Join our dynamic team to navigate complex risk landscapes and fortify technology governance, making a pivotal impact in our firm's robust risk strategy.

 

As a Tech Risk & Controls Senior Associate in Corporate Technology within Role Based Control and Identity And Access Management team, you will be responsible for managing and maintaining the organization's access control policies, ensuring that users have appropriate access to systems and data based on their roles. This role involves collaborating with various departments to define and implement access controls, monitoring access activities, and ensuring compliance with security policies and regulations.

Job responsibilities

Develop, implement, and maintain role-based access control policies and procedures.Collaborate with business teams and HR to define user roles and access requirements.Conduct regular access reviews and audits to ensure compliance with internal policies and external regulations.Monitor and analyze access control activities to detect and respond to unauthorized access or anomalies.Assist in the design and implementation of access control systems and tools.Provide support and guidance to users and departments regarding access control issues and best practices.Document and maintain records of access control configurations, changes, and incidents.Participate in security assessments and risk management activities related to access control.Stay current with industry trends and best practices in access control and information security.

Required qualifications, capabilities, and skills

Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field.5+ years of experience in access control, information security, or a related role.Strong understanding of role-based access control principles and practices.Ability to identify patterns and correlations in HR/access data.Attention to detail and accuracy in managing access control configurations.Experience with access control systems and tools (e.g., IAM, PAM, LDAP, Active Directory).Excellent analytical and problem-solving skills.Strong communication and interpersonal skills.Ability to work independently and as part of a team.

Preferred qualifications, capabilities, and skills

Proficiency in access control and identity management tools.Strong understanding of information security principles and practices.Ability to analyze and interpret access control data and logs.Strong organizational and documentation skills.Ability to handle sensitive and confidential information with discretion.Relevant certifications (e.g., CISSP, CISM, CISA).