Identity and Access management Officer

About HSBC:

HSBC Saudi Arabia provides investment banking services to the full spectrum of corporate and institutional clients in both the private and government sectors, including public companies; private companies and establishments; funds; government agencies; and family businesses and offices.

Job Purpose (overall high level summary of the role)

Main responsibilities are access provisioning on the Business Applications, Active Directory and FTP for this job title and provides the evidences of his/her owned action for Monitoring queries. This responsibilities are carried out in line with the IAM Standards and Regulatory Principles as defied in the local procedures.

• System user account creation/ update/ remove and user access rights definition/ update/ remove operations on the Business Applications/ Active Directory/Shared Folders
• Solve the IAM related problems via Incident Records
• Complete of the IAM Operations related projects in due time
• To be proceed the IAM process in line with HSBC IAM Standards and local Regulations principles
• Apply the approve and assessment process according to procedures for request completion
• Proactive actor in Daily/ Weekly/ Monthly periodical meetings
• Understand of all the IAM operations procedures, user manuals and order quality services to be have the high quality services for the internal customers
• Reporting to IAM Manager
• Apply the IAM Operations process improver projects
• Keeping operational SLA for ticketing system requests and follow the IAM Ops Team’ s SLA and manage the request completion according to the outputs.
• Provides the request completion in SLA and minimum level operational false. Determines possible operational risks areas and work on take necessary action on rid of this risk.
• Reviews of projects and do the IAM Operations tests and provides apply on the production.
• Applying the periodical review of procedures and keeps all procedures as updated
• Provides necessary evidences for owned actions to the Local Monitoring queries and ensures the team to be line with local processes
• To be designing of the system Access profiles within consider of the segration of duties rule in line with the HSBC and Regulatory IAM standards.
• Provide Information Security guidance to IT Department projects using a risk based approach and ensures Information Security measures are embedded on all IT projects and the adequate security controls are in place to achieve the desired protection level.
• Accountable of the creation, change and deletion of HSBC SA systems users and making sure that access rights must be documented, and approved by the user’s management or an authorized delegate. Assure Access control passwords are distributed to system users by secure means
• Ensure System access rights are reviewed at least annually, and are cancelled when no longer required
• Support the Team with all activity related to PAM
• Provide the consultancy and guidance to the stakeholders
• To closely monitor the actions taken with the service owners in order to ensure the conpatibility of privileged account access with the standards.
• To ensure the operation of Identity and Access Management controls on their critical systems.
• Advising and providing guidance on operating Identity and Access Management controls on systems outside critical systems.
• Ensure all 3rd Party system access are inline with the HSBC Identity and Access management policy

Local Job Requirements

Job Dimensions:

Represent the Team in several project, approve the projects behalf of HSBC Saudi IAM Operations Team.

Job Context:

•Provide restricted access right on the operational systems, databases and IAM/ Tools

• Provides data integrity, confidentiality availability on the IT systems with restricted access rights with apply the IAM and Regulatory Operations Standards on the demand process

•Monitoring of IAM Operations activities on the IT systems

• Provide job scope metrics, dashboards, reports for the management staff

Qualifications / Experience ( For the role – not the role holder. Minimum requirements of the role.)

• 4 years university degree in information systems or a related field
• Good command of English language
• Intermediate level technical understanding of computer technologies
• Have knowledge on Operational systems and databases
• Have knowledge on Encryption technologies
• IT Security or IT Audit experience is preferable
• Analytical thinking, problem solving skills
• Ability to work under pressure and within strict time limits
• Good communication skills
• Min 3-4 years Job experience in Access Management
• Project Management experience is preferable