IAM practitioner - iFusion Inc.

Role summary

We re seeking an experienced IAM practitioner to lead Phase 2 application deepdives within the ECM Change Management Audit Remediation program and to coordinate application team responses endtoend. This role will facilitate and document what constitutes privileged access with application and service owners, drive data collection and analysis, and own all IAM aspects of project execution for the IAM workstream including alignment to our policy and Privileged Account Management (PAM) standard. Phase 2 focuses riskbased deepdive assessments of applications prioritized by business criticality, regulatory impact, data classification, foundational system status, and usage profiles

Lead assessments & coordination

• Plan, schedule, and run deepdive assessment sessions with application and service owners; tailor question sets to hosting model (onprem/SaaS), access model, and criticality.
• Drive application response completion (surveys, interviews, workshops) and ensure evidence is collected and stored in approved repositories (e.g., CMDB/SharePoint/ServiceNow).
• Define and document privileged access per app (roles/entitlements, credentials, breakglass accounts, service accounts/keys, cloud admin roles), aligned to the PAM Standard.
• Map entitlements to accounts and controls (vaulting, rotation, JIT, session management, MFA) and identify remediation needs when gaps are found.

Analysis, risk scoring & reporting

• Apply riskbased prioritization using the Phase 2 model (business criticality, regulatory/data classification, foundational status, users/usage) and document rationale in CMDB attributes.
• Produce applicationlevel deepdive reports (current state, control gaps, recommendations, target dates) and portfolio rollups for weekly program governance.

Standards alignment & operationalization

• Ensure outcomes align to the IAM Policy and PAM Standard definitions and control expectations; raise exceptions only when justified with mitigating controls and an action plan.
• Partner with app teams to establish/confirm privileged access scopes for upcoming PAR/PUAR campaigns and certify in-scope accounts accordingly

Tooling & integrations

• Coordinate with platform owners to onboard/vault privileged credentials and related secrets in CyberArk; ensure Okta access patterns and SailPoint IIQ governance reflect agreed entitlements.
• Ensure CMDB attributes and ServiceNow IRM records reflect final risk ratings and control states for assessed applications.
• Education and Experience1. Bachelor's degree in Computer Science or equivalent experience.2. TYpically a minimum of four years experience in security aspects of multiple platforms, operating systems, software communications and network protocols.3. Previous help desk experience desirable.4. Applicable certifications preferred.