Job Description
Job Responsibilities
Provide account provisioning and de-provisioning for multiple systems across the enterprise
Complete requests as per defined procedures and within agreed Service Level Agreements (SLA), resolve incident tickets and assist other security analysts as needed
Document access management procedures for assigned platforms, databases and applications; keep the access management procedures updated
Proactively identify audit and compliance access related issues to reduce the risk of security
Work with team members to identify and develop solutions to streamline and automate existing manual processes
Work directly with end users, managers, and other teams in a global enterprise to understand requests and drive ticket resolution using email, telephony, and instant messaging tools
Configure user desktops, identify potential issues, and work with end users and hiring managers to provide a positive experience
Work adjusted hours if needed for training, knowledge transfer, and support coverage
Ability to work with and maintain confidential information and demonstrates tact, discretion and diplomacy.
Demonstrate excellent interpersonal and customer service skills while communicating with users, supervisors and/or managers.
Handle other general access related requests as required by clients, vendors, or internal users following least privilege guidelines.
Obtain a general understanding of critical systems at Markel.
Provide on-call customer support as directed.
Use established procedures and service levels (SLA) to provision various accounts (user, group and privileged) within Active Directory (AD) and various other applications and systems as part of account lifecycle activities.
Use excellent judgment to assist in making general access related decisions to aid customers while ensuring compliance.
Understands and keeps abreast of industry best practices and how it can be applied at Markel.
Knowledge of SailPoint / Identity Now, Service Now, Azure AD would be ideal.
Required Skills & Experience
Bachelors degree; or 1 to 3 years related work experience/certification in cyber security; or 1 to 2 years experience/certification in Information Technology.
General knowledge of information technology, cybersecurity, identity management, application security
Experience with one or more IAM products, including directories, multi-factor authentication, account provisioning, and single-sign-on tools and technologies i.e. Sailpoint / IdentityNow / ADMP
Experience with password management technologies i.e. CyberArk
Understanding of directory services (AD and LDAP) and Windows based authentication (Kerberos and NTLM)
Experience with ITSM tools ServiceNow, JIRA, etc
Experience using Microsoft Active Directory
Ability to create file shares and set security permission on servers
Nice to Have Skills & Experience
Compliance frameworks, and regulatory requirements such as SOX and PCI
Microsoft Azure Fundamentals certification or similar
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.