Identity Governance / Lifecycle Management (LCM) Architect
About The Position
A Veza Identity Governance / Lifecycle Management (LCM) Architect designs and deploys access controls, authorization policies, and automated workflows on the Veza platform. Candidates require 5 to 10+ years of IAM experience, proficiency with cloud/SaaS access management, and strong customer-facing consulting or engineering skills. Veza is the pioneer in identity security, purpose-built to answer the fundamental question enterprises face: who can and should take what action on what data. Veza's Access Graph platform maps an organization's entire identity ecosystem across users, groups, roles, policies, permissions, and resources providing deep visibility and control over human, non-human, and agentic identities across SaaS, cloud, on-prem, and custom applications. With over 30 billion access permissions under management, global enterprises including Blackstone, Expedia, and Wynn Resorts trust Veza to manage privileged access monitoring, non-human identity security, access entitlement management, and next-generation identity governance. Founded in 2020 and headquartered in Redwood City, California, Veza is now part of the ServiceNow family, with the acquisition closing in March 2026. The combination brings together Veza's AI-native Access Graph with ServiceNow's AI Control Tower and agentic workflows, enabling organizations to enforce end-to-end identity security rooted in the principle of least privilege across applications, data, cloud environments, and AI agents. For engineers joining Veza today, this means the scale and resources of an enterprise platform company, with the product velocity and mission-driven focus of a security innovator at a pivotal moment in the industry.
Requirements
- 5+ years of hand on professional experience in IAM (Identity and Access Management) architecture, security consulting, or customer success.
- Bachelor’s Degree in CS, Cybersecurity, or equivalent practical experience.
- Fluency in IGA (Identity Governance & Administration) platforms, authorization graphs, and access discovery.
- Hands-on experience integrating identity platforms across cloud service providers (AWS, Azure, GCP) and enterprise SaaS (Microsoft 365, Salesforce, ServiceNow, GitHub).
- Deep understanding of Joiner/Mover/Leaver (JML) processes and automated provisioning workflows.
- Mastery of RBAC (Role-Based Access Control), ABAC (Attribute-Based Access Control), and the Principle of Least Privilege.
- Ability to govern and track machine identities, service accounts, and API keys.
- Practical knowledge of building API-driven integrations using Python, REST APIs, or SQL.
- Ability to translate complex access policies into actionable technical controls and advise CISOs/Security Leaders.
- Track record of gathering requirements, conducting stakeholder workshops, and leading deployments from kickoff to production.
- Customer-centric problem solvers with an ownership mindset and can lead projects independently.
Responsibilities
- Designs and deploys access controls, authorization policies, and automated workflows on the Veza platform.
Benefits
- health plans
- flexible spending accounts
- a 401(k) Plan with company match
- ESPP
- matching donations
- a flexible time away plan
- family leave programs
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
