IAM Security Analyst, Mid-level

Cruzeiro do Sul Educacional S/A

full-time

Posted on:

Location Type: Remote

Location: Brasil

Visit company website

Explore more

AI Apply
Apply

Tech Stack

AzurePython

About the role

  • We are looking for an Identity & Access Management (IAM) Analyst — Mid-level to join our team and work directly on access provisioning, system integrations and implementation of Single Sign-On (SSO).
  • This professional will be responsible for strengthening support workflows, optimizing processes, supporting integration projects and ensuring access rules comply with corporate security standards.
  • Take a leading role in granting access and integrating systems, ensuring standardization and security.
  • Implement and optimize SSO solutions, ensuring compatibility with modern authentication protocols.
  • Onboard systems into the IAM team’s scope, modeling access profiles and implementing segregation of duties.
  • Propose continuous improvements to processes, increasing efficiency, automation and quality of support.
  • Contribute to the maturation of the IAM operation, ensuring agility, control and a positive user experience.
  • Execute ticket handling and responses for access provisioning, updates and revocations.
  • Perform system integrations with IAM platforms using standards such as SCIM, SAML, OAuth and OpenID Connect.
  • Implement and maintain authentication flows and Single Sign-On (SSO) for internal and external applications.
  • Structure and apply segregation of duties (SoD) models for systems managed by the IAM area.
  • Collaborate with internal teams to define, review and document access standards and permission rules.
  • Participate in onboarding new systems into the IAM ecosystem, including risk analysis, profile mapping and connector configuration.
  • Contribute to building and improving operational procedures, playbooks and technical documentation.
  • Support initiatives for automation of access granting and permission monitoring.
  • Troubleshoot access, authentication and identity synchronization issues.
  • Continuously evolve team processes by suggesting tools, workflow adjustments and best practices.

Requirements

  • Access provisioning and governance
  • Authentication, SSO and protocols (SAML, SCIM, OAuth 2.0, OpenID Connect)
  • System integration with identity management tools
  • Ability to read and interpret technical integration requirements
  • Skill in creating clear, objective and standardized documentation (procedures, manuals and flows)
  • Good communication, sense of priority and focus on efficiency
  • Practical experience with:
  • ○ Microsoft Entra ID (Azure AD)
  • ○ SailPoint IdentityNow
  • ○ CyberArk
  • ○ TOTVS RH
  • ○ Salesforce
  • Experience with process automation (PowerShell, Python, REST APIs)
  • Experience implementing SCIM connectors or automations via webhooks
  • Certifications such as: Microsoft (SC-300, SC-900); SailPoint Certified IdentityNow Professional; Okta, CyberArk; ITIL or equivalents
  • Knowledge of RBAC/ABAC and design of corporate access profiles
  • Experience with advanced troubleshooting of federated authentication
  • Education: Undergraduate degree in IT in progress or completed
Benefits
  • Medical and Dental Insurance
  • Meal Allowance
  • Pharmacy Discount Program
  • Total Pass (transport/benefit card)
  • Tuition Assistance (Undergraduate or Graduate)
  • Life Insurance
  • Birthday Day Off
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
access provisioningauthenticationSingle Sign-On (SSO)SAMLSCIMOAuth 2.0OpenID Connectprocess automationMicrosoft Entra IDPython
Soft Skills
communicationsense of priorityfocus on efficiencyability to read technical requirementscreating standardized documentation
Certifications
Microsoft SC-300Microsoft SC-900SailPoint Certified IdentityNow ProfessionalOktaCyberArkITIL