Senior Business Analyst - Identity & Access Management

Requirements

• Experience: Proven background in Identity & Access Management (IAM) or IT Governance, ideally within a highly regulated environment such as fintech.
• Technical Knowledge: A strong understanding of Role-Based Access Control (RBAC) and Separation of Duties (SoD) concepts.
• Data Proficiency: Ability to manage and translate complex data mappings (using Excel, SQL, or similar tools) into clear technical requirements.
• Stakeholder Management: Exceptional communication skills with the ability to maintain productive relationships while enforcing strict governance policies (knowing when to say "no").
• Builder Mindset: A "strategic builder" mentality - someone who can handle daily tasks today while constantly looking for ways to automate and future-proof the process.

What we look for

• Experience: Proven background in Identity & Access Management (IAM) or IT Governance, ideally within a highly regulated environment such as fintech.
• Technical Knowledge: A strong understanding of Role-Based Access Control (RBAC) and Separation of Duties (SoD) concepts.
• Data Proficiency: Ability to manage and translate complex data mappings (using Excel, SQL, or similar tools) into clear technical requirements.
• Stakeholder Management: Exceptional communication skills with the ability to maintain productive relationships while enforcing strict governance policies (knowing when to say "no").
• Builder Mindset: A "strategic builder" mentality - someone who can handle daily tasks today while constantly looking for ways to automate and future-proof the process.

Key Responsibilities

• Access Lifecycle & Automation: Facilitate the implementation of automated "Joiner, Mover, Leaver" (JML) workflows and enforce a least-privilege model to ensure both security and operational efficiency.
• Role & Exception Management: Serve as a key authority for approved roles, mapping with domain teams, review access exceptions and role modifications, ensuring all changes adhere to Separation of Duties (SoD) frameworks and global Identity & Access Management (IAM) policies.
• Audit & Compliance Coordination: Coordinate responses to periodic regulatory and audit requests while operationalizing access reviews to ensure business owners regularly recertify their teams' permissions.
• Reporting & Improvement: Co-create management dashboards to monitor control effectiveness and policy adherence, while collaborating with the internal teams to migrate manual tasks to the automation roadmap.