An Identity and Access Management (IAM) Senior Risk Analyst is responsible for identifying, assessing, and mitigating risks related to Identity and Access Management across the organisation. The Senior Analyst acts as a subject matter expert, collaborating with IT, security, compliance, and business stakeholders to drive continuous improvement in IAM risk posture.
Your responsibilities & duties
1. Lead the Identification, assessment, and documentation of IAM-related risks to the organisation’s information assets.
2. Conduct regular risk assessments and gap analyses for IAM processes, tools, and controls, including remediation plans.
3. Drive improvements in IAM risk management processes through standardisation, optimisation, and automation.
4. Prepare detailed reports and presentations on IAM risk status, findings, and recommendations for management and stakeholders.
5. Help maintain IAM governance frameworks and policies aligned with organisational objectives, legal requirements, and industry best practices.
6. Act as a liaison between IT, Information Security, Compliance, Audit, and business units to advocate for robust IAM governance practices.
7. Build and maintain strong relationships with internal and external stakeholders, including risk manager and auditors. Ensure clear communication and collaboration to support Euroclear's risk objectives.
Must have:
8. 5+ years’ experience in an identity governance, risk management roles, with at least 2 years in a senior or lead analyst capacity.
9. Thorough understanding of identity lifecycle processes, role-based access control (RBAC), attribute-based access control (ABAC), and directory services.
10. Strong understanding of risk management methodologies, frameworks, and regulatory requirements.
11. Experience with cloud-based IAM solutions and hybrid environments
12. Experience with IDAM tools and platforms (., SailPoint, CyberArk).
13. Proven ability to communicate complex technical and risk concepts clearly to technical and non-technical audiences.
14. Strong analytical, problem-solving, and organisational skills.
15. Excellent written and verbal communication skills; able to articulate complex concepts to technical and non-technical stakeholders.
Will be considered an asset:
16. Professional certifications in IAM, governance, or cybersecurity (such as CISM, CISSP, CRISC, or similar).
#LI-NS1