
• Perform deep analysis of access anomalies and control deficiencies using automated data analysis techniques.
  

Automation Data Analytics & Continuous Improvement

• Apply automation and analytics techniques to support IAM assurance use cases including SOX User Access Reviews and privileged access validations.
  
• Develop automated dashboards control metrics and exception reports to support management oversight and audit readiness
  
• Collaborate with IAM engineering ITSM and automation teams to embed controls into workflows.
  
• Identify opportunities to transition manual assurance activities into sustainable automated solutions.
  

Stakeholder Engagement

• Serve as primary point of contact for Business Units BISOs IAM engineering teams and ITSM stakeholders.
  
• Provide advisory support on access design RBAC models and segregation of duties considerations.
  
• Influence compliance with Group IAM standards and policies.
  
• Mentor junior analysts and contribute to capability building.
  

Required Skills

• 6 to 9 years of experience in IAM IT Risk IT Controls or related disciplines in a regulated environment.
  
• Strong knowledge of SOX ITGC Access Management controls.
  
• Proficiency with SailPoint or equivalent IGA platforms will be a plus.
  
• Understanding of Active Directory Azure AD Privileged Access Management tools and RBAC.
  
• Handsâon experience with Python Power Automate or RPA to support IAM assurance activities.
  
• Ability to translate control requirements into automated or semiâautomated solutions while maintaining audit defensibility.
  

Education & Certs

Bachelorâs degree required.

Preferred certifications include CISA CISM CRISC SailPoint certifications or equivalent.