|
Key Responsibilities
- Administer and support mainframe access management processes with a focus on ACF2 and RACF security environments.
- Provision, modify, and revoke user access on the mainframe in accordance with approved requests, policy requirements, and operational standards.
- Support the onboarding of mainframe applications into IAM governance processes, including access requests, approvals, certifications, and audit controls.
- Maintain and update ACF2/RACF security rules, groups, profiles, roles, and permissions to align with business and technical requirements.
- Partner with application owners, system administrators, and business stakeholders to determine appropriate access models and implement required security changes.
- Execute and support joiner, mover, and leaver access activities for mainframe-connected applications and platforms.
- Monitor and manage access-related queues, service requests, escalations, and remediation items to ensure timely resolution and adherence to service level expectations.
- Support access certification, entitlement review, and audit remediation activities for mainframe platforms and associated applications.
- Investigate and resolve mainframe access issues, provisioning exceptions, and control gaps, coordinating with engineering and support teams as needed.
- Contribute to the implementation and enhancement of role-based access controls and standardized provisioning models for mainframe environments.
- Support compliance initiatives by preparing evidence, responding to audit inquiries, and assisting with control execution and documentation.
- Develop and maintain operational procedures, process documentation, workflow maps, and control-related materials for mainframe IAM activities.
- Apply incident, problem, and change management best practices in support of stable and controlled IAM operations.
- Promote security policy adherence, strong governance, and access management best practices across supported environments.
- Partner with IAM engineering and governance teams to support automation, process improvements, and integration of mainframe access processes with broader IAM tooling where applicable.
Qualifications
- Minimum 4-6 years of hands-on experience in Identity and Access Management, with strong experience in mainframe security administration.
- Demonstrated experience working with ACF2 and/or RACF for user access provisioning, entitlement management, and security administration.
- Strong understanding of mainframe security concepts, including roles, groups, resource rules, logon IDs, permissions, and segregation of duties considerations.
- Experience supporting access request fulfillment, approvals, certifications, and audit remediation in a controlled environment.
- Familiarity with IAM governance processes and platforms, including integration of mainframe applications with enterprise IAM solutions such as SailPoint.
- Participate in a scheduled on-call support rotation, including after-hours and weekend coverage, to respond to access-related incidents, production issues, and critical implementation activities, ensuring timely resolution and continuity of IAM operations.
- Experience supporting joiner, mover, leaver processes and access lifecycle management.
- Ability to analyze access issues, troubleshoot provisioning problems, and recommend practical, risk-aligned solutions.
- Knowledge of risk, controls, compliance, and audit support within an IAM or information security environment.
- Experience with incident, problem, and change management processes.
- Proficiency with MS Office Suite, Jira, and Confluence.
- Strong critical thinking, problem-solving, and organizational skills.
- Excellent oral and written communication skills, including the ability to explain technical access and security concepts clearly to both technical and non-technical stakeholders.
- Ability to collaborate effectively across distributed teams and influence stakeholders in support of secure, efficient service delivery.
- Strong commitment to quality, accuracy, and operational excellence.
|
BNY Mellon
Jun 16, 2026