Cybersecurity IAM Analyst
Role details
Job location
Tech stack
Job description
Designs and operates identity and cloud security controls that protect systems and data by enforcing secure, least privilege access across enterprise and cloud environments, enabling business operations while reducing identity based security risk., * Design, implement, and maintain Identity and Access Management (IAM) solutions across the organization.
- Enforce leastprivilege access through rolebased and conditional access controls.
- Integrate identity and access controls with enterprise applications and cloudbased services.
- Support user identity lifecycle processes, including onboarding, access changes, and offboarding.
- Conduct regular access reviews/recertification and remediate orphaned, excessive, or stale accounts.
- Administer privileged access management (PAM) capabilities including credential vaulting, rotation, and session monitoring where applicable.
- Implement just-in-time access and reduce standing privilege for administrative roles when feasible.
- Administer and harden directory services (Active Directory and Entra ID/Azure AD), including tiered admin practices and authentication protocol hardening.
- Partner with IT, Network, and business teams to ensure secure and reliable system access.
- Troubleshoot and resolve authentication and accessrelated issues.
- Participate in security architecture and design reviews for new systems and services.
- Maintain technical documentation, standards, and procedures related to identity security.
- Support audit, risk management, and compliance efforts.
- Continuously evaluate and improve identity security controls to reduce accessrelated risk.
- Investigate IAM-related security incidents (unauthorized access, credential compromise, privilege escalation) and coordinate response actions.
- Integrate identity telemetry (authentication and privilege logs) into SIEM platforms and support alert tuning with the SOC.
- Other duties as required.
Requirements
-
Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field/equivalent practical experience
-
Experience with Knowbe4, CyberARK, Crowdstrike, Cisco Umbrella, and patch management solutions a plus.
-
3+ years of experience in a cybersecurity engineering, IAM, identity, or accessfocused security role.
-
Experience working in enterprise IT environments supporting identity, authentication, and access controls.
-
Exposure to cloud or SaaS environments and their security considerations preferred.
Familiarity with security frameworks or compliance requirements (e.g., NIST, CMMC) is a plus.
- Availability for occasional after-hours support.
- Must pass background and reference checks consistent with company policy.