22 Jan
S.i. Systèmes
Toronto
Intermediate Security Analyst with PAM (Centrify/CyberArk) and on Prem Active Directory Experience to work with one of our major banking clients- 36630
Location Address: Hybrid (once per week on Wednesdays; with the potential need for more days in the future) - Scarborough
Contract Duration: 12 months (Chance of Extension)
Scheduled Hours: Monday to Friday, 8:30am-5pm, 37.5 Hours Per Week
Reason for Request: For PAM 10 clean up
Story Behind the Need:
- The Identity Lifecycle Management team within the Access Management Operations is responsible for the execution of established security controls pertaining to identity and access. This includes the centralized provisioning of user identities,
the user accounts linked to those identities, management of user access, privileged access, as well as the selection and integration of identity management tools. The Senior Analyst, Identity Lifecycle Management is responsible for supporting the achievement of the Bank’s information security objectives of integrity, confidentiality/privacy, availability, and continuity by:
- Ensuring logical access control is effectively implemented across the Enterprise.
- Addressing logical access and risks commensurate with the Bank’s risk appetite.
- Providing support for logical access working with MS Active Directory (on prem), LDAP, provisioning access on user’s local workstation, access on vFiler shares, privileged access management.
- Supporting the business to understand their responsibilities with respect to logical access controls.
Typical Day in Role:
- Continuously, provides value and consistency added to the user and customer experience by improvising workflows associated with bank’s onboarding and Logical Access platforms
- Perform required tasks for Logical Access Control; tasks relevant to Identity & Access Management including access request, access provision/deprovision, communication, and documentation of operational processes and procedures, etc.
- Process Add/remove/change activities, and provide support on access issues for: ID, Windows ID (Active Directory).
- AD Security Groups, Distribution Groups, Group Mailboxes access management Service Accounts.
- Utilize troubleshooting skills to understand moderately complex systems/issues related to user Identity and access, and potential root causes.
- Liaise with 2nd and 3rd level support when required.
- Provide reports and data, as requested, for audits and walkthroughs of internal controls IAMOPS ILM owned processes.
Candidate Requirements/Must-Have skills:
1. You have at least 8+ years technical experience in information technology or information security.
2.
You have at least 4 years experience in the administration of Privileged Access Management tools like Centrify, CyberArk is required.
3. Hands-on experience in access management on Windows and Technical hands-on experience in managing AD.
4. Advance understanding of Active Directory
5. 3-5+ years of experience with PowerShell scripting for AD administration tasks, ServiceNow, SQL/Oracle
6. 5-7+ years of experience managing Users and Groups in on-prem Microsoft Active Directory and LDAP
7. Experience analyzing data using excel is required.
Nice-To-Have Skills:
1. Draft guideline of management of highly privileged domain accounts
2. Provide support and guideline on clean-up efforts for all production in-scope domains)
3. Provide advisory services related to implementation and testing of Group Policy (GPOs)
4. In addition,
this role will also be responsible for the following remediation tasks assigned to GIAM ILM team
5. AD privileged Account Cleanup.
6. 3-5+ years of experience with SailPoint IIQ,
7. Must possess proven experience working with a large enterprise distributed computing environment
Best vs. Average Candidate:
Advanced experience on PAM technology including PAM principles and logics.
AD advanced skills for users and group management.
Strong PowerShell Scripting experience.
Education:
• Post-secondary degree in a technical field such as computer science, computer engineering or equivalent work experience
Candidate Review & Selection
• One round MS Teams video interview - Panel (45 minutes)
o Assess both technical and soft skills
• Possibility of second round interview
Apply
Impress this employer describing Your skills and abilities, fill out the form below and leave Your personal touch in the presentation letter.