LOCATION - London office and home
The Associate Operational Access Management Analyst role will drive and deliver access
management controls, audits and improvements. This role is key to supporting our business to be
compliant to regulations and policies by managing data and colleague permissions to access different
classifications/sensitivities of data.
The role, part of our Operational Governance team within our Customer & Data domain in
Sainsbury's Tech, will involve working across multiple systems, using a range of tools and
technologies to support us to operate effectively in protecting the business.
The key responsibilities of this role are to manage on two types of governance activity: our approach
to Personal Identifiable Information (PII) and democratised data (i.e. the data freely available to the
analytics community).
The fundamental purpose of the role is to ensure that our data is protected as a corporate asset and,
as such, we need to manage, improve and govern it in a way which creates value from that asset. This
role will support our compliance to both information and data policies.
What your need to do
· Utilise all defined processes to facilitate providing colleagues access to privileged systems and
tools.
· Support the implementation of the Personal Identifiable Information (PII) process creation and
maintenance of our internal system controls
· Taking the lead from corporate policy, contribute to the building of workflows used for accessing
PII data, helping to identify relevant stakeholders and owners to continuously impriove processes
for granting colleague access to PII and Commercially Sensitive data.
· Use systems (Microsoft Forms, JIRA etc.) for managing access and in parallel document the
process for audit and compliance.
· Ensure access requests and approval are recorded and auditable via ticketing system
· Reporting and policing existing access to PII data aligned to our standing operating procedures in
the team
· BAU support of PII access and issues, including facilitate access requests and providing support
and guidance for use of PII data where needed
· Provide guidance and be a single point of contact for PII access needs and questions
· Provide reporting where needed to Group Governance and entity/data owners (for awareness of
colleagues who can access their resources)
How I will succeed
· Focus on regular and robust self-auditing of activities and auditing across Sainsbury's data community
· Robust focus on who has access to PII including managing access for leavers/movers and auditing of non-used access and expiring where needed
· Curiosity to understand our opportunity for continuous improvement, including suggesting and testing new ideas, while ensuring PII access considerations are specified and our user experience is maintained during capability developments
· Escalation of non-compliance up to Head of Operational Governance through specified tools
· Collaborative not only in the Operational Governance team but across Sainsbury's data
· Be a problem solver, especially identifying and resolving specific access issues
· Proactive in supporting our ambition to build automation of access management and monitoring, aligned to the Operational Governance strategy
· Role-model for great access management and promote the benefits to all
· Managing a variety of complex tasks within tight timescales, including in-day requests alongside longer term projects
· Develop and utilise your existing network outside and/or within the organisation to share, learn, develop new and enhance existing capabilities – encourage our wider Operational Governance team to do the same
· Strive to become a luminary in Access Management & Audit
What you need to demonstrate
· An innovative mind and a passion for solving problems
· Have good knowledge of the data landscape, across traditional, open source, digital and cloud based environments
· Basic database and cloud configuration skills
· Some knowledge in the concepts and importance of Access Management
· Strong communication skills
· Some previous experience or knowledge of BI tools
· Confidentiality and integrity in how we access data
· Attention to detail, especially in managing in-day activity and reporting
· Level of proactivity in driving successful outcomes to support our customers
What decisions can I make & support
· Approvals with respect to proposed data roles
· Approvals of colleagues to each role type
· Prioritisation in managing in-day time and tasks
· Choice in delivery mechanism (i.e. system use development proposals, reporting choices etc.)
· Approach to stakeholder and data owner management
· No specific budget aligned to this role