Prudential’s purpose is to be partners for every life and protectors for every future. Our purpose encourages everything we do by creating a culture in which diversity is celebrated and inclusion assured, for our people, customers, and partners. We provide a platform for our people to do their best work and make an impact to the business, and we support our people’s career ambitions. We pledge to make Prudential a place where you can Connect, Grow, and Succeed.
Role Summary
The Senior Analyst - IAM Assurance & Compliance is responsible for leading and enhancing Identity & Access Management (IAM) governance, ensuring strong control execution, and driving compliance across the enterprise. This role oversees critical IAM control processes, partners with auditors and application teams, and acts as a subject‑matter expert on SOX ITGC, access governance, and Identity Governance & Administration (IGA) platforms such as SailPoint or equivalent solutions.
The role requires end‑to‑end ownership of access reviews, control design, remediation, and continuous improvement across IAM processes. The position also leverages automation and data‑driven techniques to improve the efficiency, consistency, and auditability of IAM control execution and monitoring.
Key Responsibilities – Governance, Risk & Compliance
· Own end‑to‑end SOX ITGC Access Management controls including User Access Reviews (UAR), Privileged Access Management (PAM), Joiner‑Mover‑Leaver (JML) processes, and periodic control attestations.
· Lead internal and external audit cycles including walkthroughs, evidence coordination, issue response, and remediation tracking.
· Perform control design assessments and operating effectiveness evaluations.
· Govern remediation activities and provide management oversight through structured reporting and dashboards.
Operational Excellence & Control Enhancement
· Supervise execution of access governance cycles including UARs, PAM reviews, and periodic access validations.
· Design and implement automation using Python, Power Automate, or RPA to enhance IAM control execution, evidence generation, and exception handling.
· Automate recurring control activities such as access population extraction, reconciliation, aging analysis, and reviewer follow‑ups.
· Build reusable IAM assurance frameworks, scripts, and templates to standardize control execution.
· Perform deep analysis of access anomalies and control deficiencies using automated data analysis techniques.
Automation, Data Analytics & Continuous Improvement
· Apply automation and analytics techniques to support IAM assurance use cases including SOX User Access Reviews and privileged access validations.
· Develop automated dashboards, control metrics, and exception reports to support management oversight and audit readiness.
· Collaborate with IAM engineering, ITSM, and automation teams to embed controls into workflows.
· Identify opportunities to transition manual assurance activities into sustainable automated solutions.
Stakeholder Engagement & Leadership
· Serve as primary point of contact for Business Units, BISOs, IAM engineering teams, and ITSM stakeholders.
· Provide advisory support on access design, RBAC models, and segregation of duties considerations.
· Influence compliance with Group IAM standards and policies.
· Mentor junior analysts and contribute to capability building.
Required Skills & Qualifications
· 6 - 9 years of experience in IAM, IT Risk, IT Controls, or related disciplines in a regulated environment.
· Strong knowledge of SOX ITGC Access Management controls.
· Proficiency with SailPoint or equivalent IGA platforms will be a plus.
· Understanding of Active Directory, Azure AD, Privileged Access Management tools, and RBAC.
· Hands‑on experience with Python, Power Automate, or RPA to support IAM assurance activities.
· Ability to translate control requirements into automated or semi‑automated solutions while maintaining audit defensibility.
Education & Certifications
Bachelor’s degree required.
Preferred certifications include CISA, CISM, CRISC, SailPoint certifications, or equivalent.
Why This Role Is Critical
This role strengthens IAM assurance across the organization, ensuring access governance is audit‑ready, risk‑aware, and scalable.
By embedding automation and analytics into IAM assurance activities, the role enables consistent control execution, improved audit outcomes, and reduced operational risk.
Prudential is an equal opportunity employer. We provide equality of opportunity of benefits for all who apply and who perform work for our organisation irrespective of sex, race, age, ethnic origin, educational, social and cultural background, marital status, pregnancy and maternity, religion or belief, disability or part-time / fixed-term work, or any other status protected by applicable law. We encourage the same standards from our recruitment and third-party suppliers taking into account the context of grade, job and location. We also allow for reasonable adjustments to support people with individual physical or mental health requirements.