IAM Governance & Controls Security Analyst

About The Position

Requirements

• Bachelor’s degree in Information Systems, Computer Science, Engineering, or a related field—or equivalent practical experience.
• 2+ years of experience in IAM administration, access governance, or closely related security or identity work.
• A solid understanding of IAM principles, including access lifecycle management, provisioning, de‑provisioning, and role‑based access concepts.
• Hands‑on exposure to IAM platforms such as SailPoint, BeyondTrust, Okta, Oracle Identity Manager, or similar tools.
• Experience working directly with end users and application owners to gather access requirements and translate them into IAM‑managed solutions.
• Strong documentation skills, with the ability to follow, improve, and evolve written processes and standards.
• Ability to work independently, follow documented procedures, and proactively improve processes as gaps or inefficiencies are identified.
• Clear, professional communication skills, including the ability to explain IAM concepts to non‑technical application owners and stakeholders.
• Comfort operating in regulated environments and partnering across technical, security, and business teams.
• An analytical mindset with the ability to identify issues, establish facts, and recommend risk‑aware solutions.
• Experience supporting SOX‑controlled environments.

Nice To Haves

• Security certifications such as CISSP or similar.
• Experience working in large enterprises with numerous third‑party application integrations.
• Familiarity with application onboarding, identity governance, or entitlement rationalization efforts.

Responsibilities

• Identify and assess internal and external IAM risks, driving meaningful and durable improvements.
• Manage User Access Certifications (UACs) for in‑scope systems to support SOX compliance.
• Partner closely with Compliance and Audit teams to ensure access governance meets regulatory expectations.
• Support application onboarding and access centralization, working directly with application owners and SMEs to align user access into standardized IAM processes.
• Guide application owners through the transition of user access management into IAM, clearly communicating roles, responsibilities, and benefits of centralized access management.
• Define, document, and govern access roles and entitlements across HealthEquity platforms.
• Help application owners design role structures and access models that reduce complexity and improve long‑term maintainability.
• Develop and maintain metrics and reporting related to UACs, integrations, provisioning health, and access hygiene.
• Analyze provisioning and de‑provisioning issues, identify root causes, and recommend scalable, long‑term solutions.
• Use Generative AI to identify anomalies, surface control gaps, reduce manual effort, and standardize access patterns.
• Support User Acceptance Testing (UAT) for IAM enhancements and defect fixes.
• Create, maintain, and continuously improve clear, actionable IAM documentation, standards, and process guidance.
• Participate in IAM initiatives and cross‑functional projects that improve identity governance maturity across the organization.

Benefits

• Medical, dental, and vision
• HSA contribution and match
• Dependent care FSA match
• Full-time team members receive a minimum of 18 days of annual PTO and 13 paid holidays per year
• Paid parental leave
• 401(k) match
• Personal and healthcare financial literacy programs
• Ongoing education & tuition assistance
• Gym and fitness reimbursement
• Wellness program incentives