Mission Statement
At Cigna, we’re more than a health insurance company. We’re a global health service company. Identity and Access Management is an integral part of IT whose mission is to enforce the principle of Least Privilege through regular Reviews and other Technical Access Controls while preserving Compliance for testing by external auditors.
Essential Duties and Responsibilities
The Identity Governance Management Analyst will be responsible for the design, development, and execution of Identity Access Reviews, Entitlement Management, and RBAC. Access Controls are operated to enforce the principle of Least Privilege and meet stringent regulatory requirements. These controls are tested by external auditors for accuracy and completeness which requires flawless and consistent execution. The Identity Governance Management Analyst will also be responsible for building and presenting control execution evidence to auditors while looking for opportunities to improve control execution for improved completeness, accuracy, and efficiency.
You will work from our Nairobi offices, in close collaboration with team members in the UK and Kuala Lumpur. We expect you to work at least 40% from a Cigna office, the rest of the time you can work from home.
You will be involved in the transition from RSA Lifecycle and Governance to Saviynt Cloud.
Responsibilities include, but are not limited to, the following:
Assess authentication and authorization schemas with application/system (SME) Subject Matter Experts.
Educate system SMEs on the regulatory eco-system and communicate how individual applications and systems interact with each other.
Assist systems owner SMEs in the identification of regulatory scope in their environment. This includes but is not limited to identifying environments, servers, user population, system functions, and permissions.
Document positive and negative attestation of system scope.
Document in-scope accounts and their effective permissions in preparation for Access Reviews.
Analyze the business need of current accounts and effective permission sets.
Support the design, implementation, and use of Entitlement Management capabilities in Access Management tools.
Upload system data into Identity Governance tools. (Identity what data is uploaded. Validate the correctness of the data. Check frequency data gets renewed.)
Execute Access Reviews manually and within Identity Governance tools. Manage user, privileged, and Service Accounts
Support provisioning and termination controls
Document and maintain Standard Operating Procedures
Job Specific Core Competencies
Hands-on experience in Identity and Access Management tools such as Saviynt and RSA Lifecycle and Governance, CyberArk, and Active Directory
Experience with application entitlements and Role Based Access Controls
Knowledge/Experience in SOX/SOC1/SOC2 Compliance Controls and information security best practices
Experience with soliciting and documenting detailed business/audit requirements
Basic experience working in the fields of Identity and Access Management and Privileged Access Management.
Active Directory
SQL – Oracle
Okta
Familiar with managing stories on Jira boards
Excellent written and verbal communication skills with a customer focus. Ability to work with a variety of internal and external stakeholders
Supportive, customer focused
Reporting and documentation
Proactive and positive mindset
Education/Experience Requirements
Education
Bachelor degree in Computer Science, Cyber Security, Information Technology, Information Sciences, or equivalent educational or professional experience and/or qualifications
Work Experience
2 years experience in all aspects of computer operations or an equivalent combination of education and work experience
Preferred: 2-4 years in developing, implementing, and/or operating IAM systems and controls
Apply via :
jobs.thecignagroup.com
Leave a Reply