Security Analyst - SoD & Access Risk Management
About The Position
Provides technical evaluation and analysis. Supports activities, process, and tools needed to improve overall security posture of the organization. Applies security concepts, reviews information, executes defined tasks, analyzes requirements, reviews logs, and creates documentation. Performs investigation and data loss prevention, data manipulation, and coordination of activities. Performs actions to address or mitigate risks and vulnerabilities. Reviews and defines controls. Advises on more complex security procedures and products for clients, security administrators and network operations. Participates in enforcement of control security risks and threats; potential of one more controls subject to manager discretion. Shares knowledge with staff. Conducts security assessments and other information security routines consistently. Investigates and recommends corrective actions for data security related to established guidelines.
Requirements
- Segregation of Duties (SoD) & Access Risk Management
- Experience working within OIM (preferred) or similar platforms including building and maintaining SoD rules and understanding access provisioning
- Identity & Access Management (IAM) Fundamentals
- Strong understanding of least privilege, access requests, and certification processes
- Audit & Compliance - Experience supporting audits, maintaining compliance, and documenting SoD controls, violations, and remediation steps
- Data Analysis & Troubleshooting - Ability to analyze/understand violations and troubleshoot access issues
- Customer Focused - Knowledgeable of the values and practices that align customer needs and satisfaction as primary considerations in all business decisions and able to leverage that information in creating customized customer solutions.
- Managing Risk - Assessing and effectively managing all of the risks associated with their business objectives and activities to ensure they adhere to and support PNC's Enterprise Risk Management Framework.
Nice To Haves
- Experience working within OIM (preferred) or similar platforms
Responsibilities
- Execute daily SoD scans to identify potential and effective access violations
- Monitor, triage, and investigate SoD violations, ensuring timely resolution or escalation
- Provide on-demand support to end users and business stakeholders to analyze and remediate access conflicts
- Partner with application owners and access request teams to validate and resolve violations in alignment with policy
- Build, configure, and maintain toxic combination rules within Oracle Identity Manager (OIM)
- Contribute to the design and improvement of SoD control framework within PNC IAM program
- Drive continuous improvement in automation, reporting, and processes related to SoD
Benefits
- medical/prescription drug coverage (with a Health Savings Account feature)
- dental and vision options
- employee and spouse/child life insurance
- short and long-term disability protection
- 401(k) with PNC match
- pension and stock purchase plans
- dependent care reimbursement account
- back-up child/elder care
- adoption, surrogacy, and doula reimbursement
- educational assistance, including select programs fully paid
- a robust wellness program with financial incentives
- maternity and/or parental leave
- up to 11 paid holidays each year
- 9 occasional absence days each year, unless otherwise required by law
- between 15 to 25 vacation days each year, depending on career level; and years of service
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
