Middle Information Security Access Specialist

Why this role exists:

This role exists to scale, secure, and automate our user access management infrastructure, ensuring zero-trust integrity at high velocity. You’ll help us protect our core IT ecosystem by eliminating manual access workflows, driving identity governance, and meeting strict operational SLAs.

What you’ll drive:

Strategy & outcomes

• Optimize and mature the automated access management service to reduce manual onboarding/offboarding touchpoints.
• Design and enforce strict security measures aligned with modern identity governance and access risk mitigation.
• Measure and track operational SLAs, proactively fixing bottlenecks in the request pipeline to ensure high internal customer satisfaction.

Discovery & decisions

• Validate and define role models across corporate systems, continuously identifying and correcting access anomalies or inconsistencies.
• Map and translate complex compliance and technical requirements into clean, automated access workflows.
• Partner with cross-functional teams to onboard new corporate systems into the centralized Access Flow platform.

Delivery & execution

• Ship automation scripts (PowerShell, Bash) to eliminate repetitive security administration tasks.
• Maintain the source of truth for all system roles, sub-roles, and identity entities within the IAM infrastructure.
• Process complex, escalated access tickets swiftly and securely, serving as the ultimate gatekeeper for critical permissions.
• Build and update comprehensive internal documentation for procedures, role definitions, and access frameworks.

What makes you a GR8 fit:

Must-have:

• 2+ years of hands-on experience as an IT Security Engineer or IAM Specialist.
• Strong technical mastery of enterprise identity tools (e.g., Okta, CyberArk, Active Directory, PAM, and SSO solutions).
• Solid scripting skills (Bash, PowerShell, or Python) explicitly used for automating identity workflows or security tasks.
• Deep understanding of core access control principles, RBAC structures, and authentication methods.
• SLA-driven mindset with a track record of handling high-volume operational tickets without compromising security or accuracy.
• Clear communication style—able to translate rigid technical security policies into clear, non-technical steps for internal users.
• Upper-Intermediate level of English.

Nice-to-have:

• Familiarity with cloud security concepts and identity governance within AWS, Azure, or GCP.
• Experience configuring or troubleshooting custom Access Flow / IAM orchestration platforms.
• Relevant industry certifications (e.g., CompTIA Security+, Okta Certified Professional, or Microsoft Identity and Access Administrator).