Mainframe IAM

• Administer RACF user IDs, groups, and profiles in alignment with IAM and security policies
• Perform user provisioning, deprovisioning, and access changes (joiner, mover, leaver)
• Support access request workflows, approvals, password resets, and remediation activities
• Maintain and update RACF dataset, general resource, and system profiles
• Enforce least privilege and segregation of duties (SoD) controls
• Review and analyze RACF violations, SMF records, audit logs, and security reports
• Assist with periodic access reviews, entitlement validation, and recertifications
• Document IAM processes, RACF procedures, and security standards
• Follow change management procedures, ensuring approvals and audit trails
• Troubleshoot access issues and escalate complex cases to senior mainframe staff

• 2+ years of Information Security Analysis experience, supporting low-to-moderately complex initiatives.
• 2-4 years of Mainframe experience, preferably in security or access provisioning roles.
• 2-4 years of IAM experience, focused on operational execution rather than governance-only work.
• Ability to support BAU access provisioning, processing approximately 12-15 tickets per day.
• Technical aptitude, including the ability to use command-line interfaces and troubleshoot access issues.
• Experience following change management and incident management processes.Plusses:
• Experience working with RACF, Top Secret, or ACF2 (RACF preferred, but not required).
• Experience supporting IAM operations via ticketing systems (e.g., ART).
• Exposure to audit support, access reviews, and entitlement recertifications.
• Background in financial services or regulated environments.Job Summary: The Information Security Analyst 2 will support Identity and Access Management Operations for mainframe environments. This role focuses on executing low-to-moderately complex security analysis tasks related to user access provisioning, maintenance, and control enforcement. The analyst will work primarily in a business-as-usual (BAU) capacity, supporting mainframe users who do not leverage Active Directory. The role requires technical aptitude, attention to detail, and the ability to follow enterprise policies and compliance requirements in a production environment. Day-to-Day Responsibilities

Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Apex uses a virtual recruiter as part of the application process. Click for more details.