IAM and Security Systems Analyst

IAM and Security Systems Analyst (P844)

About Us:

As a Senior IAM and Security Systems Analyst at Kenility, you’ll join a tight-knit family of creative developers, engineers, and designers who strive to develop and deliver the highest quality products into the market.

 

Technical Requirements:

  • Bachelor’s degree in Computer Science, Software Engineering, or a related field.
  • 5 or more years of experience in security engineering or analysis roles.
  • Solid expertise managing identity and access management platforms such as Active Directory, Azure AD, and Okta.
  • Skilled in configuring and managing SIEM systems, as well as responding to security incidents using Microsoft security solutions.
  • Proficient in tools for automated security testing, including static and dynamic application security testing (SAST, DAST).
  • Knowledge of cloud and application security best practices, particularly in environments like Microsoft 365 and Azure.
  • Experience automating tasks and workflows using scripting languages such as PowerShell, Python, or Terraform.
  • Deep understanding of network protocols, system hardening techniques, and endpoint protection strategies.
  • Familiar with red teaming strategies, penetration testing methodologies, and threat modeling techniques.
  • Exposure to compliance frameworks like SOC 2, HIPAA, or ISO 27001.
  • Experience supporting SOC design or operations.
  • Familiar with security reporting and risk evaluation practices.
  • Minimum Upper Intermediate English (B2) or Proficient (C1).

 

Tasks and Responsibilities:

  • Oversee and maintain identity platforms, including Active Directory, Azure AD, and Okta.
  • Apply RBAC models, enforce least privilege access, and automate user provisioning and deprovisioning.
  • Conduct regular access reviews and manage access certification processes.
  • Implement IAM controls across applications and cloud infrastructures.
  • Administer and improve security tools such as Mimecast, OKTA, Microsoft Defender, and Intune.
  • Operate and fine-tune SIEM tools, managing log ingestion and event correlation.
  • Automate application security assessments through the use of scanning tools like SAST and DAST.
  • Execute application security testing and contribute to threat modeling and risk analysis.
  • Lead initiatives in cloud monitoring, data protection, and compliance oversight.
  • Analyze security alerts and coordinate incident response procedures.
  • Update detection and response strategies using threat intelligence insights.
  • Perform root cause analysis and handle incident evidence appropriately.
  • Assist with red team/blue team activities and penetration testing engagements.
  • Evaluate system and application architectures from a security standpoint.
  • Integrate security protocols across the software development lifecycle and DevSecOps processes.
  • Develop and refine internal security practices and documentation.
  • Contribute to security performance metrics and reports to gauge control efficiency.
  • Participate in the evolution and operational advancement of the SOC.
  • Collaborate with teams across IT Operations, Infrastructure, HR, and Compliance to support security efforts.
  • Aid in internal and external audit preparations, including documentation and evidence collection.
  • Stay up to date with compliance standards like SOC 2, NIST, and ISO 27001.
  • Promote cybersecurity awareness through training sessions, phishing simulations, and risk evaluations.

 

Soft Skills:

  • Responsibility
  • Proactivity
  • Flexibility
  • Great communication skills