About the position
The job overview for this role is that WPP is seeking a Compliance Analyst to report to the Manager of Privileged Access Management. The primary responsibility of this role is to exert control over privileged access and permissions for users, accounts, and systems across WPP's agencies/brands. The Compliance Analyst will support the quarterly privileged access review, identify gaps and risks, and contribute to the development and implementation of operational processes to ensure compliance with WPP policies. They will also provide technical assistance to PAM users, ensure incident tickets are closed within SLA, and act as a focal point of contact for internal and external audits.
Responsibilities
- Support the quarterly Privileged access review and identify any gaps, risks, and areas for improvements.
- Ability to confidently articulate business risks and technical challenges to senior stakeholders.
- Operate Privileged Access Management (PAM) processes that include health check assessments, strategy, and implementation engagements.
- Work with the PAM Lead to deliver the PAM strategy.
- Contribute to the development and implementation of operational PAM processes and capabilities to ensure ongoing compliance with WPP policies and industry good practice.
- Onboarding of external and internal users into PAM (Privileged Access Management) tool.
- Provide technical assistance to PAM external/internal users.
- Ensure the Incident tickets are closed within the agreed SLA.
- Take ownership of changes performed towards regular patching of PAM appliance.
- Be a focal point of contact for Internal and external audits.
- 2-4 years' experience of IT and IT risk management.
- Demonstrable experience and understanding of IT risk management frameworks (eg COBIT).
- Hand-on experience of Privileged access management, tools, techniques, and methodologies.
- Good knowledge of IT and the key technologies used by large corporates (AD, Windows Server, Office 365, Cloud).
- Strong self-motivation and ability to apply appropriate judgment and initiative.
- Communication skills including the ability to explain technical complex issues in a concise and business-focused manner.
- Pragmatic problem-solving and ability to work in a complex global environment.
- Ability to drive areas to closure and ensure results.
- Ability to interface/negotiate with internal and external auditors in support of the organization.
- Understanding the importance of strong Security controls and maintaining a positive user experience.
- Understands security concepts to engage with security technologists and communicate in a language that is appropriate to the audience.
- Technical and service awareness.
- Retains a holistic view on the end-to-end.
Requirements
- 2-4 years' experience of IT and IT risk management
- Demonstrable experience and understanding of IT risk management frameworks (eg COBIT)
- Hand on experience of Privileged access management, tools, techniques, and methodologies
- Good knowledge of IT and the key technologies used by large corporates (AD, Windows Server, Office 365, Cloud)
- Strong self-motivation and ability to apply appropriate judgement and initiative
- Communication skills including the ability to explain technical complex issues in a concise and business focused manner
- Pragmatic problem solving and ability to work in a complex global environment
- Ability to drive areas to closure and ensure results
- Ability to interface/negotiate with internal and external auditors in support of organization
- Understanding the importance of strong Security controls and maintaining a positive user experience
- Understands security concepts to engage with security technologists and communicate in a language that is appropriate to audience
- Technical and service awareness
- Retains a holistic view on the end-to-end
Benefits
- Passionate, inspired people
- Scale and opportunity
- Challenging and stimulating work
- Equal opportunity employer
- Diversity and inclusion