Identity and Access Management Analyst

AmeriLife•Clearwater, FL

20h•Hybrid

About The Position

For over 50 years, AmeriLife has been a leader in the development, marketing and distribution of annuity, life and health insurance solutions for those planning for and living in retirement. Associates get satisfaction from knowing they provide agents, marketers and carrier partners the support needed to succeed in a rapidly evolving industry. AmeriLife is seeking a detail-oriented and security-minded IAM Analyst to join our growing cybersecurity team. This role will support the design, implementation, and ongoing management of identity and access controls across our hybrid enterprise environment. The ideal candidate will work closely with security leadership to enhance our Zero Trust strategy, enforce least privilege, and ensure compliance with regulatory frameworks such as SOX, HIPAA, and NYDFS. This position is critical to maturing our identity governance program and supporting both current and legacy security initiatives, including phishing-resistant authentication, privileged account auditing, MFA enforcement, and identity lifecycle automation across Azure AD, Microsoft 365, and integrated SaaS platforms.

Requirements

3+ years of experience in identity and access management, preferably in a hybrid cloud environment.
Hands-on experience with Azure Active Directory, Microsoft 365 security, Conditional Access, and MFA.
Familiarity with IAM concepts such as RBAC, identity lifecycle automation, SSO, PAM, and identity federation.
Experience implementing phishing-resistant authentication technologies and privileged account auditing.
Understanding of regulatory frameworks including SOX, HIPAA, GLBA, and NYDFS Part 500.
Strong analytical and troubleshooting skills, with a security-first mindset.
Excellent communication and documentation skills.

Nice To Haves

Experience with identity governance tools is a plus.
Microsoft Certified: Identity and Access Administrator Associate (SC-300)
Microsoft Certified: Azure Security Engineer Associate (AZ-500)
ISC2: Systems Security Certified Practitioner (SSCP)
CompTIA: Cybersecurity Analyst+ (CySA)

Responsibilities

Administer and enhance IAM tools and processes, including Azure AD, Conditional Access, MFA, SSO, and privileged access workflows.
Develop, implement, and continuously optimize Conditional Access policies and related Microsoft security controls to enforce Zero Trust principles, minimize risk exposure, and support secure access to cloud and on-premises resources.
Implement and maintain phishing-resistant authentication mechanisms (e.g., FIDO2, certificate-based authentication) across critical systems and high-risk user groups.
Establish and manage privileged access management (PAM) controls, including auditing, alerting, and reporting on privileged account activity.
Implement and maintain identity lifecycle management processes—including provisioning, access changes, and deprovisioning—aligned with role-based access control (RBAC) and least privilege principles.
Monitor and respond to identity-related security events, including anomalous sign-ins, MFA bypass attempts, and privilege escalations.
Collaborate with IT, HR, and business units to ensure accurate provisioning and deprovisioning across systems.
Maintain and improve access review and certification processes to meet SOX ITGC and other regulatory requirements.
Document IAM procedures, workflows, and technical configurations to support audit readiness and operational transparency.
Participate in IAM-related projects, including integrations with new SaaS platforms, mergers/acquisitions, and Zero Trust initiatives.
Assist with IAM metrics and reporting to support security KPIs and executive dashboards.