The Identity and Access Management (IAM) team is responsible for securing employee access to our core applications in the most efficient, compliant, and user-friendly manner, innovatively using the latest industry standards and tools. Our goal is to become the gold standard for IAM worldwide, and we are already on our way, recently winning Oracle’s annual Identity Management Innovation award.
Visa's IAM eco-system includes an extensive, and highly customized, rich Identity Management platform implementation.  The team has successfully implemented many of the core components. With a constant moving and expending environment, the IAM team is exploring all processes and technology to expend the security coverage and improve the end user experience. With the additional features and the goal of extensive coverage comes a higher level of complexity, criticality, overall usage, and dependency on the environment.Join a growing, fast-paced and high-performance Access Controls team. The ideal candidate for position will be a proactive and self-motivated professional who will work with other team members to manage access controls for Visa key information resources residing on multiple platforms, with a focus area in Active Directory, EntraID, Windows Servers and automation. The successful candidate will aid in the continuous improvement of the identity and access management practices looking for opportunities to automate where possible.Essential FunctionsProvide Subject Matter Expertise (SME) over IAM practices, policies, and procedures for Active Directory, Windows Systems, and Cloud Platforms.Implement and enforce Identity and Access Management policies in Active Directory, ensuring access approvals, rogue access monitoring, credential strengthening and security (including passwords and keytabs), credential reuse monitoring, as well as support for the full lifecycle of identities and access.Govern access controls for cloud platforms, particularly Microsoft EntraID, including Privileged Identity Management (PIM), federated SSO groups, Managed IDs, and Service Principal Names (SPNs) across the entire hierarchy.Complete access request processing as per pre-defined procedures and within agreed Service Level Agreements (SLAs). Resolve problem tickets and assist other security analysts as needed.Demonstrate proficiency in scripting languages such as PowerShell or Python for the automation of IAM processes.Identify opportunities to automate existing manual processes using Generative AI and scripting, specifically within Access and Identity Management practices.Diligently document access management procedures for assigned platforms, databases, and applications. Keep the access management procedures up-to-date.Provide incident response and remediation for identity-related security incidents.Assist with developing robust monitoring and alerting mechanisms for identity and access management activities.Develop new management metrics and concise reporting to support IAM activities.This is a hybrid position. Expectation of days in office will be confirmed by your hiring manager.