ACCESS ADMINISTRATOR JOB DESCRIPTION

An Access Administrator manages who can reach what, and why that answer changes daily. Every joiner, mover, or leaver inside an enterprise triggers a chain of provisioning decisions that must be accurate, fast, and auditable. When those decisions slip, regulated data becomes reachable by the wrong people, and audit findings follow. This role owns that accountability within an IT operations or corporate security function, typically coordinating with HR, security teams, and department managers to keep access rights aligned with current employment status and least-privilege policy.

As the Access Administrator, you are accountable for the accurate provisioning, maintenance, and deprovisioning of user and service accounts across enterprise directories, applications, and infrastructure in a corporate IT environment. You will work within an IT operations or identity management team, coordinating with HR, Information Security, and department stakeholders to ensure access rights remain compliant with internal policy and applicable regulatory requirements.

Career Impact: Hands-on experience with enterprise IAM platforms and ITIL-certified service delivery builds a portfolio that qualifies you for senior IAM Analyst and IT Security Administrator roles within three to five years.

Business Impact: Every day, one delay caused by a missed provisioning ticket reduces new-hire productivity; this role's accuracy directly determines onboarding speed and security audit outcomes for the organization.

Growth Opportunity: Exposure to role-based access control design, privileged access management principles, and cross-functional change management opens a clear path toward IAM Engineer or Identity Architect titles.

• Provision and deprovision user and service accounts across enterprise directories, applications, and infrastructure following approved access request procedures.
• Maintain role-based access control configurations, including permission sets, group memberships, and account attributes, ensuring alignment with current job roles.
• Process new starter, mover, and leaver workflows in accordance with documented policy, coordinating with HR and department managers to confirm authorization.
• Monitor IAM work queues and service desk tickets, prioritizing by SLA tier and resolving or escalating within defined response windows.
• Conduct periodic access reviews and recertification campaigns in collaboration with senior managers to identify and remediate stale or excessive entitlements.
• Audit account configurations for completeness and accuracy, including required fields such as manager assignment, department, location, and job title.
• Document access management procedures, record changes for audit trail purposes, and contribute to process improvement initiatives within the IAM team.

Candidates often list provisioning tasks but skip SLA closure rates, and how to frame these provisioning duties on a resume makes that gap concrete.

• Bachelor's degree in Information Technology, Computer Science, or a related field, or equivalent work experience.
• 2 or more years of identity and access management experience, with demonstrated responsibility for provisioning and deprovisioning across enterprise systems.
• Knowledge of role-based access control principles and least-privilege access policy in a corporate security environment.
• Understanding of ITIL service management processes, including incident, request, and change management workflows.
• Familiarity with enterprise directory services, including user account lifecycle management and group policy administration.
• Strong written and verbal communication skills, with the ability to interact clearly with HR, department managers, and security stakeholders.
• Demonstrated ability to manage competing priorities, meet SLA deadlines, and maintain accurate records under operational pressure.

To judge whether your RBAC and ITIL knowledge is strong enough, the access governance skills the posting screens for gives the benchmark to measure against.

• ITIL Foundation certification (v3 or v4) or equivalent IT service management credential.
• Experience supporting privileged access management functions, including credential vaulting or elevated account oversight.
• Working knowledge of scripting or query tools used to automate provisioning tasks or generate access reports.
• Prior experience in a regulated industry environment, such as financial services or healthcare, where access compliance carries audit risk.

• Provisioning ticket closure rate within SLA, reflecting responsiveness to joiner and mover requests.
• Access recertification completion rate per campaign cycle, measuring coverage of active account reviews.
• Audit finding count attributable to access administration error, tracking compliance accuracy over time.
• Mean time to deprovision on confirmed leaver notifications, reducing the window of unauthorized access.
• Account configuration error rate per audit sample, indicating accuracy of required-field completeness.
• Typical tools: directory services platforms (commonly Active Directory or Azure AD); ITSM ticketing systems (commonly ServiceNow)

After reviewing these SLA and deprovision benchmarks, salary benchmarks and certification paths for this role put those metrics in career context.

• Base Salary Range: $55,000 to $80,000 annually, depending on experience and location
• Bonus: Discretionary annual bonus, typically 5 to 10 percent of base salary
• Equity: Generally not offered at this level; may apply at senior or lead tiers
• Health Benefits: Medical, dental, and vision coverage; employer contribution varies by company
• PTO: 15 to 20 days annually, plus standard federal holidays
• Common Perks: Remote or hybrid flexibility, professional certification reimbursement, employer-sponsored ITIL training

Figures are estimates based on general US market benchmarks and may be outdated. Adjust based on location, company size, and seniority level.

Candidates for this position must be legally authorized to work in the United States; employment eligibility verification is required. All applicants will receive consideration without regard to race, color, religion, sex, national origin, disability, age, veteran status, or any other characteristic protected under applicable federal, state, or local law. Reasonable accommodations are available to qualified individuals with disabilities throughout the hiring process upon request. Final offers are contingent on the successful completion of a background check.

Match your RBAC configuration and ITIL Foundation experience to a resume that passes the first screen.

The Access Administrator owns the full spectrum of IT support operations, from resolving hardware and software incidents using ITIL-based processes to designing fixes and overseeing multi-disciplinary IT project planning and execution. Reporting within an IT services environment and collaborating with network services, software systems engineering, and application development teams, this role delivers reliable system access and service continuity for the organization.

Key Responsibilities

• Resolve technical problems and answer queries by telephone or self-service involving computer hardware, software, network, system/application access, and telecommunications systems.
• Use ITIL-based processes to streamline the ingestion, triage, categorization, action, and resolution for incoming incidents, requests, and demands.
• Analyze, troubleshoot, design, and implement fixes without escalating to Tier 3 support.
• Add and remove users to groups that grant access to applications as approved.
• Create accounts and access, and reset passwords.
• Provide network and Active Directory administration, share drives/folders, group permissions, and account administration.
• Participate in the administration of e-mail systems and provisioning of accounts.
• Collaborate with network services, software systems engineering, and/or application development to restore service and/or identify problems.
• Recommend, develop, and measure key performance indicators (KPIs) as needed to monitor performance using appropriate tools and techniques.
• Oversee project planning and execution, managing all aspects of diverse IT projects or multiple IT projects typically involving multiple disciplines.
• Direct staff and resolve issues using expertise and leadership skills to ensure project goals and requirements are met.

Required Qualifications

• Bachelor's degree with 7 years of relevant experience, or 11 years of experience instead of a degree.
• Possess IAM III certification.
• ITIL® v4 Foundation, or higher, certification.
• CMA or DMA certification.
• Possess DTO certification.
• Experience with 5–10 years of direct knowledge of the customer's operational environment, including ticketing systems, desktop technologies, corporate applications, access administration, and voice and video infrastructure.
• Experience with ServiceNow ITSM and ITBM.
• Strong skills in demonstrated problem-solving and technical ability to resolve critical IT issues.
• Proficiency in installing, configuring, and upgrading computer hardware and software.
• Proficiency in remote desktop triage and system repair using remote tools.
• Knowledge of expertise, training, and actual work experience with specific systems and technologies.
• Strong skills in self-motivation, organization, and excellent interpersonal, written, and verbal communication.
• Current/active TS/SCI with Polygraph.

Embedded within an identity and access management function, the Access Administrator leads the full lifecycle of identity and network accounts from provisioning to inactivation while implementing architectural principles across hybrid environments. Working closely with infrastructure, application, and business teams, this role shapes a secure and compliant access environment that supports organizational agility and a proactive security posture.

Core Functions

• Lead, coordinate, and support Identity and Access platforms, infrastructure, and operational environments.
• Manage the lifecycle of identity and network accounts from provisioning to inactivation, and provide operational support for issues and resolution.
• Provide 1st and 2nd level support personnel with knowledge to resolve customer issues, and work directly with customers when escalation is required.
• Support role-based provisioning flows from Oracle to Active Directory using OKTA, including error handling, notifications, restarts, and SLA compliance.
• Create and maintain process flows and flow diagrams for identity and access management, including monitoring, alerting, and change management processes.
• Coordinate, execute, assess, and support proof-of-concept programs and applications across hybrid environments.
• Perform infrastructure problem resolution, systems tuning, capacity planning, and protocol compatibility monitoring, with proactive recommendations for improvement.
• Implement architectural principles for simple and complex systems, and initiate changes to architecture as business or technical requirements evolve.
• Oversee all aspects of identity and access, serving as an internal consultant, advocate, mentor, and change agent for identity and access needs across the organization.
• Follow regular patching, vulnerability, and change management processes, applying all policies to maintain security requirements and guidelines.

Qualifications & Experience

• Four-year degree or equivalent experience.
• OKTA Administration certification.
• Experience of 3–5 years in identity and access management.
• Industry Knowledge of identity and access environments, including complex, cross-functional application architecture.
• Proficiency in SailPoint Access Governance Connectors, Microsoft Active Directory, and Azure.
• Proficiency in Java, JSON, Postman, and .NET.
• Familiarity with IdentityNOW, Oracle HR systems, and Google Cloud Platform.
• Experience with Office 365, SharePoint, OneDrive, Teams, Yammer, and Zoom.
• Strong skills in teaching others the technical and functional knowledge needed to achieve high-level performance.
• Strong skills in interpersonal communication with internal and external customers, including technical research, problem resolution, and on-call support.

Reporting to IT leadership, the Access Administrator builds a seamless onboarding and offboarding experience by provisioning and deprovisioning user access across all business systems, including Provider EMR, VCC, and telecom platforms. Partnering with helpdesk, automation, and engineering teams, this role enables staff productivity from day one while maintaining security compliance throughout the employee lifecycle.

Primary Duties

• Complete identity and access functions, ensuring prompt, efficient, and accurate resolution of identity and access matters.
• Provision and deprovision user and service account access across all systems, including Provider EMR accounts, VCC, and telecom systems.
• Monitor and process IAM work queues and service desk tickets first-in, first-out based on priority, adhering to onboarding, offboarding, and breach agreement requirements.
• Screen ticket queues for onboarding and offboarding tickets, reset multifactor authentication for mobile access, and perform password resets as necessary.
• Assign users to appropriate distribution groups, and train new hires on proper login processes and the appropriate use of equipment, software, and reference materials.
• Provide remote support via phone or remote support software for day-one onboarding and ongoing onboarding issues.
• Document internal procedures, report issues to the helpdesk and automation/engineering team, and contribute to projects related to the job function as needed.
• Collaborate with team members to identify and suggest improvements to onboarding, employee lifecycle, and offboarding processes, and screen users for identification purposes with documentation in a ticket.

Education & Experience

• High School Diploma or GED required, with some college preferred.
• Experience of 1+ years in a technical support or help desk role.
• Experience with user administration and setup within Microsoft Office 365.
• Knowledge of onboarding and offboarding user accounts and identity and access management processes.
• Knowledge of Information Technology and IT security principles.
• Familiarity with O365 products.
• Strong skills in written and oral communication, including in-person, phone, email, and chat with peers, management, contractors, and vendors of varied technical backgrounds.
• Strong organizational skills with the ability to prioritize tasks efficiently in a high-pressure environment.

Sitting at the intersection of physical security and administrative operations, the Access Administrator ensures the safety and compliance of a corporate facility by controlling ingress and egress, badging students, visitors, contractors, and vendors, and maintaining required access records. Operating across security, administrative, communications, and emergency response functions, this role safeguards company property while supporting government and company access requirements on a schedule that may include overtime and weekends.

Duties

• Open and close facility suites, and control and monitor ingress and egress for facility floors and suites.
• Process and badge students, visitors, contractors, and vendors, verifying authorized credentials and escorting contractors and vendors as required.
• Produce and issue identification credentials to comply with company requirements, ensuring all persons on company property are identified and authorized.
• Provide proximity cards for building, garage, and gym access, and monitor and control physical access to company property.
• Enter required records into provided data management systems, maintaining pertinent databases, logs, and records in compliance with company and regulatory requirements.
• Ensure compliance with government and company requirements regarding access, and respond to authorized inquiries.
• Provide administrative, communications, audiovisual, security, and logistical support, including answering phone calls, delivering messages, receiving floor deliveries, and coordinating package pick-ups.
• Serve as an emergency responder and fire warden.

Skills & Qualifications

• Experience in a facility security or access officer role.
• Experience working with a U.S. Government customer.
• Experience with Microsoft Office tools.
• Ability to lift, push, and pull up to 35 pounds frequently.
• Ability to work overtime and weekends when necessary.

A key member of the racing and facility compliance team, the Access Administrator delivers accurate and timely management of insurance certificates, stall applications, waivers, and badge lists within the Stable Gate Registration system. Collaborating across trainers, vendors, veterinarians, contractors, insurance agents, and carriers, this role ensures that all access-related documentation meets regulatory and organizational requirements on an annual and ongoing basis.

Accountabilities

• Serve as the point of contact for all trainers, vendors, veterinarians, and contractors regarding insurance requirements, and liaise with insurance agents and carriers to provide compliant certificates.
• Review all certificates of insurance for compliance according to various requirements, and upload and maintain all insurance certificates in the Stable Gate Registration system.
• Upload all stall applications in the Stable Gate Registration system, review all day passes for compliance, and maintain hard copies.
• Ensure all waivers are uploaded into the SGR system and maintain original copies, badge lists, commission rulings, and safety rules on an annual basis.
• Open new files as necessary, file all reports and correspondence, and maintain and purge files beyond the statute of limitations.

Requirements

• Experience of 5 or more years in the insurance industry.
• Strong skills in verbal and written communication.
• Excellent organizational and planning skills.
• Ability to complete multi-task and prioritize based on sometimes stringent timelines.
• Ability to work with a great deal of tact and maintain confidentiality in a variety of sensitive situations.
• Ability to develop positive relationships with people at all organizational levels.

Timely, lawful handling of Subject Access Requests depends on the Access Administrator, who logs all SAR cases and works with clinical staff and internal and external departments to collate, identify, and ensure compliance with all relevant records. Based within an NHS or comparable healthcare setting, the Access Administrator uses OpenRiO and FileZilla to request record copies and provides compliance evidence to the Subject Access Request Coordinator.

Duties

• Log all Subject Access Requests, and liaise with clinical staff and other departments and organisations to identify, collate, and ensure compliance with all relevant records.
• Use the SAR Report facility on OpenRiO and FileZilla to request copies of records.
• Provide evidence and reports to the Subject Access Request Coordinator on compliance as required.
• Communicate effectively at all levels, verbally and in writing.
• Establish and maintain communication with individuals and groups internally and externally.

Position Requirements

• A-level education or equivalent, ideally in an information-related subject, or NVQ Level 3 in business administration or an information-related subject.
• Experience working in an NHS or similar environment.
• Experience with the SAR Report facility on OpenRiO and FileZilla.
• Proficiency in Microsoft Office applications.
• Strong skills in communication, including the ability to engage effectively with individuals and groups at all levels.
• Ability to work under pressure, meet deadlines, and work on own initiative to identify and develop improvements.
• Ability to work effectively both independently and as part of a team.

As the IT Access Administrator, this role owns the full new starter, mover, and leaver process lifecycle while maintaining and recertifying role-based access control across enterprise systems and Active Directory in a highly regulated financial services environment. The financial services firm relies on this work to uphold stringent policy and procedure compliance, accurate permission sets, and a clean Active Directory environment free of outdated and unused objects.

Key Responsibilities

• Complete all new starter, mover, and leaver processes in accordance with stringent policy and procedure.
• Maintain role-based access control (RBAC), including audit requests, AD templates, consulting with senior managers on permission sets for new job roles, and ensuring all new starters receive the People Team's new starter form.
• Work with senior managers to recertify all existing colleagues and role-based permissions regularly.
• Perform Active Directory housekeeping tasks regularly to keep the OU hierarchy free of outdated, unused, expired, and no-longer-needed objects, and record and present any improvements for approval.
• Ensure all Active Directory accounts are configured correctly, with all essential fields completed, including description, manager assignment, job title, department, location, and profile configuration.

Knowledge, Skills & Abilities

• An IT-related degree preferred, with experience in a highly regulated environment, particularly in Financial Services.
• ITIL V3 Foundation certification.
• ITIL V3 Intermediate certification.
• ITIL V4 certification.
• Experience in a 2nd Line Support or comparable role involving Role-Based Access Management.
• Industry knowledge of role-based access control (RBAC), access management within bespoke applications, and telephony platform access administration.
• Advanced knowledge of Active Directory, Microsoft Exchange 2016, Microsoft Azure, SharePoint, Dynamics CRM, DHCP, and Configuration Manager.
• Proficiency in Microsoft Excel and working knowledge of Microsoft PowerShell.
• Strong skills in written and verbal communication, stakeholder management, and working with colleagues at all levels of an organisation.
• Ability to meet tight deadlines, manage shifting priorities, and maintain reliable and meticulous attention to detail.

Identity and Access Administrator oversees the creation, modification, and monitoring of system access across corporate email, LAN, enterprise server applications, and remote access platforms in a multi-architecture security environment. The work directly supports compliance with corporate information security policies and governmental regulatory requirements, serving both external customers and internal employees across an enterprise information systems team.

Core Functions

• Create, modify, delete, maintain, and monitor system access identification for corporate email, LAN, enterprise server (RACF) applications and subsystems, remote access, web browsing, and application-level security databases.
• Review, verify, and implement security requests, dispatching work to security points of contact and processing break/fix and service severity level requests to meet customer needs.
• Perform system access reviews to ensure compliance with corporate security policies and standards, and participate in related project work, including documentation, process implementations, and procedure updating.
• Create and review data access reports to research service requests or issues, and review reports to ensure compliance with corporate information security policies, standards, guidelines, and procedures.
• Provide instruction, problem resolution, and follow-up to external customers and internal employees, and may train new team members on procedures and problem resolution.
• Work with other areas of Information Systems to provide solutions for customers.

Background & Experience

• High School diploma required.
• Experience of 2 years in IT technical roles in infrastructure and/or applications.
• Knowledge of IT security systems and concepts, LAN access control systems, and enterprise server and LAN applications and subsystems.
• Knowledge of user administration on single platforms, with the ability to acquire knowledge across multiple platforms.
• Knowledge of industry standards for corporate information security systems as they relate to customer and governmental regulatory requirements.
• Ability to quickly learn new tools and emerging technologies.

The Access Administrator produces reliable identity account management outcomes by provisioning and supporting accounts across market data systems, including Bloomberg, Tradeweb, DTCC, and CME, within an IT infrastructure environment covering End User Computing, Network, and Server technologies. Reporting within a regional IT support structure and working alongside team members trained in accounts management operations, this role advances system integrity and SLA compliance across restricted and regulatory applications.

Key Deliverables

• Manage Identity Management systems, ensuring their integrity and that provisioning and support of restricted and regulatory applications are aligned with quality objectives and respective SLAs.
• Provide 24/7 support for Identity Account Management issues, and assist in account management projects as needed.
• Train team members in accounts management operations and contribute directly to the Permanent Operational Control device by applying procedures, carrying out monitoring, and alerting superiors to any malfunction.
• Provision accounts for market data systems, including Bloomberg, Tradeweb, DTCC, Market Axess, Dealer Web, SEFs products, FEDtrade, TAAPS Link, Broadridge, and CME.

Professional Experience

• Strong knowledge of Active Directory, including users, groups, and elevated rights, SSO, account access provisioning, and access review.
• Experience with user onboarding and offboarding processes.
• Experience provisioning accounts for market data systems, including Bloomberg, Tradeweb, DTCC, Market Axess, Dealer Web, SEF products, FEDtrade, TAAPS Link, Broadridge, and CME.
• Strong skills in written and verbal communication and organisational proficiency.
• Ability to make decisions and manage crises effectively under stress.

Embedded within a banking compliance and IT operations environment, the Access Management Administrator develops timely resolution of access request tickets across applications, infrastructure, and operating systems while adhering to federal and state regulations, including Anti-Money Laundering requirements. Working closely with other support teams, vendors, and users to troubleshoot and diagnose access issues, this role upholds bank policies, BSA/AML obligations, and a consistent standard of customer service across a weekday shift.

Role Responsibilities

• Administer access for applications, infrastructure, and operating systems in accordance with established procedures, adhering to all applicable federal and state laws, regulations, and guidance, including those related to Anti-Money Laundering.
• Update and resolve request tickets, ensuring timely settlement of assigned user requests and issues, with proactive follow-up with users and other support teams.
• Assist with troubleshooting and problem analysis by working with other teams, vendors, or users to diagnose access issues, querying Active Directory and application databases to answer access-related inquiries.
• Adhere to bank policies and procedures, complete required training, and identify and report potential suspicious activity to the BSA/AML Officer.
• Perform duties specific to department functions, remain informed of job-related issues through networking, training programs, seminars, and trade publications, and work the designated shift between 7:00 AM and 6:00 PM on weekdays.

Qualifications & Experience

• Experience of a minimum of 1 year in user provisioning and deprovisioning.
• Knowledge of file server management, Exchange account management, and internal and hosted application access administration.
• Knowledge of access administration provisioning processes and Anti-Money Laundering regulations, including the Bank Secrecy Act and USA PATRIOT Act.
• Strong skills in interpersonal communication, both written and verbal, with the ability to maintain superior customer service at all times.
• Strong organisational skills, including the ability to meet deadlines and follow written policies and procedures.
• Ability to exercise independent judgment under minimal supervision and adapt to rapid changes in technology.

Reporting to the Workplace Technologies Engineer/Program Manager, the Access Administrator refines and maintains the Thycotic Secret Server PAM environment as the subject matter expert, overseeing privileged account onboarding, credential vaulting, and PAM documentation across enterprise applications, directories, and domains. Partnering with IAM, Information Security, DBAs, Network, Desktop, and Application Support teams, this role strengthens the organization's security posture while improving the end-user experience through integrated identity and access management solutions.

Primary Duties

• Install, configure, and maintain the Thycotic Secret Server PAM environment, serving as the subject matter expert (SME) for the toolset across the organisation.
• Document, design, and administer the PAM infrastructure in alignment with the overall IT strategy, including password vaulting of elevated user and application service accounts.
• Assist application and business unit teams with privileged account onboarding into Thycotic Secret Server, and retire One Identity TPAM accounts, migrating them to Thycotic Secret Server.
• Create, maintain, and audit privileged accounts, and develop and maintain PAM documentation, including providing relevant training to team members.
• Coordinate changes with infrastructure members and external teams, including IAM, DBAs, Network, Desktop, Application Support, and Information Security.
• Support application integrations as required, and provide overall direction and oversight into PAM functions across the organisation.

Experience & Qualifications

• Bachelor's degree in Information Technology, Computer Science, or a related field.
• Experience of at least 5 years in IAM, including at least 2 years creating platforms for credential management on Unix, Windows, and database systems.
• Experience of at least 2 years with PAM operational tasks, including creating safes, defining access control policies and platforms, user provisioning and entitlements, managing application credentials, and user access policy management.
• Strong understanding of privileged access and account management systems, risk and change management, security policies and controls, user account lifecycle management, and role-based access.
• Experience with Active Directory concepts, PowerShell, SQL queries, REST API for automated provisioning, JIRA, VMware virtual environments, and Agile and SDLC methodologies.
• Ability to work independently in a highly dynamic environment and collaborate with inter-functional teams.