Identity and Access Management (IAM) Engineer _ Contract

Employer: NTT DATA Singapore Pte Ltd

Employment Type: 24-month renewable contract

Work Location: Central Singapore

We are seeking an experienced Identity and Access Management (IAM) Engineer / Consultant to support enterprise-scale IAM governance and compliance initiatives. The role involves managing user access reviews, privileged access management, and IAM audits within a regulated environment.

User Access Review (UAR) Management

• Manage monthly, quarterly, and annual user access certification cycles to ensure compliance with internal and regulatory policies.
• Oversee end-to-end UAR lifecycle from data extraction to certification closure.
• Validate access data across multiple systems and coordinate stakeholder approvals.
• Track exceptions and follow up with system owners to remediate compliance issues.
• Maintain comprehensive UAR documentation for audit and improvement purposes.

Privileged Access Management

• Manage privileged accounts within CyberArk or similar PAM tools.
• Conduct regular reviews ensuring least-privilege and need-to-know principles are maintained.

IAM Audit and Compliance

• Conduct audits to assess IAM control effectiveness and identify access gaps.
• Analyse access patterns, detect anomalies, and identify orphaned accounts.
• Prepare audit reports, risk assessments, and remediation recommendations.
• Support internal/external audits with required documentation and evidence.

Identity Management Operations

• Support IAM cleanup, automation, and operational improvement initiatives.
• Participate in UAT and collaborate with engineering teams on solution design.

Compliance and Risk Management

• Ensure IAM activities comply with ISO/NIST/COBIT frameworks and data protection standards.
• Perform risk-based assessments and track remediation progress.

Process Improvement

• Document and standardise IAM processes and SOPs.
• Recommend automation or workflow improvements to enhance efficiency.

Technical Experience

• Minimum 5 years of experience in Identity and Access Management (IAM), including user access reviews and privileged access management.
• Hands-on experience with CyberArk or similar PAM tools, and identity governance platforms (e.g., SailPoint, Oracle IDM, or Saviynt).
• Strong knowledge of RBAC, SoD, and principle of least privilege.

Audit & Compliance Skills

• Proven experience conducting IAM or SOX compliance audits in large enterprises.
• Familiarity with COBIT, ISO 27001, NIST, or similar frameworks.
• Strong analytical and documentation skills for audit reporting and risk assessments.

Soft Skills

• Excellent stakeholder management and communication skills.
• Strong organisational and multitasking ability for handling concurrent review cycles.
• Self-driven, meticulous, and able to work effectively with both technical and business teams.

Preferred Certifications

• CISA, CISM, CISSP, or IAM vendor certifications (e.g., CyberArk Defender, SailPoint IdentityIQ).
• ITIL or ISO 27001 Lead Auditor certifications advantageous.

Interested candidates are kindly requested to email their CV with their experience to sandeep.sringeripai@global.nt