credsystem

Mid-level Information Security Analyst – Identity and Access Management

credsystem

full-time

Posted on:

Location Type: Hybrid

Location: Barueri • 🇧🇷 Brazil

Visit company website
AI Apply
Apply

Job Level

Mid-LevelSenior

Tech Stack

AzureCloudOracle

About the role

  • Develop and implement IAM policies and processes that meet the organization’s security requirements;
  • Work across the identity lifecycle (Joiner, Mover, Leaver), including provisioning, review, recertification and revocation of access;
  • Lead IAM maturity projects to prepare the environment for future integrations with IGA solutions (SailPoint);
  • Support the definition of technical criteria for future integrations (LDAP, API, SAML, etc.);
  • Define and enforce access control policies based on roles (RBAC), attributes (ABAC) or hybrid policies;
  • Monitor and report IAM performance metrics, identifying areas for improvement;
  • Ensure application of the principle of least privilege and segregation of duties (SoD) policies;
  • Develop and enhance access governance processes and workflows (e.g., periodic access reviews, certifications, approval workflows);
  • Perform periodic access reviews and support compliance audits (SOX, ISO 27001, LGPD, etc.);
  • Collaborate with IT and security teams to define requirements for multi-factor authentication (MFA), single sign-on (SSO) and federated authentication (SAML, OAuth, OpenID Connect);
  • Control privileged access and service accounts;
  • Manage user and system identities and access, including creation, modification and revocation of access, ensuring the full identity lifecycle;
  • Configure, maintain and troubleshoot federated identity integrations using OIDC, SAML and SCIM;
  • Assist in defining and implementing Identity Provider (IdP) configurations and Single Sign-On (SSO) integrations with enterprise applications;
  • Support internal and external audits by providing evidence and compliance reports related to access.

Requirements

  • Bachelor’s degree in a technology-related field;
  • Solid experience in IAM (Identity & Access Management) projects and operations;
  • Proficiency with SailPoint and Senha Segura;
  • Knowledge of authentication and authorization protocols (SAML, OAuth 2.0, OIDC, LDAP, Kerberos);
  • Experience in privilege management (PAM) and administration of privileged accounts;
  • Strong experience building access matrices (RBAC) and segregation of duties (SoD);
  • Experience in identity-related risk management and security controls;
  • Previous experience in cloud environments, especially Azure and Oracle Cloud;
  • Practical experience integrating Keycloak as an external IdP for JWT token validation;
  • Keycloak expertise: deep experience installing and configuring Keycloak in cluster mode (high availability), Realms, Clients and Roles;
Benefits
  • Meal and food vouchers;
  • Health insurance (for you and your dependents);
  • Dental insurance (for you and your dependents);
  • Two monthly sessions with a psychologist (no cost);
  • Nutritionist consultation (covered by Credsystem);
  • Gympass (to support your health and well-being);
  • Wellness sessions (weekly massage sessions to help you stay relaxed);
  • Life insurance;
  • Variable compensation based on position and achievement of targets;
  • Tuition discounts at partner universities (to advance your career);
  • Language school partnership (to develop and improve a second language);
  • Birthday day off;
  • Payroll-deductible loan;
  • Transportation allowance, company shuttle or parking;
  • Childcare assistance;
  • Sesc benefits.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
IAMSailPointSenha SeguraSAMLOAuth 2.0OIDCLDAPKerberosPAMKeycloak
Soft skills
leadershipcollaborationcommunicationproblem-solvingorganizational skills
Certifications
Bachelor’s degree in technology-related fieldSOX complianceISO 27001 complianceLGPD compliance
Cartão Elo

Analista de Segurança da Informação Pleno – Gestão de Identidades e Acessos

Cartão Elo
Mid · Seniorfull-timeBrasil
Posted: 1 hour agoSource: vempraelo.gupy.io
AWSAzureCloudGoogle Cloud PlatformOraclePythonSOAP
Cartão Elo

Senior Information Security Analyst – Cyber Governance

Cartão Elo
Seniorfull-time🇧🇷 Brazil
Posted: 1 hour agoSource: vempraelo.gupy.io
Cartão Elo

Senior Information Security Analyst – Red Team

Cartão Elo
Seniorfull-time🇧🇷 Brazil
Posted: 1 hour agoSource: vempraelo.gupy.io
SDLC
Cartão Elo

Senior Information Security Analyst – Cybersecurity Architecture

Cartão Elo
Seniorfull-time🇧🇷 Brazil
Posted: 1 hour agoSource: vempraelo.gupy.io
AWSAzureCloudGoogle Cloud PlatformTerraform
Cartão Elo

Mid-Level Information Security Analyst – Identity and Access Management

Cartão Elo
Mid · Seniorfull-timeBrasil
Posted: 1 hour agoSource: vempraelo.gupy.io
AWSAzureCloudGoogle Cloud PlatformOraclePythonSOAP