The Access Management Senior Consultant will lead the design, implementation, and optimization of Access Management practices aligned with ITIL 4 and industry security standards. This role ensures that authorized users receive timely and appropriate access to services while preventing unauthorized access a critical function in large-scale enterprise environments where security, compliance, and operational integrity are paramount.

The consultant will work closely with Information Security, Identity and Access Management (IAM) teams, and service owners to establish robust access governance frameworks, automate provisioning workflows, and ensure compliance with SOC 2, ISO 27001, and regulatory requirements.

KEY RESPONSIBILITIES :

A. Access Management Process Design & Implementation :

- Design and implement end-to-end Access Management processes aligned with ITIL 4 practices, covering access requests, verification, provisioning, monitoring, logging, and revocation.

- Define access management policies including Role-Based Access Control (RBAC), Least Privilege Principle, Segregation of Duties (SoD), and Privileged Access Management (PAM).

- Establish access request workflows in ServiceNow with automated approval routing based on role, risk level, and asset classification.

- Design and implement Joiner, Mover, Leaver (JML) processes integrated with HR and Identity systems.

B. Security Governance & Compliance :

- Ensure access management practices comply with SOC 2 Type II, ISO 27001, NIST 800-53, and client-specific regulatory requirements.

- Conduct periodic User Access Reviews (UARs) and access certification campaigns to validate appropriateness of entitlements.

- Implement and monitor Privileged Access Management (PAM) controls for critical infrastructure, data center systems, and cloud environments.

- Maintain comprehensive access audit trails and generate compliance reports for internal and external audits.

C. Integration & Automation :

- Integrate access management workflows with Identity Providers (IdP) such as Azure AD / Entra ID, Okta, or equivalent IAM platforms.

- Automate access provisioning and de-provisioning through API integrations between ITSM, IAM, and directory services.

- Implement Single Sign-On (SSO) and Multi-Factor Authentication (MFA) governance frameworks.

- Design self-service access request portals to reduce ticket volumes and improve user experience while maintaining security controls.

D. Stakeholder Engagement & Continuous Improvement :

- Collaborate with Information Security, IT Operations, HR, and business units to define access policies that balance security with usability.

- Establish and track Access Management KPIs and report to leadership on process health and compliance posture.

- Conduct training sessions for service desk teams and end users on access request procedures and security awareness.

- Lead continuous improvement initiatives to reduce access provisioning times and minimize access-related incidents.