The IT Security Analyst is responsible for administering, operating and enforcing identity and access management (IAM) controls across IT infrastructure, applications and cloud environments.
This role ensures that user access is provisioned, modified/updated and deprovisioned in a secure, compliance and timely manner aligning with BNM RMiT, internal policies and best practices.
The position requires strong technical skills in IAM systems, directory services, privileged access management, multi-factor authentication (MFA), and access review process. This role will also required to perform basic security infrastructure support and administration including vulnerability management and security incident management.
MAIN RESPONSIBILITIES
- Identity and Access Management (IAM)
- Ensure and enforce processes for the creation, modification, access privileges and deletion of user id and system IDs.
- Timely review access rights regularly to enforce least privilege for both users and system administrators, and segregation of duty within IT.
- Maintain least privilege and segregation of duties principles for access requests.
- Timely review Privileged access activities.
- Timely perform User access management (UAM) review for all applications and systems to recertify access with system owners according to SOP.
- Privileged Access Management (PAM)
- Administer and monitor privileged accounts using PAM tools.
- Conduct periodic reviews of privileged account activities and enforce strong authentication controls.
- Authentication and Authorisation Controls o Support deployment and operation of MFA, SSO and ID management solutions.
- Conduct periodic reviews of user access for directory services – e.g. Active Directory (AD), Azure AD.
- Security Monitoring and Incident Management Working with external SOC providers in managing SIEM logs, cyber alerts, endpoint protections, email security and threat intelligence feeds. Security Technology Administration
- Work with external consultants or IT security service providers as appropriate for security audit and solution.
- Provide basic support on security tools such as firewalls, EDR, Proxy, email security, DLP, VPN, NAC, etc.
- Perform health checks, updates, and configuration reviews of security systems.
- Security Compliance and Audit Support
- Ensure full compliance of identity and access management with RMiT, audit and internal policies.
- Support security-related audits and regulatory activities.
- Assist in drafting and updating security SOPs and guidelines.
- Manage the development and implementation of IT security SOP, standards, guidelines, and procedures to ensure on-going maintenance of security, particularly in identity lifecycle management.
- Security Awareness
- Supporting initiatives in promoting security best practices.
- To perform other duties assigned by management.
Job Requirement
- At least 5 years’ experience in Security IAM with some knowledge in supporting Security operations.
- Working experience in Information Security or IAM governance is preferred
Additional Notes
- Qualification Minimum a bachelor’s degree in IT, Computer Science, Cybersecurity or equivalent.
Certification
- Must possess relevant certification in Security domain, with preference on CompTIA Security+, CISM, CISSP, or in Identity Management.
- ITIL foundation will be added advantage.
- Cloud security – such as key management, IAM, access control
Job Type: Contract
Contract length: 12 months
Pay: RM10,000.00 - RM12,000.00 per month
Benefits:
- Health insurance
- Opportunities for promotion
- Professional development
Work Location: In person
