AIG
IAM Senior Governance and Controls Analyst
AIG, Charlotte, North Carolina, United States, 28245
IAM Senior Governance and Controls Analyst
At AIG, we are reimagining the way we help customers to manage risk. Join us as an IAM Senior Governance and Controls Analyst to play your part in that transformation. It’s an opportunity to grow your skills and experience as a valued member of the team. Make Your Mark At AIG, technology is at the heart of everything we do, from underwriting risks to processing claims. The Information Technology (IT) team equips our colleagues with the latest tools to complete their work efficiently, with the highest standards of excellence. The team is responsible for shielding the company’s systems from security risks, while designing technology strategies that enable AIG’s businesses to achieve their goals. Innovation in IT drives innovation across the organization. How You Will Create An Impact The IAM Senior Governance and Controls Analyst will play a pivotal role in partnering with control owners and subject-matter experts within the Identity and Access Management (IAM) team to ensure that AIG remains compliant with its IAM obligations and requirements. This individual will lead engagement with internal and external stakeholders, ensuring the collection, validation, and delivery of relevant information that demonstrates the strength and effectiveness of AIG’s IAM controls. The ideal candidate will demonstrate a proven track record of delivering compliance-driven IAM projects, analyzing IAM processes and controls, or auditing IAM controls. Point of contact for internal and external audit partners as it relates to IAM controls (e.g., user access and identity lifecycle, privileged access management, authentication). Maintain comprehensive knowledge of IAM domains’ requirements within relevant frameworks and regulations (e.g., SOX, SOC1, ISO 27001, NIST, PCI DSS, DORA, US DOJ Executive Orders) and demonstrate the ability to interpret and integrate new regulatory requirements into AIG’s control environment. Assist in developing and maintaining IAM policies, standards, and procedures ensuring alignment with applicable regulatory requirements and leading IAM practices. Assist in conducting regular self-assessments, including establishing automated continuous monitoring, of the organization’s IAM control environment to identify and proactively remediate any unmitigated risks or inefficiencies. Identify and evaluate complex business and technology risks as it relates to IAM and relay opportunities for risk mitigation via automation/process transformation. Stay current with IAM industry trends and best practices, including the use of AI and automation to strengthen control compliance monitoring. What You Need To Succeed Bachelor's degree in a relevant field, with a strong background in IAM, including program, audits, assessment, remediation or security compliance management. Working knowledge of at least one of the following technologies preferred: SailPoint, CyberArk, Okta. Advanced knowledge of information systems auditing, controlling, monitoring and assessments. Demonstrated ability to assess processes design, define control points and identify appropriate evidence to support control effectiveness. Act in a project manager capacity to collect status on open issues from issue owners, summarize/consolidate updates, and share with internal partners. Identify opportunities to streamline and automate testing procedures, driving operational efficiency and continuous improvement. Excellent problem-solving skills with the ability to assess risks, solve complex (often ambiguous problems) and recommend remediations. Develop and maintain control procedure templates and playbooks to serve as a foundation for audits and assessments. Self-starter who takes ownership of their work and can work both independently as well as collaboratively in a fast-paced regulatory environment. Strong attention to detail and a critical, analytical mindset. Certifications (CISSP, CISA, CISM, CRISC) are a plus. AIG provides equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories. AIG is committed to working with and providing reasonable accommodations to job applicants and employees with disabilities.
#J-18808-Ljbffr
At AIG, we are reimagining the way we help customers to manage risk. Join us as an IAM Senior Governance and Controls Analyst to play your part in that transformation. It’s an opportunity to grow your skills and experience as a valued member of the team. Make Your Mark At AIG, technology is at the heart of everything we do, from underwriting risks to processing claims. The Information Technology (IT) team equips our colleagues with the latest tools to complete their work efficiently, with the highest standards of excellence. The team is responsible for shielding the company’s systems from security risks, while designing technology strategies that enable AIG’s businesses to achieve their goals. Innovation in IT drives innovation across the organization. How You Will Create An Impact The IAM Senior Governance and Controls Analyst will play a pivotal role in partnering with control owners and subject-matter experts within the Identity and Access Management (IAM) team to ensure that AIG remains compliant with its IAM obligations and requirements. This individual will lead engagement with internal and external stakeholders, ensuring the collection, validation, and delivery of relevant information that demonstrates the strength and effectiveness of AIG’s IAM controls. The ideal candidate will demonstrate a proven track record of delivering compliance-driven IAM projects, analyzing IAM processes and controls, or auditing IAM controls. Point of contact for internal and external audit partners as it relates to IAM controls (e.g., user access and identity lifecycle, privileged access management, authentication). Maintain comprehensive knowledge of IAM domains’ requirements within relevant frameworks and regulations (e.g., SOX, SOC1, ISO 27001, NIST, PCI DSS, DORA, US DOJ Executive Orders) and demonstrate the ability to interpret and integrate new regulatory requirements into AIG’s control environment. Assist in developing and maintaining IAM policies, standards, and procedures ensuring alignment with applicable regulatory requirements and leading IAM practices. Assist in conducting regular self-assessments, including establishing automated continuous monitoring, of the organization’s IAM control environment to identify and proactively remediate any unmitigated risks or inefficiencies. Identify and evaluate complex business and technology risks as it relates to IAM and relay opportunities for risk mitigation via automation/process transformation. Stay current with IAM industry trends and best practices, including the use of AI and automation to strengthen control compliance monitoring. What You Need To Succeed Bachelor's degree in a relevant field, with a strong background in IAM, including program, audits, assessment, remediation or security compliance management. Working knowledge of at least one of the following technologies preferred: SailPoint, CyberArk, Okta. Advanced knowledge of information systems auditing, controlling, monitoring and assessments. Demonstrated ability to assess processes design, define control points and identify appropriate evidence to support control effectiveness. Act in a project manager capacity to collect status on open issues from issue owners, summarize/consolidate updates, and share with internal partners. Identify opportunities to streamline and automate testing procedures, driving operational efficiency and continuous improvement. Excellent problem-solving skills with the ability to assess risks, solve complex (often ambiguous problems) and recommend remediations. Develop and maintain control procedure templates and playbooks to serve as a foundation for audits and assessments. Self-starter who takes ownership of their work and can work both independently as well as collaboratively in a fast-paced regulatory environment. Strong attention to detail and a critical, analytical mindset. Certifications (CISSP, CISA, CISM, CRISC) are a plus. AIG provides equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories. AIG is committed to working with and providing reasonable accommodations to job applicants and employees with disabilities.
#J-18808-Ljbffr