Identity and Access Governance Analyst

About The Position

Requirements

• 3–5 years of experience in identity governance or IAM operations.
• Hands-on experience with IAM and IGA platforms and access certification processes.
• Working knowledge of regulatory frameworks (NYDFS, SEC Reg S-P, NIST CSF) and audit practices.
• Ability to manage attestation campaigns and enforce compliance procedures.
• Strong organizational, documentation, and communication skills.
• Ability to work independently and meet deadlines.

Nice To Haves

• Experience managing identity governance programs in large or regulated environments.
• Advanced knowledge of IAM concepts such as role-based access control, segregation of duties, and privileged access management.
• Experience onboarding applications and connectors in Saviynt or similar platforms.
• Familiarity with identity governance metrics and reporting practices.
• Strong analytical and problem-solving skills for resolving access-related issues.
• Professional certifications such as CISA, CISSP, or CCSP are highly desirable.

Responsibilities

• Lead and manage periodic access attestation campaigns by defining scope, scheduling timelines, coordinating with application owners, and ensuring full completion of certifications across all in-scope systems.
• Implement and enforce escalation procedures for non-compliance by monitoring attestation progress, identifying overdue items, notifying responsible parties, and escalating unresolved issues to management for corrective action.
• Maintain and prioritize the IAM engineering backlog by gathering requests, assessing business impact, and partnering with engineering teams to onboard new platforms into Saviynt and deliver identity governance enhancements.
• Develop and maintain identity governance standards and procedures including joiner/mover/leaver workflows, privileged access management, separation of duties, and emergency access protocols to ensure consistent compliance.
• Prepare and deliver audit-ready documentation and evidence for all identity governance activities, including attestation results, exception handling, and remediation plans, to support internal and external audits.
• Collaborate with Audit, Risk, and Security teams to resolve identity- and access-related issues, implement corrective actions, and maintain compliance with regulatory requirements and internal policies.
• Design, produce, and present identity- and access-related governance metrics and reporting such as attestation completion rates, exception aging, privileged access reviews, and backlog progress for leadership and audit committees.
• Coordinate and manage the IAM roadmap by partnering with engineering teams to plan and execute application onboarding, ensure connector stability and health, and prioritize integration efforts for Saviynt and other identity governance platforms.
• Support broader IT GRC initiatives by contributing to IT policy updates, awareness campaigns, and providing backup coverage for other IT GRC analysts as needed.
• Perform additional IT GRC responsibilities as assigned to ensure team objectives and compliance obligations are met.

Benefits

• health
• vision
• dental insurance
• 401k
• paid time away
• volunteer days