Job Description

Job Title: Security Analyst IAM

About SLC
Student Loans Company is a non-profit making Government-owned organisation set up in 1989 to provide loans and grants to students in universities and colleges in the UK.We are responsiblefor student support delivery in the UK.
Our Purpose
Our Purpose is to enable our customers to invest in their futures by delivering secure, accurate and efficient assessment, payment and repayment services.
Our Vision
SLC will deliver outstanding digital products and services to its customers and stakeholders and will respond effectively, quickly and flexibly to the demands of ministers and policymakers at the Department for Education and the devolved administrations.
Job Details
Overview of department:
The post holder will sit within the Technology Group (TG) Security team focussed on ensuring that SLC technical infrastructure at all levels and all stored data is fully safeguarded against threats and attack.

Grade: G3

Reporting to:

Senior Security Analyst IAM
Budget Responsibility:
None

Line Management Responsibility:

None
Job Purpose:
The identity and access analyst will be responsible for assisting with managing and governing user systems accounts for SLC systems. The role holder will have exceptional communication and inter-personal skills.
Key responsibilities:
  • Working within the Technology Group Security team you will take an active role in overseeing compliance with corporate Identity Management policy
  • Ensure that Joiners, Movers and Leavers processes are operated effectively
  • Operate and maintain the companies Identity Management Platform
  • Report on the effectiveness of the user lifecycle process
  • Be an advocate for Information Security across multiple business units and ensure that systems are compliant with internal and government security standards.
  • To monitor and maintain the security of Student Loans Company information systems.
  • Development, maintenance and promotion of technical ICT security procedures in response to defined risk, threats and technological requirements.
  • Contribute to security management processes across ICT departments.
  • To monitor and assess the impact of vulnerabilities and work with ICT to coordinate appropriate remedial actions.
  • Monitor security tools to detect security events & incidents; Report and escalate any security breaches to the Information Technology Security Officer
  • Provide guidance and support to business teams on security standards and industry best practice

Knowledge, Skills and Experience:

  • Practical experience in Information Security.
  • Preferred previous experience in an Identity Management or User Access role.
  • A good ICT background in ICT infrastructure (UNIX, NT, Windows, LAN/WAN/VLAN, firewalls, web servers, IDS etc) and/or systems and application development (Oracle, Java, UNIX, Notes, web services etc).
  • Knowledge of current security standards.
  • Experience in developing of technical security documentation and review of ICT technical documentation.
  • Knowledge of identity and user lifecycle management tools.
Preferably holder of CISSP (Certified Information Systems Security Practioner) qualifications

1