Description
For one of our client, a bank located in Brussels, we are currently looking for a:
IAM Business Analyst
1. Context of the mission
The IAM program aims to manage on a global level how the company deals with the management of user access permissions.
Within this program there are multiple work streams that:
- Ensure that the existing processes and tools are well maintained
- A new architecture adapted to current and future needs is developed and implemented
- Ensure that these architectures are successfully deployed in the organization
2. Objective of the job
Guarantee the respect of Business information security and ensure correct implementation of the security model.
The mission of the IAM Business Security Consultant is to:
- Define, design and develop methods and procedures, compliant with the Information Security Policies, that allow Business Lines and Support Functions to implement and operate the IAM security model efficiently;
- Advice, consult and train on Business Modelling Management by giving support in defining and implementing the IAM models, frameworks and technology. These activities will occur in strong collaboration with security stakeholders
-Participate in the Business Modeling initiative within the Business Line and provide support to the BSOs in the following areas:
- Ensure participation and commitment of Business
- Provide the expertise on Business Modeling and provide guidance
- Drive the approach for clean-up of user access rights (apply NTK/NTD principles)
- Actively cooperate with the security actors to ensure end-to-end security management.
Perform the Business Modelling activities:
- Participate in the development and maintenance of the Role Model suitable for implementation in the IAM environment
- Perform and provide expertise for the development and maintenance of the Role Model from top-down perspective, including the definition of the Roles and the further optimization of the Role Model (eg inheritance, use of Rules etc.)
- Define and maintain the Business Line specific Segregation of Duties requirements and translate this into SoD Domain sets
- Develop expertise in and apply supporting tooling eg BM tool, Role Mining tool etc
4. Language requirement
Sound knowledge of English, French and/or Dutch. (second language has to be English)
6. Required knowledge and experience
- Quick self-starter, pro-active attitude, resilient;
- Good Communication and Influencing skills;
- Good analytical and synthesis skills;
- Autonomy, commitment and perseverance in personal organization;
- Ability to work in a dynamic and multi-cultural environment; Strictness in project follow-up;
- Hands-on, practical oriented person
- Professional experience in Financial Services
- 4 years experience in an IT environment
- 1-2 years experience in security technology and processes (Identity & Access Management aspects, Segregation of Duties, Role Based Access Control)
- Knowledge of the Information Security Standards & Frameworks
- Good knowledge of MS Excel and MS Word
- Familiar with Process modelling and process analysis
- Capable of quickly understanding, analysing and documenting detailed processes in Information Security
- Capable of performing functional analysis on security aspects across different business lines
Harvey Nash is an international group, visit our Belgian website.