Skip To Main Content
epam-logo-black.svgepam-logo-black.svg
backBack to Search

Lead Business Analyst - IAM & PAM

Remote in Mexico
Business Analysis, Security.IAM
Looking for something else?

Find a vacancy that works for you. Send us your CV to receive a personalized offer.

Find me a job

We are seeking a Lead Business Analyst specializing in Identity & Access Management (IAM) and Privileged Access Management (PAM) to translate business needs into scalable security solutions and ensure alignment between stakeholders and engineering teams. The ideal candidate will bring strong analytical and documentation skills, along with deep knowledge of IAM concepts, architecture patterns, and policy-driven access models.

Responsibilities
  • Operate with minimal daily oversight while gathering, analyzing, and documenting business and functional requirements
  • Collaborate with business stakeholders, security architects, and engineering teams to define PAM use cases and access control models
  • Translate business requirements into functional specifications for privileged access controls, workflows, and acceptance criteria
  • Facilitate workshops to identify privileged access scenarios across infrastructure, applications, and cloud platforms
  • Define and document privileged account types, access levels, and entitlements (e.g., admin, service accounts, break-glass access)
  • Partner with engineering teams to define onboarding requirements for privileged accounts into vaults and access control systems
  • Engage with compliance and risk teams to ensure policies meet regulatory and audit expectations, including traceability and reporting
  • Support user acceptance testing (UAT) by defining test scenarios, validating outcomes, and ensuring alignment with business intent
  • Maintain clear and structured documentation, including BRDs, FRDs, process flows, and decision matrices
Requirements
  • 5+ years of experience as a Business Analyst in the IAM/Security domain
  • At least 1 year of relevant leadership experience
  • Background in PAM implementations with hands-on project experience
  • Understanding of PAM architecture components such as vaults, session managers, credential providers, and privileged session monitoring
  • Proficiency in documentation and analysis tools (e.g., Confluence, Jira, Visio, etc.)
  • Knowledge of IAM concepts, including SSO, Federation (SAML/OIDC), and MFA
  • Familiarity with Directory Services and access governance
  • Capability to work with cross-functional teams across security, engineering, product, and compliance
  • Excellent communication and stakeholder management skills
  • English proficiency at a B2+ level