Ayaz Malik
@ayazmalik
Identity & Access Management analyst focused on IAM governance, audits, RBAC, and scalable SailPoint/PAM implementations.
ZimbabweWhat I'm looking for
I’m an Identity & Access Management professional who focuses on IAM governance and compliance—implementing and maintaining IAM policies, standards, and SOPs, mapping IAM controls, and conducting regular IAM audits to identify gaps and drive improvements. I oversee user access reviews, including role-based access control (RBAC) and entitlement reviews, and enforce adherence to access control policies across the organisation. I also perform risk assessments for identity and access management and provide detailed reports and updates to senior management.
Across my recent and earlier roles, I’ve helped shape joiners/movers/leavers (JML) processes from inception, built IAM roadmaps and future-state designs into BAU operations, and strengthened long-term control maturity. I’ve delivered practical security outcomes like PAM support, Multi-Factor Authentication (MFA), Single Sign-On (SSO), and SailPoint administration and role/entitlement imports (via RoleImporter scripts). I’m comfortable bridging business and technical teams—using tools like Active Directory, ServiceNow, PowerShell automation, CyberArk safes, and enterprise applications such as SAP ECC/BW and Microsoft Exchange.
Experience
Work history, roles, and key accomplishments
IAM Governance Analyst
Haleon
May 2025 - Jul 2025 (2 months)
Implemented and maintained IAM policies, standards, and SOPs to support regulatory compliance. Conducted IAM audits, enforced access control adherence, and led role-based and entitlement access reviews in partnership with IT and HR systems.
IDAM Consultant
TheMDU
Nov 2024 - May 2025 (6 months)
Managed nested RBAC group structures in Active Directory and compared AD roles against HRMS to flag discrepancies. Raised CAB-led change requests for production updates, mirrored AD data with HRMS, and supported SailPoint IdentityNow onboarding using role importer automation.
IAM Consultant/Analyst
Close Brothers
Sep 2018 - Oct 2023 (5 years 1 month)
Developed and operationalized Joiners, Movers, and Leavers (JML) processes, including Active Directory data cleanup and app access recertification. Designed and embedded IAM roadmaps and BAU controls, and delivered PAM capabilities (RBAC for privileged and test accounts) including MFA and SSO across enterprise applications.
Identity & Access Analyst
Deloitte
Mar 2017 - Sep 2018 (1 year 6 months)
Managed incident and security request handling through ServiceNow, including account and mailbox provisioning. Administered Active Directory and Exchange via CyberArk, implemented RSA token onboarding for joiners, and supported ITIL-based creation of service/test accounts using Identity Manager.
IT Service Security Analyst
Bupa
Nov 2016 - Dec 2016 (1 month)
Handled incidents, tasks, and security requests via ServiceNow, including provisioning mailboxes and distribution lists. Administered Active Directory and MS Exchange, managed mailbox and folder ownership changes, and set up RSA tokens for users based on manager approvals.
User Access Analyst
Volkswagen Financial Services
Jun 2016 - Sep 2016 (3 months)
Administered access rights for joiners and leavers, including SAP profile and permission creation. Supported service desk queries, configured RSA for new starters/movers, and managed access request mailboxes and ITIL-aligned documentation templates.
LAM Analyst (Risk & GRC)
Barclaycard
Aug 2014 - Apr 2015 (8 months)
Performed application incident logging for AIM deletion stamping and processed periodic user access recertifications using SLAM/LAM tools. Produced weekly exception reporting and ongoing metrics/scorecards while monitoring regulatory changes affecting application scope (e.g., SOX).
IMAC Request Analyst
BNP Paribas Bank
Apr 2011 - Aug 2014 (3 years 4 months)
Created and configured Lotus Notes accounts, mailboxes, group mailing lists, and archives, while performing Active Directory administration and ServiceNow incident/change logging. Supported daily coordination with Service Desk and Security teams, including hardware allocation and ongoing monitoring of the Online Service Portal.
Request Mgmt & Desktop Analyst
Computacenter UK
Aug 2009 - Nov 2010 (1 year 3 months)
Delivered LAN and AS400 account provisioning and managed user access by creating share folders and drive mappings. Supported Citrix and remote access via permissions, domain changes, and remote software/printer installation while updating procedures after rollouts.
Desktop/Technical Support
EU Expedia Inc
Jan 2006 - Jun 2008 (2 years 5 months)
Provided 24/7 technical support for Europe and US users, resolving tickets from a support tool across 13,000 users. Managed IT access tasks including Active Directory and MS Exchange administration, supported joiners/movers/leavers provisioning, and handled password resets and account lockouts.
Education
Degrees, certifications, and relevant coursework
Ayaz hasn't added their education
Don't worry, there are 90k+ talented remote workers on Himalayas
Availability
Location
ZimbabweAuthorized to work in
Job categories
Skills
Interested in hiring Ayaz?
You can contact Ayaz and 90k+ other talented remote workers on Himalayas.
Message AyazFind your dream job
Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!
