Job Summary

The Sr. Administrator, Security is responsible for leading the development, implementation, and management of security policies, procedures, and controls to protect ARASCO’s information systems. This role includes managing Segregation of Duties (SoD), conducting user access reviews, and overseeing Identity and Access Management (IAM) and Privileged Access Management (PAM) tool operations. The Sr. Administrator, Security will work closely with cross-functional teams to ensure the security and integrity of the organization's data and systems.

Key Responsibilities

Segregation of Duties (SoD):

• Develop, implement, and manage SoD policies and controls.
• Monitor and review SoD conflicts and take corrective actions to mitigate risks.
• Collaborate with business units to ensure compliance with SoD policies.
• Creating access as per role-based access control (RBAC)

User Access Review:

• Conduct regular user access reviews to ensure appropriate access levels.
• Identify and remediate access discrepancies and violations.
• Maintain detailed records of access reviews and audit logs.

Policy and Procedure Management:

• Develop and maintain cybersecurity policies, standards, and procedures.
• Ensure policies are aligned with industry best practices and regulatory requirements.
• Provide guidance and training to staff on cybersecurity policies and procedures.
• Cybersecurity risk management.

IAM/PAM Tool Operations:

• Oversee the operation and maintenance of IAM and PAM tools.
• Granting or denying access to company resources based on roles.
• Documenting IAM/PAM related process and policies.
• Ensure the tools are configured and used effectively to protect critical systems and data.
• Monitor IAM/PAM systems for anomalies and respond to security incidents.

Implementation and Pre-Requisites Gathering of IAM/PAM Tools:

• Lead the implementation of new IAM/PAM tools and solutions.
• Gather and document requirements and pre-requisites for IAM/PAM tools.
• Collaborate with vendors and internal teams to ensure successful deployment and integration of IAM/PAM tools.

Qualifications

• Bachelor’s degree in Computer Science, Information Technology, or a related field. Master’s degree preferred.
• Minimum of 6-7 years of experience in cybersecurity, with a focus on IAM/PAM and Identity governance.
• Strong understanding of cybersecurity principles, frameworks, and best practices.
• Experience with IAM/PAM tools such as SailPoint, Okta, BeyondTrust, or similar.
• Excellent knowledge of SoD, user access review processes and mover, joiner and leaver process creation.
• Proven experience in developing and managing cybersecurity policies and procedures.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Relevant certifications (e.g., CISSP, CISM, CISA) are a plus.

Competencies

• Leadership: Ability to lead and mentor junior cybersecurity staff.
• Attention to Detail: Keen eye for detail to identify security risks and discrepancies.
• Technical Proficiency: Strong technical skills in IAM/PAM tools and cybersecurity technologies.
• Communication: Effective communication skills to convey complex security concepts to non-technical stakeholders.
• Collaboration: Ability to work effectively with cross-functional teams and external vendors.