Job title: IAM SME (Identity and Access Management-Subject
Matter Expert)
Experience:
7-10 Years
Notice
period: Immediate to 15 days
Location: Hyderabad
JD:
Responsibilities
· Designing the architecture of
identity and access management solutions using One Identity Active Roles
Server, considering scalability, availability, and performance requirements.
· Developing detailed design
specifications, including user directory structures, group hierarchies, and
access control models.
· Engage with service owners,
architects, project managers, global infrastructure teams, regional IT teams,
and key IAM product vendors.
· Integrate Active Roles solution with
in-house and third-party applications for birthright provisioning, request
approval and fulfillment, deprovisioning, and custom workflows.
· Leading the implementation and
deployment of One Identity Active Roles Server, ensuring that installations are
performed correctly, and configurations align with design specifications.
· Collaborating with system
administrators and other stakeholders to deploy One Identity Active Roles
Server in accordance with project timelines and objectives.
· Deep understanding of On-Premises
Active Directory and Entra ID (Azure AD) user account, group, Mailbox,
Distribution List and License Management.
· Designing and implementing automated
user provisioning, modification, and deprovisioning processes using One
Identity Active Roles Server.
· Defining workflows and approval
processes for user access requests and modifications, integrating with
ticketing systems and approval workflows where necessary.
· Configuring access control policies
and role-based access controls (RBAC) in One Identity Active Roles Server to
enforce least privilege principles and ensure compliance with regulatory
requirements.
· Implementing access certification
and attestation processes to regularly review and validate user access rights.
· Monitoring system logs and audit trails
for security incidents and policy violations, responding to security alerts and
incidents promptly.
· Integrating One Identity Active
Roles Server with other identity management systems, directory services, and
authentication providers using industry-standard protocols such as LDAP, SAML,
and OAuth.
· Establishing federated identity
relationships with partner organizations to enable seamless access to shared
resources.
· Developing custom scripts,
extensions, and connectors to extend the functionality of One Identity Active
Roles Server and automate routine administrative tasks.
· Integrating One Identity Active
Roles Server with third-party systems and applications to enable end-to-end
identity and access management workflows.
· Creating comprehensive
documentation, including installation guides, configuration manuals, and
troubleshooting resources for One Identity Active Roles Server.
· Monitoring system performance
metrics and optimizing One Identity Active Roles Server configuration settings
to ensure optimal performance and scalability.
· Establishing and maintaining
productive relationships with Quest software, participating in vendor-sponsored
events, and providing feedback on product features and enhancements.
· Collaborating with vendor support to
troubleshoot technical issues, escalate critical problems, and advocate for
timely resolution.
· Ensuring that One Identity Active
Roles Server configurations and processes comply with relevant regulatory
requirements, industry standards, and organizational policies.
· Coordinating and participating in
internal and external audits, providing documentation and evidence to
demonstrate compliance with identity and access management controls.
· Documentation and participating in
Audits.
Qualifications:
· Minimum Qualifications / Skills
· Bachelor's degree in computer
science, Information Technology, or a related field.
· Proven experience as a IAM SME with
One Identity Active Roles Server Active Roles
· Expertise in AD and Entra ID
Management.
· In-depth knowledge of One Identity Active
Roles Server Active Roles
· Proven expertise in Windows
PowerShell scripting.
· Experience on similar tools like
Sailpoint, Ping Identity, Okta is a plus.
· Relevant certifications such as
CISSP, ABAC, RBAC, ITIL, MCSE, CISM, CISA, PAM, MCSA, or OSCP are desirable.
· Data Modeling, Problem-Solving,
Collaboration and Security Awareness