SCHEDULE: Full-time; Exempt; Typical Hours Are Monday through Friday (8:00 AM- 5:00 PM ) LOCATION: 131 E Main St, Hills, IA 52235 BENEFITS: Our employees are our most valuable assets, so we invest in them with a comprehensive and competitive benefits package. Our philosophy of taking care of the customer extends to taking care of our employees so that they, in turn, can take good care of themselves and their families. Join Hills Bank and let us surprise you with even more perks! SCOPE: The Identity Access Management (IAM) Analyst is the guardian of staff identity and access and is a critical member of the team responsible for safeguarding critical and confidential information belonging to Hills Bank and Trust (HBT). The IAM Analyst is responsible for account life cycle management and auditing as appropriate. The IAM Analyst participates in the development of workflows, system configuration, documentation, optimization and support related to access, while working with application teams to deploy new applications and functionality. The Analyst effectively communicates department and organization wide policies and procedures impacting Identity and Access management to end users, leadership, and peers to ensure compliant practices. In addition, the IAM Analyst provides guidance on optimizing security build based on appropriate minimum necessary standards. The Analyst is responsible for the on-going maintenance, testing, support and optimization of Identity Governance and Role Based Access Control (RBAC) in an increasingly Zero Trust environment. The IAM Analyst works independently, holds team and organization level responsibilities and leads small to medium scale projects. The Analyst assists other team members and leaders related to identity and access management and participates in continuous improvement activities. ACCOUNTABILITIES: + Provide user account life cycle management, including creating, provisioning, securing, and inactivation of access. + Responsible for how users within the bank are given an identity and how it is protected. + Creates and enforces policy on access and protection of user's identities. + Oversees IAM methodologies for all critical bank systems including Active Directory, O365/Azure, our Core banking system and more. + Lead the Security team in a Zero Trust culture by example. + Participate in projects and production support operations focused on implementing Identity and Access Management (IAM) integrations and Roles Based Access Control (RBAC) strategies and integrations. + Collaborate in the design, implementation, and support of the IAM technologies. + Participate in projects to ensure standard processes and procedures are implemented when rolling out new provisioning and role management points. + Plan, build, test, manage, and update security for the protection of and access to the bank's systems. + Assist with the development, implementation, and support of RBAC. + Ensure all evidence of authorization is documented and archived according to internal standards. + Act as the subject matter expert for Identity Governance and RBAC. + For systems and software applications in scope, reconcile discrepancies between access rights assigned and access rights required for users to perform job duties. + Assist with application upgrades, evaluation of new technology, settings, and functionality. + Troubleshoot security and workflow issues independently or in collaboration with other Information Systems teams and/or stakeholders, while adhering to internal service standards. + Enforce organizational policies and procedures to ensure only authorized personnel have access to information required for their day to day duties. + Participate in ongoing auditing and risk assessments, and implementation of audit recommendations. + Ensure dormant accounts/records are disabled; eliminate access for those who no longer need applicable information per the bank's policies and procedures. + Develop system access and security implementation plans derived from operational customer needs and requests. + Develop and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end user support, and other IS teams as needed. + Generate reports to perform in-depth analysis and data collection for issues associated with IAM. + Support the enrollment of Multifactor Authentication (MFA), Single Sign-on (SSO), and Mobile Device Management (MDM). + Assist in efficiency improvements by recommending process changes as well as developing solutions to automate and orchestrate repeatable tasks for IAM. EDUCATION AND SPECIAL REQUIREMENTS/PREFERENCES: + Bachelor's degree (B.A.) from a four-year college or university in a relevant field of study; or IT experience and/or training; or equivalent combination of education, experience, and industry certifications. + A minimum of 3 years IT experience is required, with 2 years of IT security focus + Background in administering information security programs including risk assessments, forensic research, designing security architectures, developing policies, gathering metrics, and reporting status preferred + CISSP (Certified Information Systems Security Professional), CCSP (Cisco Certified Security Professional, MCSA: Security / MCSE: Security (Microsoft Certified Systems Administrator / Engineer), CISA (Certified Information Systems Auditor), CISM (Certified Information Systems Manager), or similar information security certification preferred. + Proficiency in operating systems (Windows, Mac, Linux/Unix, mobile), network theory/design, penetration testing, endpoint security monitoring, coding and scripting, reverse engineering of malware, enterprise risk methodologies + Valid driver's license EQUAL OPPORTUNITY EMPLOYER