IAM SecOps Engineer - Identity Governance

About The Position

Requirements

• Bachelor's in Cybersecurity, Computer Science, IT, or related field
• 5+ years IAM experience: evaluation, design, development, and support
• 5+ years hands-on with IGA platforms (SailPoint, Microsoft Identity Manager, or equivalent)
• 5+ years leading identity lifecycle: joiner/mover/leaver workflows, access certifications, role engineering, automated provisioning (on-prem and cloud)
• Automation experience: PowerShell, Python, REST APIs, or comparable scripting to extend IGA capabilities

Nice To Haves

• Strong communication skills; able to present identity governance concepts to executives, business collaborators, and technical teams
• Integration experience with directories (Active Directory, Entra ID) and HR systems (Workday, SAP SuccessFactors)
• Enterprise-scale IGA architecture design and implementation across cloud, hybrid, and on-premises environments
• Ability to translate business and compliance requirements into IGA policies, role definitions, and certification campaigns
• Collaborative track record across technical, audit, compliance, and business collaborator teams
• Effective in distributed/virtual team environments across time zones
• Access governance in regulated industries: SOX, HIPAA, or GxP
• Relevant certifications: CISSP, CISM, or equivalent

Responsibilities

• Serve as a member of the Lilly Cybersecurity Identity and Access Management team, responsible for delivering and securing identity governance technologies.
• Partner with business collaborators, IT teams, and cybersecurity colleagues to ensure IGA solutions are designed, deployed securely, and aligned with enterprise security and technology strategies.
• Develop technical specifications, design patterns, standards-as-code, and security guidance for identity governance capabilities and services.
• Identify and optimize critical processes around identity lifecycle management, access certifications, role engineering, and continuous improvement of IGA technologies.
• Leverage technical expertise to evaluate, architect, and implement IGA solutions that meet business and security requirements.
• Design and maintain technical integrations of IGA platforms including joiner/mover/leaver lifecycle processes, access request workflows, role-based access control (RBAC), and automated provisioning and deprovisioning to meet business requirements.
• Ensure operational excellence for all IGA services, including monitoring, solving, and continuous optimization of identity governance workflows and access certification campaigns.
• Understand the evolving threat landscape and translate identity governance-related risks into actionable business and technical impacts, implementing appropriate IGA security controls.
• Collaborate effectively with cross-functional and remote team members to design and implement identity governance capabilities and solutions.
• Partner with business team members to develop and implement IGA solutions that strengthen security posture while enabling appropriate, timely access to enterprise resources.
• Stay current on IGA platform roadmap updates, emerging identity governance technologies, regulatory requirements, and compliance frameworks.
• Drive adoption of innovative IGA features to address complex, global identity lifecycle and access governance challenges.
• Collaborate with enterprise architects, application teams, and collaborators to understand business needs and incorporate feedback into IGA strategies and implementations.

Benefits

• company bonus (depending, in part, on company and individual performance)
• company-sponsored 401(k)
• pension
• vacation benefits
• medical, dental, vision and prescription drug benefits
• flexible benefits (e.g., healthcare and/or dependent day care flexible spending accounts)
• life insurance and death benefits
• certain time off and leave of absence benefits
• well-being benefits (e.g., employee assistance program, fitness benefits, and employee clubs and activities)