Identity Governance Analyst, IAM
Location
Brazil
Posted
11 days ago
Salary
0
Seniority
Senior
Job Description
Identity Governance Analyst, IAM
MTP Brasil
• Execute and support quarterly access recertification campaigns for global applications, including tracking metrics, following up with stakeholders, and monitoring remediation actions. • Analyze identity and access data to identify anomalies, inactive accounts, ownership gaps, and other risk indicators. • Perform onboarding of new applications and groups to the corporate Identity Governance platform, working with Application Owners and certification owners. • Develop and maintain process documentation and evidence, and support audits and control testing. • Partner with CISO teams, Application Owners, and IT Operations to resolve identity governance-related issues.
Job Requirements
- Experience in Identity and Access Management (IAM).
- Identity Governance (IGA) experience.
- Background in Information Security or related IT Operations.
- Experience supporting access review and certification campaigns.
- Experience with enterprise Identity Governance platforms, preferably SailPoint IIQ and SailPoint ISC.
- Experience with Active Directory and Microsoft Entra ID.
- Strong analytical skills for working with large volumes of data using Excel.
- Organized and able to manage multiple campaigns and priorities simultaneously.
- Contribute to automation and continuous improvement initiatives using PowerShell, Power Automate, and AI tools.
- Preferred: experience with Splunk, SharePoint, and Power Automate.
Benefits
- Health insurance
- Dental plan
- Meal allowance
- Transportation allowance
- Cultural allowance
- Education allowance
- Life insurance
- Mental health and wellness program
- Childcare assistance
- Partner discounts
Related Guides
Related Categories
Related Job Pages
More Risk Jobs
• Work with casino & payment risk alerts in real time; • Detect fraud and identify suspicious player behavior; • Analyze transactions, payment methods, and risk signals; • Resolve risk cases based on internal procedures; • Contribute to improving risk processes and operations; • Work in rotating shifts: 06:00–14:00 or 14:00–22:00 (CET), on a 5/2 schedule; • Collaborate with Risk, Payments, and other teams.
• Work with casino & payment risk alerts in real time; • Detect fraud and identify suspicious player behavior; • Analyze transactions, payment methods, and risk signals; • Resolve risk cases based on internal procedures; • Contribute to improving risk processes and operations; • Work in rotating shifts: 06:00–14:00 or 14:00–22:00 (CET), on a 5/2 schedule; • Collaborate with Risk, Payments, and other teams.
• Develop and execute Mariner's enterprise-wide data strategy using a future-back perspective aligned with the firm's long-term business and technology objectives. • Define the enterprise data operating model, including governance, ownership, stewardship, integration, access, protection, and lifecycle management. • Evaluate the current enterprise data landscape, identifying opportunities to improve data quality, governance, interoperability, scalability, and business value. • Translate long-term strategy into a practical, phased roadmap with measurable milestones and business outcomes. • Consult on the evaluation and onboarding of new platforms and vendors, establishing enterprise standards for data integration, ownership, governance, and interoperability before implementation. • Establish enterprise standards for metadata, lineage, stewardship, classification, ownership, quality, access controls, and accountability. • Define enterprise data domains, semantic standards, reusable data products, and common business definitions that improve consistency across the organization. • Develop governance principles supporting both human and AI-enabled interactions with enterprise data. • Ensure enterprise data is trusted, discoverable, auditable, and appropriately governed for operational, analytical, regulatory, and AI-enabled use cases. • Establish measurable standards for data quality, completeness, consistency, timeliness, and fitness for purpose. • Define enterprise standards for data integration, interoperability, orchestration, and information architecture across platforms and business functions. • Guide buy-versus-build decisions for enterprise data platforms, governance capabilities, integration technologies, metadata management, and orchestration tools. • Develop reference architectures that support AI readiness, operational scalability, enterprise analytics, and future-state intelligence capabilities. • Ensure enterprise systems, workflows, and integrations support the consistent, secure, and governed movement of information across the organization. • Define the enterprise data strategy required to support responsible AI adoption, automation, digital workers, and agentic workflows. • Establish governance models for trusted AI-enabled data access, permissions, semantic understanding, lineage, explainability, and auditability. • Partner with Innovation, Technology, Legal, Compliance, Information Security, and business leadership to ensure AI initiatives are built upon trusted, governed, and secure data foundations. • Monitor emerging technologies and industry trends to ensure Mariner's enterprise data strategy remains future-ready. • Partner closely with Legal, Compliance, Risk, Audit, and Information Security to ensure enterprise data practices meet applicable regulatory, privacy, cybersecurity, supervision, and records management requirements. • Incorporate regulatory and governance considerations into enterprise data strategy from the outset rather than as downstream review activities. • Establish policies governing data retention, privacy, access management, PII protection, auditability, and appropriate data usage across internal and external stakeholders. • Build strong partnerships across Technology, Operations, Innovation, Business Intelligence, Legal, Compliance, Risk, Information Security, and business leadership. • Recommend organizational structures, governance forums, stewardship models, operating rhythms, and decision-rights frameworks that strengthen enterprise accountability. • Lead through influence, credibility, and collaboration in a highly matrixed environment. • Mentor enterprise architects, technical leaders, and governance stakeholders while fostering a culture that treats data as a strategic enterprise asset.
Manager, Third Party Risk Management
CrowdStrikeCrowdStrike has redefined security with the world’s most advanced cloud-native platform that protects and enables the people, processes and technologies that drive modern enterprise. Tested and proven, the world's largest organizations trust CrowdStrike to stop breaches with unparalleled protection against the most sophisticated cyberattacks. The CrowdStrike culture has been built upon our Core Values since the day we began. We are Fanatical About the Customer, Relentlessly Focused on Innovation and believe that our Limitless Passion drives Unlimited Potential for every CrowdStriker. As a purpose-built remote-first company, we believe cultivating a connected culture for every employee, no matter where they are in the world, is a key ingredient in building a high-performing, diverse team. We don’t have a mission statement. We’re on a mission—to stop breaches. Ready to join a mission that matters?
• Lead, mentor, and develop a team of 4 TPRM professionals, fostering a culture of accountability, continuous learning, and operational excellence • Set clear performance expectations, conduct regular 1:1s, and support career development for each team member • Serve as an escalation point for complex vendor risk issues and assessments. • Oversee end-to-end third-party risk assessments including inherent risk tiering, due diligence, control evaluations, and residual risk determinations • Manage the full vendor risk lifecycle including onboarding, periodic reassessment, and offboarding, ensuring consistent application of TPRM standards. • Partner with Procurement, Legal, IT, Security, and Business stakeholders to embed risk considerations into the vendor engagement process. • Evaluate vendor security posture, compliance certifications (SOC 2, ISO 27001, etc.), and contractual obligations. • Creating and enhancing a cybersecurity vendor risk management program, including the identification, evaluation and mitigation of risks across the organization. • Conducting third party controls evaluations and audits. • Performing other duties within the scope of governance, risk and compliance • Working across organizations to help align organizations with shared third party compliance goals and objectives. • Coordinating with IT and business units to implement effective cybersecurity measures and integrate security practices into business processes • Collaborate with cross-functional teams, including procurement, legal, and IT, to ensure comprehensive vendor risk management. • Lead the implementation of process improvements and efficiencies identified through a recent kaizen event, driving measurable outcomes. • Develop and expand automation capabilities within ServiceNow TPRM to reduce manual effort and increase assessment throughput. • Identify and implement AI-driven capabilities to enhance risk scoring, vendor monitoring, and workflow efficiency. • Define and track KPIs and metrics to demonstrate program maturity and effectiveness to senior leadership. • Serve as a functional owner and subject matter expert for ServiceNow as the TPRM platform of record. • Partner with GRC tooling and IT teams to configure, optimize, and expand ServiceNow workflows supporting TPRM operations. • Evaluate emerging technologies and vendor risk intelligence platforms to enhance the program. • Develop and maintain TPRM policies, standards, and procedures in alignment with industry frameworks (NIST, ISO 27001, SOC 2, FAIR, etc.). • Prepare and present risk reporting and program status updates to senior leadership and key stakeholders. • Support internal and external audit activities related to third-party risk.




