IAM Security Analyst

Available Locations: Mexico City, Mexico, or Austin, Texas, or Washington, DC
About the role
As an Identity and Access Management (IAM) Security Analyst you will play a key role in efficiently managing user identities and access across the enterprise. You will be responsible for implementing technologies and designing processes to ensure users have authorized access to resources and systems.
What You'll Do

• Establish and execute access governance programs and policies
• Define and enforce access control policies, including role-based access control (RBAC), attribute based access control (ABAC), and policy based access controls (PBAC)
• Ensure access adhere to the principle of least privilege and segregation of duties (SoD).
• Develop and execute an access certification program and scale to all systems
• Design, implement, and manage Identity Access & Governance policies and procedures.
• Define and enforce privileged access management (PAM) policies to secure sensitive systems and data.
• Manage user onboarding, offboarding, and role changes, ensuring adherence to security policies and compliance requirements.
• Collaborate with cross-functional teams, including IT, security, and compliance, to ensure IAM aligns with business goals.
• Communicate IAM-related updates and recommendations to stakeholders.
• Maintain comprehensive documentation of IAM policies, processes, and configurations.
• Generate reports and metrics related to IAM activities and security posture.
• Stay current with industry best practices, regulations, and compliance standards related to IAM, such as FedRamp, SOX, GDPR, PCI, and NIST.
• Provide operational support of IAM systems including an on-call rotation that may include after hours calls

Examples of desirable skills, knowledge and experience.

• In-depth understanding of access governance
• Experience in Identity Governance & Administration (IGA) solutions
• Performing policy enforcement, role management, and access certifications
• Experience implementing privileged access management (PAM)
• Experience developing IAM security standards and policies
• Preferred background in scripting and/or application development to automate identity and access management processes.

Compensation
Compensation may be adjusted depending on work location.

• For Colorado-based hires: Estimated annual salary of $123,000 - $151,000
• For New York City, Washington, and California (excluding Bay Area) based hires: Estimated annual salary of $139,000 - $169,000
• For Bay Area-based hires: Estimated annual salary of $146,000 - $178,000

Equity
This role is eligible to participate in Cloudflare's equity plan.
Benefits
Cloudflare offers a complete package of benefits and programs to support you and your family. Our benefits programs can help you pay health care expenses, support caregiving, build capital for the future and make life a little easier and fun! The below is a description of our benefits for employees in the United States, and benefits may vary for employees based outside the U.S.
Health & Welfare Benefits

• Medical/Rx Insurance
• Dental Insurance
• Vision Insurance
• Flexible Spending Accounts
• Commuter Spending Accounts
• Fertility & Family Forming Benefits
• On-demand mental health support and Employee Assistance Program
• Global Travel Medical Insurance

Financial Benefits

• Short and Long Term Disability Insurance
• Life & Accident Insurance
• 401(k) Retirement Savings Plan
• Employee Stock Participation Plan

Time Off

• Flexible paid time off covering vacation and sick leave
• Leave programs, including parental, pregnancy health, medical, and bereavement leave