Cybersecurity Analyst, Iam

**Take your Career to the next Level with MEVOTECH.**

We are constantly challenging the status quo and raising the bar allowing employees to make an impact within the company.

Mevotech is a trusted North American aftermarket auto parts leader that specializes in the engineering, design and distribution of driveline, steering and suspension parts (branded and private label). Fueled by innovation, our brands feature engineering improvements for maximum durability and performance, as well as time and labor-saving enhancements that drive bay efficiencies and increase shop revenues. Our in-house engineering team always has the Professional Technician in mind, and we are continuously optimizing part design for durability and ease of installation.

**JOB PURPOSE**
Reporting directly to the Director, Cyber Security, the Cyber Security Analyst, IAM is responsible for performing two core functions for the enterprise. The first is the day-to-day operations of the in-place identity security solutions while the second is the identification, investigation, and resolution of security breaches detected by those systems. The Cyber Security Analyst, IAM role includes involvement in the creation and/or maintenance of policies, standards, baselines, guidelines, and procedures as well as ensuring compliance of cloud service providers. The Cyber Security Analyst, IAM is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures, and guidelines, and to actively work towards upholding those goals.

**KEY DUTIES AND RESPONSIBILITIES**

**Strategy & Planning**
- Participate in the planning and design of enterprise security architecture.
- Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures).
- Participate in the planning and design of an enterprise Identity Management framework and implementation in alignment with organizational security policies.

**Acquisition & Deployment**
- Maintain up-to-date, detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
- Recommend additional identity security solutions or enhancements to existing security solutions to improve overall enterprise security.
- Perform the deployment, integration, and initial configuration of all new identity security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically, and the enterprise’s security documents specifically.
- Evaluate new and possible vendors on security features and advise the organization on those that meet organizational security standards and policies

**Operational Management**
- Produce technical solution documents, Standard Operating Procedure (SOPs) as per the requirement of the organization.
- Deliver technical presentations and/or knowledge walkthroughs of existing and proposed systems to various audiences including project team members, peer technology teams and senior management.
- Active Directory and Azure AD administration to support access management for the organization

**QUALIFICATIONS, SKILLS, AND EDUCATIONAL REQUIREMENTS**
- College diploma or university degree in the field of information security and/or five years equivalent work experience.
- One or more of the following certifications:

- CompTIA Security+
- (ISC)2 Certified Information System Security Professional (CISSP)
- SC-300 Microsoft Certified: Identity and Access Administrator Associate
- IMI - Certified Identity Management Professional (CIMP)
- CyberArk Sentry Certification or higher
- Strong experience administering in an Active Directory, Azure Active Directory, and M365 environments
- Fluent in creating and scripting complex multi-line tasks using PowerShell or other scripting/development languages
- Experience supporting Microsoft MFA and industry authentication platforms.
- Experience supporting On-premises and Microsoft Azure hybrid environments.
- Collaborate with cross-functional teams to contribute to the development and deployment of new cloud
- Knowledge of Privileged Access Management solutions, Experience with CyberArk is a strong asset.
- Intimately familiar with IAM related protocols such as SAML, SPML, XACML, SCIM, OpenID and OAuth
- Federation concepts and technologies particularly with solutions from Azure AD and Okta
- Strong experience with Directories, SSO, Federation, Delegated administration, API gateways, SOA services.
- Some knowledge of scripting languages (vbscript, powershell, perl, javascript, Graph API, Python and LDAP query etc.)
- Knowledge of Windows Hello for Business is an asset.
- Proven analytical and problem-solving abilities.
- Ability to effectively prioritize and execute tasks in a high-pressure environment.
- Good written, oral, and interpersonal communication skills.
- Ability to conduct research i