Information Security Analyst (Identity & Access Management (IAM), CyberArk, EDR, Vulnerability Management, SIEM, Incident Management)

Responsibilities:

• Implement and manage IAM/PAM solutions, including SailPoint and CyberArk, for secure access provisioning, monitoring, and compliance enforcement.
• Monitor and respond to security incidents using advanced Endpoint Detection & Response (EDR) solutions such as SentinelOne.
• Conduct comprehensive vulnerability assessments, identify gaps, and drive remediation initiatives to harden enterprise infrastructure.
• Manage and monitor SIEM dashboards, analyze logs, create alerts, and correlate events for real-time threat detection.
• Perform incident response tasks including evidence gathering, root cause analysis, and coordination of forensics investigations.
• Execute threat hunting campaigns based on IOCs, behavioural anomalies, and threat intelligence feeds.
• Administer user access reviews, onboarding/offboarding processes, and maintain integrations with enterprise SSO systems.
• Liaise with cross-functional teams and vendors to fulfil project deliverables, handle escalations, and ensure SLA adherence.
• Provide L2 support and subject matter expertise for endpoint security tools, network protection systems, and IAM platforms.
• Maintain cybersecurity documentation, contribute to audit preparations, and enforce compliance with security policies and standards.
• Deliver weekly and monthly reports on incident trends, system health metrics, SLA tracking, and identified security risks.
• Drive patch validation processes, perform Build Verification Testing (BVT) for system changes, and support change control governance.

Requirements:

• 12+ years of experience in IT with strong experience in cybersecurity across identity access, endpoint protection, and security operations.
• Hands-on expertise with SentinelOne or similar EDR tools for detecting, investigating, and responding to endpoint threats.
• Solid background in vulnerability management, risk prioritization and mitigation strategies using enterprise-grade tools.
• Proficient in SIEM platforms such as Splunk for threat correlation, event analysis, and operational dashboards.
• Strong capabilities in incident response and digital forensics with experience in conducting triage and post-incident reviews.
• Proven track record of managing IAM/PAM environments using SailPoint, CyberArk, Active Directory, and Azure.
• Knowledge of Security principles and the ability to apply them in enterprise architecture.
• Experience working in security-sensitive environments with a high level of regulatory compliance.
• Excellent communication, collaboration, and escalation handling skills in geographically distributed teams.