Cybersecurity Consultant, IAM (Contract)

[What the role is]

The cybersecurity consultant will be handling day-to-day IAM operations while also contributing to the planning and implementation of new IAM solutions and process improvements across the organisation.

The successful candidate will play an active role in embedding identity-first security principles, strengthening the organization's identity security framework and supporting the organisation's IAM modernisation journey.

[What you will be working on]

IAM Operations

• Manage the day-to-day operations of IAM systems, including provisioning, de-provisioning, and lifecycle management of user and machine identities across hybrid and multi-cloud environments

• Administer and maintain role-based access control (RBAC) and attribute-based access control (ABAC) frameworks, ensuring entitlements remain aligned with business responsibilities

• Handle access requests, troubleshoot IAM-related issues, and provide timely support to users and IT teams on access-related matters

• Monitor IAM systems for anomalies, potential security threats, and policy violations, escalating and resolving issues in a timely manner

• Maintain accurate and up-to-date documentation of IAM policies, procedures, configurations, and access records

Identity Governance and Compliance

• Conduct regular access reviews and IAM audits to identify and remediate risks, ensuring compliance with relevant regulatory requirements and internal policies

• Support technology risk governance by tracking IAM-related risks, Key Risk Indicators, and remediation action plans

• Assist in assessing current IAM implementations against industry best practices, conducting gap analyses and recommending improvements

• Generate reports on IAM activity, access patterns, and compliance status for management and key stakeholders

IAM Implementation and Process Improvement

• Assist in the design and implementation of new IAM solutions using leading platforms such as Azure Entra ID, Okta, SailPoint, Saviynt, CyberArk, or BeyondTrust

• Collaborate with IT architects and engineering teams to connect APIs, services, and applications to IAM systems in a secure and scalable manner

• Support the development and rollout of automation scripts using PowerShell, Python, or equivalent scripting languages to streamline IAM operations and reduce manual effort

• Contribute to the development and execution of IAM roadmaps, identifying opportunities to enhance the organisation's identity security posture

• Work with stakeholders to drive process changes, improve operational workflows, and embed IAM best practices across the organisation.

[What we are looking for]

• At least 5 years of relevant experience in identity and access management, IAM operations, cybersecurity, or a related security engineering role.

• Relevant certifications in cybersecurity or identity management such as CISSP, CISM, CISA, or equivalent.

• Proven hands-on experience with one or more leading IAM platforms such as Azure Entra ID, Okta, SailPoint, Saviynt, CyberArk, or BeyondTrust.

• Intermediate to advanced knowledge of identity technologies including Active Directory, SSO, federated identities and privileged access management.

• Strong knowledge of IAM protocols and standards including SAML, OAuth 2.0, OpenID Connect, and SCIM.

• Experience with scripting languages such as PowerShell and Python for IAM task automation.

• Knowledge of relevant regulatory and compliance frameworks, including MAS TRM guidelines and CSA Cybersecurity Code of Practice.

• Experience in performing IAM audits, access reviews, and risk assessments.

• Demonstrated ability to support or contribute to IAM implementation projects and organisational process improvements.

Technical Skillset:

• Strong analytical, reasoning, and problem-solving skills with the ability to independently assess and resolve complex IAM issues.

• Meticulous with an eye for detail, particularly in documentation of processes, architecture, and configurations.

• Good oral and written communication skills, with the ability to convey technical concepts clearly to both technical and non-technical audiences.

• Ability to work independently and assume responsibility for operational and project deliverables.

• Team player who is proactive and collaborative, with experience working across cross-functional and multi-disciplined teams.

• Experience in reporting and dashboard tools such as JIRA.

As part of the shortlisting process for this role, you may be required to complete a medical declaration and/or undergo further assessment.

This is a 2-Year Contract. All applicants will be notified on whether they are shortlisted or not within 4 weeks of the closing date of this job posting.