Auren Energia

Identity and Access Management Analyst III

Auren Energia

full-time

Posted on:

Location Type: Hybrid

Location: São PauloBrazil

Visit company website

Explore more

AI Apply
Apply

About the role

  • Active participation in the creation, structuring and implementation of the Identity and Access Management (IAM/IGA) process, ensuring governance, regulatory compliance, segregation of duties, mitigation of unauthorized access risks and alignment with information security best practices according to established guidelines, contributing to business resilience and sustainability.
  • Work on the implementation project of the Identity and Access Management (IAM/IGA) process, from model design to operationalization and maturity.
  • Define, review and maintain access management policies, standards, norms and procedures associated with the identity and access lifecycle.
  • Serve as a technical reference in IAM, ensuring adherence to best practices and market frameworks (e.g., NIST, ISO 27001, ISO 42001).
  • Review and maintain Segregation of Duties (SoD) matrices for SAP and relevant corporate systems, assessing conflicts and access risks.
  • Support the evaluation, selection, implementation and evolution of market IAM/IGA solutions, such as identity governance platforms, authentication, privileged access management and CIAM (e.g., SailPoint, Saviynt, Okta, Microsoft Entra ID, CyberArk, SAP GRC).
  • Act as the functional owner for identity governance, authentication and privileged access management tools (e.g., SailPoint, Saviynt, Okta, Microsoft Entra ID, CyberArk), defining rules, roles, approval flows, controls and integration requirements.
  • Evaluate and implement advanced technologies (e.g., password vaults, IDPs, IGA), applying best practices to optimize performance.
  • Act as a focal point with business areas, HR, IT, Information Security and Audit, translating risks and regulatory requirements into control solutions.
  • Propose and monitor continuous improvements to internal controls and processes related to identity and access management.
  • Ensure access compliance for internal and external audits, regulatory bodies and other stakeholders.

Requirements

  • Education: Degree in Information Technology, Computer Science, Information Systems or Engineering.
  • Preferable experience in Information Security and technical knowledge in Access Management.
  • Technical knowledge: Identity and Access Management (IAM) and Identity Governance & Administration (IGA).
  • Identity and access lifecycle (onboarding, transfers/role changes, periodic review and offboarding).
  • Security frameworks and standards applicable to access management (NIST, ISO 27001, ISO 42001).
  • Segregation of Duties (SoD) and mitigation of access conflicts.
  • Internal controls and regulatory compliance applied to access management.
  • Market IAM/IGA tools, including identity governance, authentication and privileged access management solutions (e.g., SailPoint, Saviynt, Okta, Microsoft Entra ID, CyberArk).
  • Concepts of access management in SAP and relevant corporate systems.
  • Information privacy and LGPD in the context of logical access.
  • Creation, updating and deletion of user accounts in corporate systems.
  • Password management and multi-factor authentication (MFA - Microsoft Authenticator).
  • Verification and audits to check compliance with internal policies and regulations.
  • Knowledge of tools such as Active Directory (AD).
  • Intermediate English.
  • Experience in the electric power sector will be considered a plus.
Benefits
  • Meals: on-site cafeteria, meal voucher (VR) or food allowance (VA);
  • Medical and Dental Plan;
  • Life Insurance;
  • Private Pension;
  • Annual variable compensation program, based on achievement of targets.
  • Quality of Life Program;
  • Gym partnerships.
  • Scholarship Program;
  • Learning hub that encourages different forms of knowledge;
  • Incentive for volunteering in social actions and programs in which Auren participates;
  • Diversity and Inclusion group open to new members (members or allies);
  • Periodic survey to measure internal engagement levels.
  • Flexible working hours and hybrid work model (for corporate area).

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
Identity and Access Management (IAM)Identity Governance & Administration (IGA)Access ManagementSegregation of Duties (SoD)Internal ControlsRegulatory ComplianceMulti-Factor Authentication (MFA)Password ManagementInformation SecurityIdentity and Access Lifecycle
Soft skills
CommunicationCollaborationProblem SolvingAnalytical ThinkingAttention to DetailProject ManagementRisk AssessmentContinuous ImprovementTechnical ReferenceStakeholder Engagement
Certifications
ISO 27001ISO 42001NIST Compliance