Saviynt IAM SME / Architect- San Francisco, CA

OMG Technology•San Francisco, CA

16h•$65 - $55•Hybrid

About The Position

We are seeking a Saviynt IAM SME / Architect with strong hands-on experience in Saviynt, minimum 6+ years of experience. This role involves end-to-end implementation and support of Saviynt EIC/EICaaS solutions, including design and configuration of access request workflows, certifications (attestations), and role models. You will be responsible for the development and customization of connectors, rules, and identity lifecycle processes, as well as hands-on experience with entitlements, roles, account ownership models, and segregation of duties (SoD). The role also includes API integration and testing using REST/SOAP (Postman), JSON, XML, and system integration with enterprise systems such as Active Directory / Azure AD, Okta / SSO platforms, Workday / HR systems, ServiceNow, and AWS / cloud platforms. Implementation of identity lifecycle management (joiner/mover/leaver) processes and support for MFA, SSO, and Zero Trust-aligned architectures are key responsibilities. Additionally, you will support and integrate with Privileged Access Management (PAM) platforms, perform Active Directory engineering in hybrid environments, and enforce least privilege, just-in-time (JIT), and just-enough access (JEA) models. Continuous monitoring of privileged accounts and access risks, scripting and automation using PowerShell, Groovy, SQL, and CI/CD-aligned support for IAM deployments are also part of the role. You will handle ongoing incident, request, and change management for IAM platforms, support audit readiness and compliance frameworks (e.g., SOX, PCI DSS), and focus on continuous improvement of access governance, analytics, and reporting, including documentation of architecture, configurations, and operational procedures.

Requirements

Minimum 6+ years of experience in IAM
Minimum 3+ years hands-on with IGA platforms (Saviynt strongly preferred)
Deep expertise in identity governance concepts: certifications, roles, entitlements, and access controls
Strong integration background across enterprise and cloud systems
Experience with Saviynt
Experience with Active Directory / Azure AD
Experience with Okta / SSO platforms
Experience with Workday / HR systems
Experience with ServiceNow
Experience with AWS / cloud platforms
Experience with API integration and testing using REST/SOAP (Postman), JSON, XML
Experience with scripting and automation using PowerShell, Groovy, SQL
Experience with identity lifecycle management (joiner/mover/leaver) processes
Experience with MFA, SSO, and Zero Trust-aligned architectures
Experience with Privileged Access Management (PAM) platforms
Experience with Active Directory engineering in hybrid environments
Experience with least privilege, just-in-time (JIT), and just-enough access (JEA) models
Experience with audit readiness and compliance frameworks (e.g., SOX, PCI DSS)

Nice To Haves

Saviynt IAM SME / Architect
Saviynt IGA Delivery & Engineering
Design and configuration of access request workflows, certifications (attestations), and role models
Development and customization of connectors, rules, and identity lifecycle processes
Hands-on experience with entitlements, roles, account ownership models, and segregation of duties (SoD)
API integration and testing using REST/SOAP (Postman), JSON, XML
System Integration & Identity Ecosystem
Integration of Saviynt with enterprise systems such as: Active Directory / Azure AD, Okta / SSO platforms, Workday / HR systems, ServiceNow, AWS / cloud platforms
Implementation of identity lifecycle management (joiner/mover/leaver) processes
Support for MFA, SSO, and Zero Trust-aligned architectures
Privileged Access & Directory Services
Support and integration with Privileged Access Management (PAM) platforms
Active Directory engineering in hybrid environments (on-prem + cloud)
Enforcement of least privilege, just-in-time (JIT), and just-enough access (JEA) models
Continuous monitoring of privileged accounts and access risks
Automation & DevOps Enablement
Scripting and automation using PowerShell, Groovy, SQL
CI/CD-aligned support for IAM deployments and enhancements
API-driven provisioning and system integration
Operations, Compliance & Optimization
Ongoing incident, request, and change management for IAM platforms
Support for audit readiness and compliance frameworks (e.g., SOX, PCI DSS)
Continuous improvement of access governance, analytics, and reporting
Documentation of architecture, configurations, and operational procedures

Responsibilities

End-to-end implementation and support of Saviynt EIC/EICaaS solutions
Design and configuration of access request workflows, certifications (attestations), and role models
Development and customization of connectors, rules, and identity lifecycle processes
Hands-on experience with entitlements, roles, account ownership models, and segregation of duties (SoD)
API integration and testing using REST/SOAP (Postman), JSON, XML
Integration of Saviynt with enterprise systems such as: Active Directory / Azure AD, Okta / SSO platforms, Workday / HR systems, ServiceNow, AWS / cloud platforms
Implementation of identity lifecycle management (joiner/mover/leaver) processes
Support for MFA, SSO, and Zero Trust-aligned architectures
Support and integration with Privileged Access Management (PAM) platforms
Active Directory engineering in hybrid environments (on-prem + cloud)
Enforcement of least privilege, just-in-time (JIT), and just-enough access (JEA) models
Continuous monitoring of privileged accounts and access risks
Scripting and automation using PowerShell, Groovy, SQL
CI/CD-aligned support for IAM deployments and enhancements
API-driven provisioning and system integration
Ongoing incident, request, and change management for IAM platforms
Support for audit readiness and compliance frameworks (e.g., SOX, PCI DSS)
Continuous improvement of access governance, analytics, and reporting
Documentation of architecture, configurations, and operational procedures