Senior GRC Engineer

About The Position

Requirements

• 6-9 years of experience in Identity & Access Management (IAM) or IGA Engineering roles in complex enterprise environments.
• Proven ability to design (not just configure) scalable IAM/IGA integrations and solutions.
• Hands-on experience with IGA platforms (e.g., Saviynt, SailPoint, Zilla, or similar).
• Expertise in integration development using APIs and scripting languages (Python, Bash, PowerShell).
• Solid understanding of federation and access control standards (SAML, OAuth, OIDC).
• Experience with cloud identity governance in SaaS/IaaS platforms (AWS IAM, Okta, Ping Entra-ID, etc.).
• Familiarity with compliance frameworks beyond SOX - e.g., NIST, SOC2, PCI-DSS.
• Experience preparing audit evidence and control documentation.
• Knowledge of privileged access management concepts user lifecycle monitoring, and segregation of duties.
• Experience with automation/orchestration tools (Tines, Terraform, Workato, Rego/OPA, or similar).

Nice To Haves

• Familiarity with Role/Attribute-Based Access Control (RBAC/ABAC) and dynamic access models.
• Experience using IAM data for security analytics and access related telemetry.
• Understanding of risk-based authentication and adaptive MFA.
• Strong communication skills - able to explain IAM/IGA concepts to non-technical stakeholders.
• Project leadership or vendor management experience within IAM-related initiatives.
• Relevant certifications: CISSP, CISM, CISA, or Certified Identity & Access Manager (CIAM).

Responsibilities

• Design & Architecture: Lead the design of scalable IAM/IGA architectures, integrations, and process automations supporting identity lifecycle management, access requests, and certification campaigns.
• Integration & Automation: Develop and maintain integrations with HR systems, IdPs (Eg. Okta, Ping Identity, AD/Entra-ID, etc.), and cloud platforms (AWS, Azure, GCP), and SaaS solutions, via APIs, Python, SFTP, etc.
• Process Optimization: Identify and drive continuous improvement opportunities within IAM workflows - reduce manual tasks, improve auditability, and increase efficiency through automation.
• Governance & Compliance: Ensure IAM controls align with SOX, NIST CSF 2.0, and other frameworks; prepare evidence and documentation for internal and external audits.
• Privileged Access & Risk-Based Controls: Support privileged access management (PAM) initiatives, adaptive authentication, and risk-based decisioning.
• Data & Analytics: Leverage IAM/IGA data for access risk scoring, trends, and segregation of duty analysis (SoD).
• Collaboration & Influence: Partner with engineering and compliance teams to embed "policy as code" and governance controls directly into CI/CD and operational pipelines.
• Mentorship: Guide junior engineers and analysts on IAM/IGA best practices and solution design.

Benefits

• We offer amazing benefits above and beyond the basics. We have an array of health plans to choose from (some as low as $0 per paycheck) that include programs for fertility and family planning, mental health support, and fitness benefits.
• We offer generous paid time off (PTO & sick leave), annual bonus and long-term incentive opportunities (based on performance), 401k with up to a 5% match, commuter benefits , pet insurance, and more - check out all our benefits here: FanDuel Total Rewards.
• Benefits differ across location, role, and level.
• medical, vision, and dental insurance; life insurance; disability insurance; a 401(k) matching program; among other employee benefits.
• This role may also be eligible for short-term or long-term incentive compensation, including, but not limited to, cash bonuses and stock program participation.
• This role includes paid personal time off and 14 paid company holidays.
• FanDuel offers paid sick time in accordance with all applicable state and federal laws.