Role: Identity Consultant (Access Control Design & Functional Role)Location : MelbourneType : Contract
The Identity Consultant is responsible for designing and documenting an enterprise-wide Access Control Framework that upholds key security principles — including Least Privilege, Need to Know, Role-Based Access Control (RBAC), and Segregation of Duties (SoD). The role ensures that access rights across critical systems are secure, compliant, and aligned with business functions. The consultant will lead stakeholder engagement sessions to capture requirements, design functional roles, and deliver a comprehensive Access Control Design Document (ACDD) supporting regulatory and audit objectives.
ResponsibilitiesDevelop and maintain Access Control Design Documents covering access models, roles, entitlements, and control objectives.Apply key access control principles — Least Privilege, Need to Know, RBAC, SoD, and Access Lifecycle Management — in all design activities.Conduct stakeholder workshops with business, IT, and risk teams to identify access needs, validate designs, and obtain approvals.Collaborate with business and IT stakeholders to analyse access requirements and entitlement mappings.Design and document functional roles leveraging SailPoint capabilities, ensuring alignment with GRIP, audit, and compliance frameworks to reduce user access review fatigue.Translate/implement approved functional role designs into technical configurations within SailPoint and other IAM platforms.Translate/implement approved access control designs into technical configurations within SailPoint and other IAM platforms.Ensure all designs meet audit, compliance, and regulatory standards, including APRA and internal control frameworks.Maintain strong governance, communication, and coordination across multiple program streams to ensure consistent and sustainable access control implementation.