Senior Identity & Access Management Analyst

4-6 years
a month ago 5 Applied
Job Description

ZSis a place where passion changes lives. As a management consulting and technology firm focused on transforming global healthcare and beyond, our most valuable asset is our people. Here you'll work side-by-side with a powerful collective of thinkers and experts shaping solutions from start to finish. At ZS, we believe that making an impact demands a different approach and that's why here your ideas elevate actions, and here you'll have the freedom to define your own path and pursue cutting-edge work. We partner collaboratively with our clients to develop products that create value and deliver company results across critical areas of their business including portfolio strategy, customer insights, research and development, operational and technology transformation, marketing strategy and many more. If you dare to think differently, join us, and find a path where your passion can change lives.

Our most valuable asset is our people.

AtZSwe honor the visible and invisible elements of our identities, personal experiences and belief systems-the ones that comprise us as individuals, shape who we are and

make us unique. We believe your personal interests, identities, and desire to learn are part of your success here. Learn more about our diversity, equity, and inclusion efforts and the networks ZS supports to assist our ZSers in cultivating community spaces, obtaining the resources they need to thrive, and sharing the messages they are passionate about.

Senior IAM Analyst

As a Senior IAM Analyst, you will contribute and be responsible to plan and implement secure and user-friendly auth solutions for ZS software applications and infrastructure that adhere to Identity and Access Management best practices. This position will work with ZS's Identity Management software, as well as 3rd party solutions, such as Okta, Azure AD and ADFS, PingFederate, AWS Cognito & AWS IAM services, and various MFA solutions.

Primary Responsibilities

Identity and Access Management:

  • Design, implement, and manage end-to-end Identity and Access Management solutions.
  • Establish Identity Federation solutions with ZS software and customer identity providers (IdP) using industry standard protocols, such as SAML2.0, OAuth 2.0/OpenID connect.
  • Develop and maintain IAM policies, procedures, and documentation.

Technology Expertise:

  • Demonstrate in-depth knowledge and hands-on experience with Okta (CIAM and Workforce), AWS Cognito, Azure Active Directory/AD FS, and PingFederate.
  • Serve as a subject matter expert for IAM technologies, providing guidance and support to the team.

Integration and Deployment:

  • Lead the integration of IAM solutions with various applications and systems.
  • Collaborate with cross-functional teams/client IT teams to ensure seamless deployment and integration processes.

Troubleshooting and Support:

  • Collaborate with various stakeholders (internal/external) to troubleshoot and resolve access-related problems.
  • Provide advanced-level support for IAM-related incidents and issues.
  • Conduct in-depth investigation/RCAs for the systems in scope and taking necessary preventive measures to avoid recurrences.

Security and Compliance:

  • Implement and enforce security best practices within the IAM framework (RBAC, least privilege, MFA, Password rotation).
  • Ensure compliance with industry regulations and standards (such as NIST).

Additional qualifications/skills/requirements

ZS welcomes candidates with degrees in computer science, information security, information technology or a related discipline. A demonstrated record of success and significant experience/understanding of identity and access management is required. Additionally, we seek individuals with the following qualifications:

  • At least 4 years of experience with cloud based IAM solutions such as Okta/Azure AD, identity and access management and MFA.
  • Should have experience with developing/managing IAM policies for CIAM and Workforce users on platforms like Okta or Azure AD.
  • Should be proficient and have hands-on experience with federation protocols and concepts (SAML2.0, OAuth 2.0/OpenID connect, RADIUS, SCIM, JIT).
  • General technology skills:
    • Knowledge of operating systems, applications, and services
    • Understanding of networking concepts and network protocols
    • Familiarity with different cloud computing models, like IaaS, PaaS and SaaS, and the cloud computing landscape.
    • Knowledge of AWS services is a big plus.
  • Strong verbal and written communication skills with ability to articulate results and issues to internal and external teams.
  • Proven ability to work creatively and analytically in a problem-solving environment.
  • Excellent organizational skills with ability to work with a global team and contribute to the overall timely delivery of multiple projects.
  • Experience of delivering quality work on defined tasks with limited oversight.
  • Ability to quickly learn new platforms, languages, tools, and techniques as needed to meet project requirements.
  • This role requires healthy doses of initiative and the ability to remain flexible and responsive in a very dynamic environment.
  • Ability to work around unknowns and develop robust solutions.
Perks & Benefits:
ZS offers a comprehensive total rewards package including health and well-being, financial planning, annual leave, personal growth and professional development. Our robust skills development programs, multiple career progression options and internal mobility paths and collaborative culture empowers you to thrive as an individual and global team member.
We are committed to giving our employees a flexible and connected way of working. A flexible and connected ZS allows us to combine work from home and on-site presence at clients/ZS offices for the majority of our week. The magic of ZS culture and innovation thrives in both planned and spontaneous face-to-face connections.
Considering applying
At ZS, we're building a diverse and inclusive company where people bring their passions to inspire life-changing impact in global healthcare and beyond. We are most interested in finding the best candidate for the job and recognize the value that candidates with all backgrounds, including non-traditional ones, bring. If you are interested in joining us, we encourage you to apply even if you don't meet 100% of the requirements listed above.
ZS is an equal opportunity employer and is committed to providing equal employment and advancement opportunities without regard to any class protected by applicable law.
To Complete Your Application:
Candidates must possess or be able to obtain work authorization for their intended country of employment.
ZS is committed to providing and maintaining a safe workplace. In order to keep its employees safe, ZS recommends that all its employees and contractors be fully vaccinated against COVID-19. Proof of vaccination can be voluntarily provided upon acceptance of offer of employment.
Find Out More At:




OAuth 2.0
AWS Cognito
OpenID connect
Job Source:

ZS Associates is a management consulting and professional services firm focusing on consulting, software, and technology, headquartered in Evanston, Illinois that provides services for clients in healthcare, private equity, and technology. The firm was founded in 1983 by two professors at Northwestern University who developed sales force alignment models using the world&#8217&#x3B;s first personal-computer-aided territory mapping system. ZS continues to offer sales force alignment service to this day, in addition to a range of professional services, many of which are supported by advanced analytics.
The firm employs more than 10,000 employees [6] in 25 offices in North America, South America, Europe and Asia.

Career Advice to Find Better