Create Alert
Apply now »

Identity Governance and RBAC Engineer

Date:  5 Mar 2025
Location: 

Bellville, Western Cape, ZA

Company:  Sanlam Group

Who are we?

Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology governance and risk orchestrator for technology across Sanlam.

What will you do?

This role is responsible for day to day operations and administration of Sanlam's processes and technologies towards delivering the organization's Identity Governance and Role Based Access Platforms & Services. Develops and implements new solutions based on a wide variety of different technologies. Assists with investigations and resolution of security incidents. Provides analytical and technical support to team members and business areas. Develops technologies to automate security monitoring and creates security baseline documents and standards.

What will make you successful in this role?

  • Support access attestation and recertification processes and deliverables as part of an autonomous service-focused team. 
  • Defines business cases as required.
  • Administer, Implement and operate Identity Governance and Administration Platforms.
  • Build, deploy and maintain access attestation / recertification platforms & integration.
  • Implement and operate Identity and Role Based Access Platforms & Services
  • Collaborate with Security Architecture as is applicable to IAM and Role Based Access platforms and services.
  • Collaborate with stakeholders, including business leaders, project managers, developers and architects to understand requirements and constraints.
  • Design and implement procedures and best practices in Identity Governance and Administration (IGA).
  • Active engagement with technology partners to deliver and integrate Role Based Access solutions and Self-Service across platforms.
  • Technical investigation as applicable to Identity and access Governance systems and processes.
  • Logical Access Incident Management:
    • Escalate according to agreed procedures if risk is high. Risk management procedures
  • Assist Architecture and Engineering with Identity and Access Process design and optimization.
  • Project Interactions:
    • Provide Information security requirements (related to logical access administration and review) to project

Qualifications

  • Grade 12
  • IT related tertiary qualification
  • Appropriate Certification (Microsoft Certified: Identity and Access Administrator Associate preferred, MCSA)

Experience and Knowledge

  • A minimum of 2 to 5 years Logical Access & Microsoft Administration experience (scripting experience)
  • Proven experience with user and access management on Windows systems (Microsoft Active Directory; Microsoft Entra ID / Azure AD)
  • IBM RACF & IBM Mainframe experience
  • IBM Tivoli Identity Manager experience preferred;
  • Experience in logical access administration and information security principles (Security+ preferred).
  • Appropriate Certification (Microsoft Certified: Identity and Access Administrator Associate preferred, MCSA)
  • MS PowerShell Scripting experience (essential)
  • In Depth Understanding of File Share and NTFS permissions including inheritance (with experience) including Logon scripts
  • Good understanding of identity and access management principles (like ‘least privilege’ and segregation of duties)

Preferable

  • Exchange / Office 365 Administration (On-Prem Exchange admin experience)
  • Basic understanding of Cloud Identity and Access Management (AWS preferred, Azure)
  • Proven experience in administration of Privileged Access Management accounts (PAM)
  • Identity and access experience on any of the following: IBM Tivoli Identity Manager; Mainframe applications; J.D.Edwards
  • Knowledge of JSON templates, PowerShell, CLI’s, Shell, Python.
  • Active Directory and Exchange engineering knowledge will be an advantage

Personal Attributes

Interpersonal savvy - Contributing independently
Tech savvy - Contributing independently
Plans and aligns - Contributing independently
Optimises work processes - Contributing independently

Build a successful career with us

We’re all about building strong, lasting relationships with our employees. We know that you have hopes for your future – your career, your personal development and of achieving great things. We pride ourselves in helping  our employees to realise their worth. Through its five business clusters – Sanlam Fintech, Sanlam Life and Savings, Sanlam Investment Group, Sanlam Allianz, Santam, as well as MiWay and the Group Office – the group provides many opportunities for growth and development.

Core Competencies

Being resilient - Contributing independently
Collaborates - Contributing independently
Cultivates innovation - Contributing independently
Customer focus - Contributing independently
Drives results - Contributing independently

Turnaround time

The shortlisting process will only start once the application due date has been reached. The time taken to complete this process will depend on how far you progress and the availability of managers. 

Our commitment to transformation

The Sanlam Group is committed to achieving transformation and embraces diversity.  This commitment is what drives us to achieve a diverse, inclusive and equitable workplace as we believe that these are key components to ensuring a thriving and sustainable business in South Africa.  The Group's Employment Equity plan and targets will be considered as part of the selection process.

Apply now »