[Hiring] IAM Analyst @Paramo Technologies

Role Description

You will be responsible for reviewing, improving, and securing identity and access management across the organization, ensuring that user permissions, authentication mechanisms, and privileged access are properly designed, implemented, and monitored. You will complement the User Lifecycle Management function by focusing on access governance, permission reviews, access logs analysis, and the continuous improvement of IAM, PAM, and secrets management practices.

• Complement the User Lifecycle Management function by focusing on access governance rather than day-to-day user provisioning.
• Review application-by-application (both on-premise and cloud) the permissions model, including:
  • Available permissions
  • Permissions assigned to roles or attributes
  • Detection of insecure, excessive, or unnecessary access rights
• Validate that applications correctly enforce authentication controls, including the use of corporate MFA where applicable.
• Review and analyze access logs from identity and access-related tools such as:
  • ManageEngine ADAudit
  • Cloudflare Zero Trust
  • Other authentication and access control systems
• Identify malicious, suspicious, or insecure access patterns and support investigations when required.
• Improve and maintain the organization's password management solution.
• Analyze the organization's privileged access needs and evaluate PAM solutions available in the market.
• Support the selection, design, and implementation of new PAM tools when required.
• Leverage HashiCorp Vault for secrets management when reviewing or securing applications that can benefit from it.
• Promote and support access control models based on attributes (ABAC) rather than static roles.
• Identify risks related to access accumulation, privilege creep, and temporary access needs.
• Ensure access controls follow the principle of least privilege and are aligned with business needs.
• Collaborate with application owners, infrastructure teams, and other security roles to remediate access-related issues.
• Ensure IAM-related findings, reviews, and actions are properly documented and tracked through tickets (Jira).
• Document new procedures or update existing ones related to IAM, access reviews, PAM, and secrets management.
• Ensure documentation is accurate, comprehensive, and delivered on time.
• Create reports related to access reviews, MFA coverage, privileged access, and IAM risks.
• Engage in ongoing training and professional development to stay current with IAM, PAM, and identity security best practices.
• Share knowledge and expertise to foster a culture of secure access and identity governance.
• Adhere to different policies set out by the organization.
• Keep your work organized and traceable through tickets (Jira).

Qualifications

• Bachelor's Degree in computer science, telecommunications, cybersecurity, or other related academic fields.
• At least 3 years of work experience in IAM, access governance, or identity-related security roles.
• Hands-on experience reviewing user permissions and access models across multiple applications.
• Experience working with directory services and identity platforms (e.g. Active Directory, Azure AD).
• Experience analyzing authentication and access logs.
• Understanding of MFA, conditional access, and identity-based security controls.
• Familiarity with password management and privileged access management concepts.
• Experience working with or integrating secrets management solutions.
• Strong analytical mindset with attention to detail.
• Ability to work independently and as part of the Information Security Team under minimal supervision.
• Eager to learn and continuously improve identity security practices.
• Strong documentation and reporting skills.

Requirements

• Solid foundations in authentication flows, authorization models, and cybersecurity.
• Ability to understand how access decisions are enforced in different systems and applications.
• Strong written and verbal communication skills in English and Spanish (B2/C1).

Benefits

• 22 days of annual leave.
• 10 days of national holidays.
• Health Insurance options.
• Access to e-learning platforms.
• Possibility of on-site English classes in some countries, and more.