IAM Quality Assurance Analyst

The position is centric to an Associate Quality Assurance (QA) analysis and testing role in Information Security which performs specific, but not limited, functions:

-Provide QA and Completeness and Accuracy (C&A) testing to effectively manage risk within their risk appetite and meet business objectives. Facilitate communication and execution of enterprise-wide information security programs and deliver enterprise awareness training. 
-Conduct QA and C&A assessments on business applications, third parties and infrastructure and validate that security and technology controls are implemented to support business requirements. 
-Creates QA and C&A documentation that leads the development and/or implementation of significant or Bank-wide Technology Controls / Information Security strategies, policies, programs, tools and provide expert advice and guidance on technical solutions. 
-Leads the QA role of control and governance activities and identify and assess potential security risks, breaches/exposures impacting highly complex / high risk businesses or transformational (change the bank) strategic initiatives primarily interfacing with executive and/or functional stakeholders across the Bank. 
-Provides system support to all application owners and validates the integrity of data provided by owners. 

-Reviews and conducts requirements gathering between Identity and Access management system integration team and business analyst teams. 
-Distributes and supports the on-boarding of all regulatory (SOX/GLBA) application deliverables. 
-Quality Assurance experience with defining and overall testing framework, aids in the designing, implementing, and assessing application security processes, controls, and technologies. 
-Designing, developing, operating and managing comprehensive security architectures, strategies, policies and programs to assess, prioritize, and mitigate business risk with technology controls.
-The incumbent will also create and manage detailed analysis, analytical reporting, address feasibility, and consult with Senior InfoSec Leader.
-Developers protocol procedures as related to business-as-usual activities. 
-Participates in quarterly certification processing and communication to all application managers and owners.

Education:

University Degree or equivalent experience at minimum and Management Information Systems or related field or experience
5-7 years of experience in the design, development, and implementation of quality assurance testing.

Competencies:

Structured, organized and highly focus on documentation, reporting, collection of requirements.
>Experience using several of the following tools is required:  Advanced knowledge of Microsoft Office (Outlook, Word; Excel) and PowerPoint.
>SOX and GLBA audits experience.
>Strong oral and written communication skills required.
>Access and Identity Management experience in IdenityIQ/SailPoint