Senior Specialist, Information Security Analyst

About The Position

Requirements

• Minimum 4-6 years of hands-on experience in Identity and Access Management, with strong experience in mainframe security administration.
• Demonstrated experience working with ACF2 and/or RACF for user access provisioning, entitlement management, and security administration.
• Strong understanding of mainframe security concepts, including roles, groups, resource rules, logon IDs, permissions, and segregation of duties considerations.
• Experience supporting access request fulfillment, approvals, certifications, and audit remediation in a controlled environment.
• Familiarity with IAM governance processes and platforms, including integration of mainframe applications with enterprise IAM solutions such as SailPoint.
• Experience supporting joiner, mover, leaver processes and access lifecycle management.
• Ability to analyze access issues, troubleshoot provisioning problems, and recommend practical, risk-aligned solutions.
• Knowledge of risk, controls, compliance, and audit support within an IAM or information security environment.
• Experience with incident, problem, and change management processes.
• Proficiency with MS Office Suite, Jira, and Confluence.
• Strong critical thinking, problem-solving, and organizational skills.
• Excellent oral and written communication skills, including the ability to explain technical access and security concepts clearly to both technical and non-technical stakeholders.
• Ability to collaborate effectively across distributed teams and influence stakeholders in support of secure, efficient service delivery.
• Strong commitment to quality, accuracy, and operational excellence.

Nice To Haves

• Participate in a scheduled on-call support rotation, including after-hours and weekend coverage, to respond to access-related incidents, production issues, and critical implementation activities, ensuring timely resolution and continuity of IAM operations.

Responsibilities

• Administer and support mainframe access management processes with a focus on ACF2 and RACF security environments.
• Provision, modify, and revoke user access on the mainframe in accordance with approved requests, policy requirements, and operational standards.
• Support the onboarding of mainframe applications into IAM governance processes, including access requests, approvals, certifications, and audit controls.
• Maintain and update ACF2/RACF security rules, groups, profiles, roles, and permissions to align with business and technical requirements.
• Partner with application owners, system administrators, and business stakeholders to determine appropriate access models and implement required security changes.
• Execute and support joiner, mover, and leaver access activities for mainframe-connected applications and platforms.
• Monitor and manage access-related queues, service requests, escalations, and remediation items to ensure timely resolution and adherence to service level expectations.
• Support access certification, entitlement review, and audit remediation activities for mainframe platforms and associated applications.
• Investigate and resolve mainframe access issues, provisioning exceptions, and control gaps, coordinating with engineering and support teams as needed.
• Contribute to the implementation and enhancement of role-based access controls and standardized provisioning models for mainframe environments.
• Support compliance initiatives by preparing evidence, responding to audit inquiries, and assisting with control execution and documentation.
• Develop and maintain operational procedures, process documentation, workflow maps, and control-related materials for mainframe IAM activities.
• Apply incident, problem, and change management best practices in support of stable and controlled IAM operations.
• Promote security policy adherence, strong governance, and access management best practices across supported environments.
• Partner with IAM engineering and governance teams to support automation, process improvements, and integration of mainframe access processes with broader IAM tooling where applicable.