Qualifier: US Citizenship

Location: New York City – Hybrid Role

POSITION SUMMARY:

Position is responsible for administering access rights and entitlements to specific IT/IS systems. Performs verification of proper authorization and adheres to all security policy and auditing requirements. Responsible for fulfilling user access requests within established parameters and practices of the bank with a primary focus on quality and accuracy. Works in a collaborative team environment to prioritize and distribute workload among team members.

KEY RESPONSIBILITIES / ESSENTIAL FUNCTIONS:

  • Verifies of proper authorization on all requests for security access changes, rejects all requests lacking proper authorization.
  • Fulfills requests to IT/IS systems in accordance with the controls and requirements that govern information security access.
  • Creates, modifies, and deletes user and service accounts.
  • Creates, modifies, and deletes security groups and attributes within multiple applications.
  • Creates, modifies, and deletes network file shares.
  • Tracks day to day requests via Service-Now and completes requests within established SLA’s.
  • Provide positive feedback and input regarding current processes and provide performance improvement documentation annually.
  • Resolves issues referred from help desk related to security access.
  • Account Provisioning – Fulfills requests to IT/IS systems in accordance with the controls and requirements that govern information security access
  • Privileged User Management – Assist with CyberArk (prod & nonprod environments/ IDBBANK & IDBBANKNONPROD domains) account on boarding and safe access for respective development teams. Assist with CyberArk remediation work with Service Now integration.
  • Access certification – Run quarterly user/role reports for re-certification of multiple applications. Assist with building out new re-certification process based off of external vendor solution.
  • Data Security Run-the-Bank (RTB) activities – Resolves issues referred from help desk related to security access such as: password resets, account lockouts, verifying users.
  • Assist with fulfilling tasks with regard to TCDO (de-activate & re-enable accounts)

MINIMUM KNOWLEDGE, SKILLS, EXPERIENCE REQUIRE:

  • 5 years of direct experience provisioning systems/application access.
  • Banking systems and identity & access management experience.
  • Basic knowledge or familiarity with Active Directory group and account administration a plus.
  • Ability to multitask; strong organizational skills.
  • CyberArk administration experience preferred.
  • OKTA experience a plus
  • Strong communication skills, written and verbal.
  • Ability to execute procedures and follow established policy and procedure.
  • Must have outstanding communication and documentation skills.
  • Must be able to learn various technology quickly and work in a fast paced environment.

Job Type: Full-time

Schedule:

  • Monday to Friday

Application Question(s):

  • Are you a US Citizen?

Experience:

  • systems/application access: 5 years (Required)
  • banking systems and identity & access management: 5 years (Required)
  • Data Security Run-the-Bank (RTB): 5 years (Required)
  • OKTA: 5 years (Preferred)
  • CyberArk Administration: 5 years (Preferred)
  • Active Directory: 5 years (Preferred)

Work Location: One location