Bachelor's degree or equivalent experience in a related field
Proven experience as a Systems Analyst with a focus on data access management and information security
In-depth knowledge of data access control frameworks, methodologies, and technologies, including RBAC and ABAC
Proficiency in scripting or programming languages (e.g., SQL, Python) for data analysis and automation
Requirements:
Analyze data access requirements by collaborating with business stakeholders, data owners, and IT teams to identify appropriate access controls, user roles, and permissions
Design data access management systems, including access control policies, data lineage, and audit frameworks, to ensure secure and efficient data flow across the organization
Implement access control mechanisms by configuring and deploying RBAC, ABAC, and other models to enforce data access policies
Establish and maintain data access governance processes, including access request workflows, access certification, and periodic access reviews to ensure regulatory and policy compliance
Job description
Position: Senior Systems Analyst
Location: Remote Duration: Contract Rate: DOE
Bachelor's degree or equivalent experience in a related field
Proven experience as a Systems Analyst or similar role, with a focus on data access management and information security.
In-depth knowledge of data access control frameworks, methodologies, and technologies.
Familiarity with access control models such as RBAC, ABAC, and others.
Strong understanding of database management systems, network protocols, and system architectures.
Proficiency in scripting or programming languages (e.g., SQL, Python) for data analysis and automation tasks.
Ability to create use cases and acceptance criteria.
Excellent analytical and problem-solving skills with the ability to evaluate complex systems and identify security risks.
Strong communication skills to effectively collaborate with stakeholders at all levels of the organization.
Detail-oriented mindset with a commitment to maintaining accurate documentation and ensuring compliance.
Ability to work independently, prioritize tasks, and manage multiple projects simultaneously.
Responsibilities.
Analyze Data Access Requirements: Collaborate with business stakeholders, data owners, and IT teams to understand data access requirements and identify the appropriate access controls, user roles, and permissions needed to protect sensitive data.
Design Data Access Management Systems: Develop and design data access management systems, including access control policies, data lineage, and audit frameworks, to ensure the secure and efficient flow of data across the organization.
Implement Access Control Mechanisms: Configure and deploy access control mechanisms such as role-based access control (RBAC), attribute-based access control (ABAC), and other access control models to enforce data access policies and restrictions.
Data Access Governance: Establish and maintain data access governance processes, including access request workflows, access certification, and periodic access reviews, to ensure compliance with regulatory requirements and internal policies.
Data Access Testing Strategy: Collaborate with stakeholders, including business users, data owners, and IT teams, to define the data access testing strategy and objectives. Align testing activities with regulatory requirements, industry best practices, and organizational policies.
Test Planning and Design : Develop test plans and scenarios to evaluate the effectiveness of data access controls. Define test objectives, data sets, expected outcomes, and success criteria. Ensure that testing activities cover various access points, such as databases, applications, and network infrastructure.
Access Control Auditing: Conduct regular audits and reviews of access controls to identify any vulnerabilities or unauthorized access attempts. Collaborate with the IT security team to remediate identified risks and implement appropriate countermeasures.
Collaborate with IT Teams: Work closely with IT teams, including database administrators, system administrators, and security analysts, to implement and enforce data access controls at various technology layers, such as databases, applications, and network infrastructure.
Documentation and Training: Create and maintain comprehensive documentation, including data access control policies, procedures, and user guides. Create training sessions for employees on data access management practices and policies.
Stay Up-to-Date with Industry Trends: Stay abreast of industry trends, emerging technologies, and regulatory changes related to data access management. Propose and implement enhancements to existing processes and systems to adapt to evolving requirements.
