Information Security Analyst, Identity and Access Management

Remote | Nairobi

  • Organization: IRC - International Rescue Committee
  • Location: Remote | Nairobi
  • Grade: Junior level - Junior
  • Occupational Groups:
    • Development Cooperation and Sustainable Development Goals
    • Information Technology and Computer Science
    • Criminology, Extremism, Police Affairs and Anti-Corruption
    • Security and Safety
  • Closing Date:

The International Rescue Committee (IRC) responds to the world's worst humanitarian crises, helping to restore health, safety, education, economic wellbeing, and power to people devastated by conflict and disaster. Founded in 1933 at the call of Albert Einstein, the IRC is one of the world's largest international humanitarian non-governmental organizations (INGO), at work in more than 40 countries and 29 U.S. cities helping people to survive, reclaim control of their future and strengthen their communities. A force for humanity, IRC employees deliver lasting impact by restoring safety, dignity and hope to millions. If you're a solutions-driven, passionate change-maker, come join us in positively impacting the lives of millions of people world-wide for a better future.

Background: 

The IRC has defined a new strategic mission & vision, along with initiatives and key processes to meet strategic objectives. The IT department provides reliable and scalable application development and infrastructure for the IRC’s offices around the world, including technologically complicated locations. IRC’s ITHQ department includes 70 professionals primarily in the US & Nairobi and over 150 IT professionals in 40 counties supporting 13, 000 staff globally.

Job Overview/Summary: 

The Information Security Analyst, Identity and Access Management (IAM) is a Global Information Security (GIS) specialist accountable for supporting the organization’s identity and access management program, ensuring that the right individuals have the appropriate access to Information Assets. The Information Security Analyst, IAM participates in the development of workflows, system configuration, documentation, optimization and support related to access, while working across functional teams to deploy new functionality, etc.

Additionally, the Information Security Analyst, IAM is responsible for the on-going maintenance, testing, support and optimization of Identity Governance and Role Based Access Control (RBAC). While working mostly independently, the role also holds team responsibilities and leads small to medium scale projects and participates in continuous improvement activities. The Information Security Analyst, IAM will collaborate closely with core IT functions and business teams to implement and maintain IAM processes and tools that align with security best practices, compliance requirements, and organizational goals.

This role advises the IAM Program Manager on program health and oversees policy and standards implementation to ensure compliance with regulatory and donor requirements.

Major Responsibilities: 

This role is responsible for the execution of comprehensive IAM procedures for authentication, authorization, and access provisioning.

Identity Access Management and Architecture

  • Assists in managing user identity lifecycle including onboarding, offboarding, and account updates.
  • Monitor for and investigate incidents related to identities/workloads and recommend corrective action.
  • Provide identity and access management advisory and consulting to internal stakeholders.
  • Develop and maintain training materials related to identity and access management.

Compliance and Governance

  • Regularly audit and monitor access rights to detect anomalies and mitigate risks.
  • Respond to internal/external audit findings and implement remediation measures.
  • Participate in ongoing auditing and risk assessments, and implementation of audit recommendations.

Key Working Relationships: 

Position Reports to: Senior Program Manager, Identity and Access Management

Indirect Reporting: Regional and country program leadership, IT leadership, IRC privacy office
Other Internal and/or external contacts: 

Internal: IT staff across regions, HQ and Nairobi iHub, global Safety and Security Team, line personnel across all regions, emphasis on International Programs. 

External: Industry/sector peers and vendors. Law enforcement if needed for incident response.  Participates in sector discussions of IT security-related issues. 

 

Job Requirements: 

Education: Bachelor’s degree in an information systems-related field preferred.

Work Experience: 2-3 years’ experience in operations in a global organization; at least 1 year managing user accounts.

Demonstrated Skills and Competencies: 

  • Proficiency with directory services, such as Active Directory (AD) or LDAP directories in general.
  • Working understanding of authentication, authorization, role-based access, least privilege and segregation of duties access control concepts.
  • Strong problem-solving and analytical skills, with the ability to assess complex security threats and develop effective solutions.
  • Good interpersonal skills required to help identify key relationships and to maintain them.
  • Strong oral and written communications skills sufficient for presentation and technical standards development.

Language Skills:  English required; French and Arabic a plus

Certificates or Licenses: Security, Compliance, and Identity Fundamentals SC-900 strongly preferred.

Working EnvironmentStandard office work environment; work location may be another IRC office.

Standards of Professional Conduct: The IRC and IRC workers must adhere to the values and principles outlined in the IRC Way – Code of Conduct.  These are Integrity, Service, Equality and Accountability.  In accordance with these values, the IRC operates and enforces policies on Beneficiary Protection from Exploitation and Abuse, Child Safeguarding, Harassment-Free Workplace, Diversity Equality and Inclusion (DEI), Fiscal Integrity, Anti-Retaliation, Combating Trafficking in Persons and several others.

Narrowing the Gender Gap: The International Rescue Committee is committed to narrowing the gender gap in leadership positions. We offer benefits that provide an enabling environment for women to participate in our workforce including a flexible hour (when possible), maternity leave, transportation support, and gender-sensitive security protocols.

Equal Opportunity Employer: IRC is an Equal Opportunity Employer. IRC considers all applicants on the basis of merit without regard to race, sex, color, national origin, religion, sexual orientation, age, marital status, veteran status, disability, or any other characteristic protected by applicable laws

               

Standard of Professional Conduct: The IRC and the IRC workers must adhere to the values and principles outlined in the IRC Way – our Code of Conduct. These are Integrity, Service, Accountability, and Equality.

Cookies: https://careers.rescue.org/us/en/cookiesettings

We do our best to provide you the most accurate info, but closing dates may be wrong on our site. Please check on the recruiting organization's page for the exact info. Candidates are responsible for complying with deadlines and are encouraged to submit applications well ahead.
Before applying, please make sure that you have read the requirements for the position and that you qualify.
Applications from non-qualifying applicants will most likely be discarded by the recruiting manager.
Fellow badge

This feature is included in the Impactpool Fellowship.

Become a Fellow and get a summary of the job description to quickly understand the role and the requirements

Become a Fellow Signin