CAIA's Career Center is an easy-to-use, comprehensive resource connecting job seekers with employers in the growing AI field. Use your knowledge and credibility to advance your career or build a talented team for your organization. Opportunities targeted to CAIA Charterholders are prioritized.
In order to search for jobs specifically for CAIA Charterholders or those pursuing the CAIA Charter please enter “CAIA” in the search panel.
This will enable you to search for CAIA specific roles globally.
At M&G our vision is: to become the best loved and most successful savings and investment business and we're looking for people who are excited about joining us on our journey. We're digitally transforming and investing heavily in technology and innovation to develop new and improved customer propositions that really raise the bar for our customers. To help us achieve our vision we're looking for exceptional people who live our values and behaviours and who can inspire others; embrace change; deliver results and keep it simple.
What you can expect from us: We are committed to creating an environment where you can be exceptional at all you do. To help us deliver this, we promise to:
Challenge Your Limits by creating a stimulating working environment and providing opportunities for you to be involved in meaningful and challenging work
Support Your Aspirations with a commitment to learning and development that helps you achieve and build your experience with people who want you to succeed
Value Your Input whereby leaders and managers will involve you in key decisions, listen to your thoughts and recognise the important contribution you make
Balance Your Life through a work life partnership that focuses on making this an inclusive, diverse and friendly place to work and offers the flexibility and support that enables everyone to be at their best
The complexity, size and geographical distribution of M&G plc has increased in recent years and at the same time, the requirements for strong security and cyber controls continue to grow.
In order to further strengthen our Identity Management function, we are continuing to develop how we are operating within the Identity and Access Management (IDAM) arena and the services the team provides. The IDAM Controls & Assurance Analyst will undertake work to safeguard our information system assets by identifying, and solving, security problems and operating key assurance controls. The analyst will work with the team to set and maintain security controls set out in the Information Security Code of Practice and all associated Policies and Standards.
Identity and Access Management
Manage key Identity controls effectively to ensure they operate in accordance with both internal & external Audit whilst also meeting Business needs.
Monitor / conduct data quality checks within the Identity Platform to ensure Identity controls are being adhered to
Conduct data cleansing exercises (e.g. Section checks, Business Admin removals within SLA, Approval Model management, Information Owners / Approvers, System Classification) to ensure Identity controls are being adhered to.
Produce and maintain internal processes and procedures for the team's tasks
Respond to business queries related to our Identity platform to ensure that existing controls are followed / maintained.
Maintain the Access Catalogue within our Identity platform, ensuring that access levels are correctly defined and helpful to the business.
Play an oversight role (informed) in the on boarding of new applications to ensure that they are correctly classified, tagged, and have appropriate security controls in place.
Play an oversight role (informed) in the off boarding of any applications to ensure that they are
Monitor and review exceptions to standards and policies to ensure that the principle of least privilege is applied, and that this access is removed if no longer required.
Manage the full cycle (preparation, generation, completion) of access certifications (e.g. Line Manager, Privilege Access, 3rd party users) in accordance with the key Identity controls, identifying where escalation is required in the event of non-compliance
Adhoc tasks as required
Promote security awareness to ensure system security and prevent security violations
Provide advice and guidance and resolve security queries from across the business (including the Information Systems team), IdAM Operations, TCS (our 3rd party infrastructure provider) and internal and external auditors.
Maintain and improve technical knowledge by attending educational workshops or conferences, reviewing publications or gaining further security certifications
Job & Personal Skills (please consider soft skills as well as management and regulatory skills):
This role is ideally suited to someone who can demonstrate:
Great communication skills: You're able to communicate effectively, accounting for the audience (e.g. your peers, your Manager or the wider Business) about any challenges or risks you identify and in everyday communication, both verbally and written
Ability to work autonomously to be able to achieve goals
You're a team player and love to collaborate and support your team to ensure you meet the team goals
Initiative to deliver (where appropriate) or highlight instances where action /risk may be identified.
You know when to put your hands up when you've made a mistake and work to resolve / achieve the right outcome
When given tasks, you take accountability and ensure they are managed through to completion
You take a positive approach to your work and how you communicate to your peers and wider team
Ability to prioritise work load and demonstrate a methodical and logical approach
Attention to detail, whilst not losing sight of what you are trying to achieve from the given task ("the bigger picture")
Flexibility where required
The ability to effectively manage multiple tasks at once
Good data accuracy & analytical skills, to be able to read data extracts and identify any actions / concerns / issues / risks / solutions
An analytical approach to work (identify), good problem-solving and solution-focussed skills. in your approach to delivering solutions
You can challenge positively to contribute towards our team goals
You can complete work within agreed deadlines and when needed help set expectations if deadlines may not be met
Relationship management skills and able to liaise effectively with personnel at all levels
Be an ambassador for and promote Information Security awareness to the wider business
Knowledge & Experience
Experience in an Information Security role, Identity and Access Management is preferred
Experience using an IDAM toolset, such as Courion, SailPoint, CyberArk
Understand how Identity and Access Management links with the wider topic of Information Security and why it is integral in any business
Experience in performing and/or managing certifications
Knowledge of Privileged Access Management
A background and experience of Identity and Access Management processes and technologies
Experience in writing Identity and Access Management processes and procedures
An understanding of the opportunities and security risks associated with people, processes and technology
Experience managing audit tasks
Knowledge and understanding of Segregation of Duties / toxic combinations
A relevant information risk or security qualification. e.g. CISA, CISMP, CISSP or is prepared to study to achieve this
Understanding the role IDAM plays within an audit lifecycle and concepts such as Data Integrity / Validity.
An understanding of relevant international security or IT control frameworks
We live by four behaviours at M&G and we ask all our employees to:
Inspire Others - Support and encourage each other, creating an environment where everyone can contribute and succeed
Embrace Change - Be open to change, willing to be challenged and able to adapt quickly and imaginatively to new ideas
Deliver Results - Focus on outcomes, set high standards and deliver with energy and determination
Keep it Simple - Cut through complexity and bureaucracy, be clear and decisive and never overcomplicate things
At M&G Diversity and Inclusion is a strategic objective. We know that an inclusive environment makes us more accessible and ensures we attract, engage, promote and retain exceptional people. We welcome applications from all individuals regardless of age, gender/gender identity, sexual orientation, ethnicity/nationally, disability, or military service and welcome those who have taken career breaks. We will consider flexible working arrangements for any of our roles.