Sr IAM HPAM Analyst

Location:

The Sr. IAM HPAM Analystis responsible for ensuring that Identity & Access Management (IAM) practices align with organizational IT and Security standards. This role focuses on maintaining compliance, managing privileged access, and supporting evidence-based audits across a variety of technology platforms. This person will drive integration with existing systems, process enhancements and improvements through automation and data capture to minimize manual intervention and increase oversight to the IAM Governance programs, enhancing the audit posture and process.

Key Responsibilities

IAM & Access Control Oversight:

• Collect, validate, and organize configuration and access control data across a wide variety of systems and technology platform types.
• Draft detailed privileged access criteria for technology platforms.
• Analyze and identify persistent privileged access violations, including non-compliant "Break the Glass" (BTG) configurations.
• Identify, Track, pursue, and validate remediation of IAM-related compliance violations.
• Collect, validate, and file evidence for compliance activities; communicate and collaborate with platform teams as needed.
• Draft narratives and maintain orderly records for audit and compliance purposes.
• Liaise with subject matter experts to ensure alignment on access criteria and standards interpretation.
• Perform other duties as assigned, adapting to evolving organizational needs.

Education & Experience:

• Experience with Identity & Access Management (IAM)
• Experience with asset management and CMDB concepts (ServiceNOW)
• Experience with cloud IAM concepts and best practices as they pertain to human and non-human identities
• Mastery of MicroSoft Excel preferred
• Professional security certifications (e.g., CISA) preferred.
• Understanding of the Payment Card Industry (PCI) standards preferred.
• Understanding for ServiceNOW Integration capabilities for compliance Dashboarding and reporting is a plus

Skills & Competencies

• Strong understanding of server/application access patterns and reference architectures (firewalling, jump hosts, Privileged Session Management, Database Structures, Break the Glass processes, and Just In Time secrets access).
• Ability to apply and assess evidence against standards for compliance, reaching clear pass/fail conclusions.
• Effective communication skills for articulating standards, requirements, and remediation needs to engineers, application owners and management.
• Strong organizational skills for tracking compliance violations, remediation progress, status reporting, and filing compliance documentation.
• Functional knowledge of permissions criteria and the ability to adapt across diverse systems.
• Functional knowledge Cloud account provisioning, access management, and compliance
• Familiarity with common technologies and platforms such as Windows, Linux, SQL, Oracle, Cisco Routing/Switching, Palo Alto Product Suite, CyberArk, GSM, Sailpoint
• Commitment to ethical conduct, professionalism, and acting in the best interests of clients and the organization.

Core Values & Work Environment

• Demonstrate organizational values and adhere to the Key Bank Code of Conduct.
• General office environment: prolonged sitting, frequent computer use, and occasional lifting of up to 10 lbs.
• Ability to communicate effectively in person, by phone/video chat, and with team members and clients.

COMPENSATION AND BENEFITS

Please click here for a list of benefits for which this position is eligible.

Key has implemented an approach to employee workspaces which prioritizes in-office presence, while providing flexible options in circumstances where roles can be performed effectively in a mobile environment.

Qualified individuals with disabilities or disabled veterans who are unable or limited in their ability to apply on this site may request reasonable accommodations by emailing HR_Compliance@keybank.com.

#LI-Remote