Provide user account life cycle management, including creating, provisioning, securing, and inactivation of access. • Lead and participate in projects and production support operations focused on implementing Identity and Access Management (IAM) integrations and Role Based Access Control (RBAC) strategies and integrations.
Lead and collaborate in the design, implementation, and support of the IAM technologies.
Lead and participate in projects to ensure standard processes and procedures are implemented when rolling out new provisioning and role management points.
Plan, build, test, manage, and update security for the protection of and access to isw systems.
Lead the planning, development, implementation, and support of RBAC.
Ensure all evidence of authorization is documented and archived according to best practice.
Manage directory account permissions via RBAC.
Act as the subject matter expert for Identity Governance and RBAC.
Lead application upgrades, and evaluation of new technology, settings, and functionality related to IAM.
Troubleshoot security and workflow issues independently or in collaboration with other Information Systems teams and/or stakeholders, while adhering to isw standards.
Enforce organisational policies and procedures to ensure only authorised personnel have access to information in compliance with the Minimum Necessary Rules.
Participate in ongoing auditing and risk assessments and implementation of audit recommendations.
Identify and ensure dormant accounts/records are disabled using automation as much as possible; eliminate access for those who no longer need applicable information.
Develop system access and security implementation plans derived from operational customer needs and requests.
Develop, validate, and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end-user support, and other teams as needed.
Write and generate reports to perform in-depth analysis and data collection for issues associated with IAM using PowerShell or other reporting methods.
Provide Microsoft O365 Shared Resource Management and Support (Distribution Lists, Shared Calendars, Shared Mailboxes, Mail Contacts, and Resource Calendars).
Support the enrollment of Multifactor Authentication (MFA), Single Sign-on (SSO), and Mobile Device Management (MDM).
Lead efficiency improvements by recommending process changes as well as developing solutions to automate and orchestrate repeatable tasks for IAM.
Conduct account quality checks.