IAM Compliance Analyst

Main Duties 

• Ensure Identity and Access Management Services follow appropriate standards, policies, procedures and meet any regulatory requirements.
• Assist in the monitoring, control, and governance of all IAM activities to reduce the risk of audit findings before they occur.
• Work with Technology Risk & Assurance to support Internal and External audit requirements relating to IAM.
• Introduce IAM concepts to teams and stakeholders across business.
• Lead the onboarding of applications to IAM Services, working with Application and System owners and SMEs.
• Deliver on the user access review schedule according to new or changing requirements e.g. new applications being onboarded or new Security guidelines implemented.
• Be responsible for the delivery of recertification campaigns and ensure remediation non-compliant user accounts.
• Drive and maintain Role Based Access (RBAC) through Role Mining (where applicable) to allow users to access the information necessary to effectively perform their job duties whilst maintaining the principle of least privilege.
• Embed processes to manage the identification of access entitlements within applications and systems that would form toxic combinations; management of policies to enforce segregation of duties.
• Collaborate with IAM Engineers to promptly address incidents and resolve application errors.
• Contribute to the requirements gathering for system development.
• Produce KRI/KPI reports and other IAM Analytics as required.

This is not a full definition of the role but covers the main aspects and drivers for success.

Experience required 

Essential 

• ITIL certified.
• Experience in Confluence, JIRA and ITSM tools such as Service Now.
• SQL – ability to write queries
• Good understanding of the Security frameworks such as NIST, CIS.

Desirable 

• Understanding and experience of IAM and PAM best practices, processes and controls including recertification, toxic combinations, Segregation of Duties and role-based access control.
• A working knowledge of a variety of identity management systems to operate effective controls to include at least two of CyberArk, Saviynt, Active Directory, Azure AD, Google Cloud.
• Competent in using reporting tools, creating, and manipulating large volumes of data for wider consumption.
• Strong analysis and administration skills with excellent attention to detail.
• Excellent organisational skills with the ability to plan and prioritise work without supervision, managing workload effectively.
• Team player with ability to work autonomously, flexibly and with enthusiasm.
• Effective communication skills, both written and verbal, for seamless collaboration with various teams and stakeholders.

Admiral: Where You Can

We take pride in being a diverse and inclusive business. It's a place where you can Be You, and show up as you are. We’re committed to fostering a people-first culture where everyone is accepted, supported, and empowered to be brilliant. You can, Grow And Progress at a pace and direction that suits you, Make A Difference for our customers and each other, and Share in Our Future with all colleagues eligible for up to £3,600 of free shares each year after one year of service.

Everyone receives 33 days holiday (including bank holidays) when they join us, increasing the longer you stay with us, up to a maximum of 38 days (including bank holidays). You also have the option to buy or sell up to an additional five days of annual leave.

We’re proud of our people-first culture. In fact, we've been recognised as a Great Place to Work for Women, a Great Place to Work for Wellbeing, and an overall Great Place to Work for over 25 years! We’re fully committed to making sure your progression is not slowed or halted by barriers related to race, gender, age, sexuality or any of the protected characteristics.