We are seeking an experienced Business Analyst to help translate business needs into scalable security solutions, ensuring alignment between stakeholders and engineering teams. The ideal candidate will have strong analytical and documentation skills and deep knowledge of IAM concepts, architecture patterns, and policy-driven access models.
Responsibilities
-
Be self-driven with minimal daily oversight; gather, analyze, and document business and functional requirements
-
Collaborate with business stakeholders, security architects, and engineering teams to define PBAC use cases and access control models
-
Translate business requirements into policy definitions, decision flows, and acceptance criteria for implementation teams
-
Facilitate workshops to identify access scenarios across workforce and customer-facing applications, including edge cases and regulatory needs
-
Define and document attributes required for PBAC decisioning, including identity, role, device, transaction, risk, and contextual data elements
-
Work with engineering teams to ensure proper integration points for Policy Decision Point (PDP) and Policy Enforcement Points (PEP) are well understood and implemented
-
Support development and validation of policy rules (both graphical and code-based representations where applicable)
-
Document end-to-end workflows, including policy lifecycle, exception handling, and audit requirements
-
Partner with compliance and risk teams to ensure policies meet regulatory and audit expectations, including traceability and reporting
-
Support user acceptance testing (UAT) by defining test scenarios, validating outcomes, and ensuring alignment with business intent
-
Maintain clear and structured documentation including BRDs, FRDs, process flows, and decision matrices
Requirements
-
5–8+ years of experience as a Business Analyst in the IAM/Security domain
-
Strong experience with PBAC, ABAC, or IAM implementations, including requirement gathering for policy-based access control models
-
Proficiency in documentation and analysis tools (e.g., Confluence, JIRA, Visio, Lucidchart)
-
Strong understanding of IAM concepts including SSO, Federation (SAML/OIDC), MFA, Directory Services, and access governance
-
Ability to work effectively with cross-functional teams including security, engineering, product, and compliance
-
Excellent communication and stakeholder management skills
EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our clients, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.
Engineer the Future with a Career at EPAM
EPAM Canada welcomes and encourages applications from candidates with disabilities. Please contact WFA Human Resource CA [email protected] if you have questions in this regard, or if you require an accommodation to complete the application process. Click here to review EPAM’s Accessibility for Ontarians with Disabilities Accessibility Policies and Multi-Year Access.
An artificial intelligence system is software that is developed with one or more techniques that can, for a given set of human-defined objectives, using algorithmic information processing, generate outputs such as content, predictions, recommendations, or decisions with varying levels of autonomy (“AI”). Tasks that humans have traditionally done by thinking and reasoning are increasingly being done by, or with the help of, AI to help create efficiencies.EPAM may use AI during the recruitment process, in connection with collecting or processing your personal data. Some (non-exhaustive) examples of tasks that EPAM may use AI for include conducting initial screening, creating transcripts of interviews, and assessing applications/CVs against defined job description criteria to make suggestions to the individuals evaluating your candidacy.Your personal data and the results of any processing are not shared with AI applications outside of EPAM infrastructure. While EPAM may use AI to help create efficiencies during the recruitment process, EPAM does not use AI to make hiring decisions, which is done by EPAM Talent Acquisition and management.
