IDAM Analyst

Company description:

A rewarding place to work. At Rathbones, We invest in everyone's tomorrow that includes our people. We are always looking for future talent, and we can help you build a rewarding career with clear paths to progression and the opportunity to share in the success of our business.

Job description:

Role Title: IDAM Analyst

Division: Group Technology

Location: Liverpool

Contract: Permanent

Hiring Manager: Shani Weston

Working pattern: Hybrid

About the Role

The Identity and Access Analyst is responsible for ensuring secure, efficient, and compliant management of user identities and access rights across Rathbones. Leveraging Microsoft Entra ID (formerly Azure AD) as a core platform, this role oversees the full identity lifecycle from onboarding new users to managing changes in access (movers) and secure offboarding (leavers) with an emphasis on automation and governance. A key purpose is to implement and maintain Joiner-Mover-Leaver (JML) workflows using Entra IDs Lifecycle Management capabilities, ensuring that user provisioning and deprovisioning are handled promptly and correctly for each stage of employment. The analyst champions identity governance by conducting regular access reviews, administering privileged access controls, and enforcing security policies like Conditional Access and multi-factor authentication (MFA), in line with compliance requirements. They work closely with Information Security, IT Operations, HR, and Compliance teams to align identity & access management (IAM) practices with business policies and regulatory standards (including ISO27001, GDPR, and ISAE3402).

What youll be responsible for

• Identity Lifecycle Management: Implement and maintain identity lifecycle workflows for all user types (employees, contractors, etc.), leveraging Microsoft Entra ID Lifecycle Workflows for automated JML processing.
• Access Provisioning & Entitlement Management: Oversee the provisioning of access to applications, data, and network resources based on role-based access control (RBAC)
• Access Reviews and Attestations: Schedule and conduct periodic Access Reviews (user access recertification campaigns) for critical systems and high-risk roles to confirm that active users permissions remain warranted.
• Privileged Identity Management: Administer Privileged Identity Management (PIM) in Entra ID to manage elevated access. This involves configuring just-in-time access for admin roles (so that privileged access is only active for a limited time when needed).
• Audit Support and Compliance: Serve as a liaison for IAM in audits and compliance assessments. Work closely with internal and external auditors to provide evidence of access controls, process adherence, and effectiveness of identity governance. Prepare audit deliverables such as user access lists, privilege assignments, and activity logs.
• Policy and Documentation: Develop and maintain documentation for IAM procedures and policies. This includes standard operating procedures (SOPs) for user provisioning/deprovisioning, instructions for access request fulfillment, and guidelines for reviewers conducting access certifications.

About you

If you meet some of these criteria and are excited about the role, we encourage you to apply

• Excellent customer service skills.
• Ability to work under pressure as well as result oriented.
• Analytical thinker with strong trouble shooting and problem-solving skills
• Strong written skills required to produce documentation that is concise and accurate, with an ability
• Strong Service focus, looking to increase benefit to internal customers and clients through service excellence.
• A structured approach to problem solving and issue resolution.
• Excellent organisational and administrative skills.
• Team working actively seek to build constructive relationships with other teams & colleagues and develop trust and respect.
• Acts with integrity, sets high standards for themselves to influence a culture of high expectation and performance.
• Expertise in Microsoft Entra ID / Azure AD: Deep knowledge of Entra ID (Azure Active Directory) and its identity governance features including Lifecycle Workflows for JML automation, Access Review processes, and Privileged Identity Management
• Identity Lifecycle & Governance Experience: Hands-on experience implementing or administering identity lifecycle processes (user onboarding/offboarding, access recertifications, role-based provisioning) in an organization.
• RBAC and Access Control Concepts: Strong understanding of role-based access control (RBAC) principles, dynamic group management, and how to design roles/entitlements that align with job functions.

JBRP1_UKTJ