We are seeking a self-driven Business Analyst with deep expertise in Identity & Access Management (IAM) and Privileged Access Management (PAM). In this role, you will translate business needs into scalable security solutions, ensuring alignment between stakeholders and engineering teams. The ideal candidate will have strong analytical and documentation skills and a solid understanding of IAM concepts, architecture patterns, and policy-driven access models.
Req: 1028403719
Responsibilities
-
Gather, analyse, and document business and functional requirements with minimal daily oversight
-
Collaborate with business stakeholders, security architects, and engineering teams to define PAM use cases and access control models
-
Translate business requirements into functional specifications for privileged access controls, workflows, and acceptance criteria
-
Facilitate workshops to identify privileged access scenarios across infrastructure, applications, and cloud platforms
-
Define and document privileged account types, access levels, and entitlements (e.g., admin, service accounts, break-glass access)
-
Work with engineering teams to define onboarding requirements for privileged accounts into vaults and access control systems
-
Partner with compliance and risk teams to ensure policies meet regulatory and audit expectations, including traceability and reporting
-
Support user acceptance testing (UAT) by defining test scenarios, validating outcomes, and ensuring alignment with business intent
-
Maintain clear and structured documentation, including BRDs, FRDs, process flows, and decision matrices
Requirements
-
5–8+ years of experience as a Business Analyst in the IAM/Security domain
-
Strong experience with PAM implementations
-
Understanding of PAM architecture components such as vaults, session managers, credential providers, and privileged session monitoring
-
Proficiency in documentation and analysis tools (e.g., Confluence, JIRA, Visio)
-
Strong understanding of IAM concepts including SSO, Federation (SAML/OIDC), MFA, Directory Services, and access governance
-
Ability to work effectively with cross-functional teams including security, engineering, product, and compliance
-
Excellent communication and stakeholder management skills
EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our clients, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.
Engineer the Future with a Career at EPAM
EPAM Canada welcomes and encourages applications from candidates with disabilities. Please contact WFA Human Resource CA [email protected] if you have questions in this regard, or if you require an accommodation to complete the application process. Click here to review EPAM’s Accessibility for Ontarians with Disabilities Accessibility Policies and Multi-Year Access.
An artificial intelligence system is software that is developed with one or more techniques that can, for a given set of human-defined objectives, using algorithmic information processing, generate outputs such as content, predictions, recommendations, or decisions with varying levels of autonomy (“AI”). Tasks that humans have traditionally done by thinking and reasoning are increasingly being done by, or with the help of, AI to help create efficiencies.EPAM may use AI during the recruitment process, in connection with collecting or processing your personal data. Some (non-exhaustive) examples of tasks that EPAM may use AI for include conducting initial screening, creating transcripts of interviews, and assessing applications/CVs against defined job description criteria to make suggestions to the individuals evaluating your candidacy.Your personal data and the results of any processing are not shared with AI applications outside of EPAM infrastructure. While EPAM may use AI to help create efficiencies during the recruitment process, EPAM does not use AI to make hiring decisions, which is done by EPAM Talent Acquisition and management.
