Senior Identity Governance Analyst

Job Description: • Configure and maintain advanced access request workflows across privileged systems (code repositories, databases, infrastructure), including role-based, time-bound, delegated, and just-in-time (JIT) access provisioning. • Lead authorization decisions for job functions and privileged data access from a governance perspective, establishing clear principles for critical systems including ST Admin roles, Snowflake data access, and other high-risk entitlements. • Design and implement automated workflows that bridge our core stacks (Okta, Veza, Lumos) to create a seamless, risk-based identity lifecycle. • Move us from periodic "point-in-time" reviews to continuous identity security. Monitor for identity risks like over-privileged accounts, "shadow" identities, and dormant access. • Establish the governance framework for non-human identities, including service accounts, API keys, and AI agents. Ensure AI integrations are secured through rigorous entitlement management. • Serve as the technical glue between Corporate Engineering, Security Architecture, and System Owners to ensure identity is baked into every enterprise tool. • Act as the primary technical point of contact for auditors (SOX, PCI, ISO 27001, SOC 1/2). Automate evidence collection so that compliance is a byproduct of good engineering, not a manual chore. • Partner deeply with our strategic vendors (Okta, Veza, Lumos) to influence their product roadmaps and maximize our ROI. Requirements: • 5+ years in Identity & Access Management (IAM/IGA). • Deep understanding of lifecycle management (Joiner/Mover/Leaver), RBAC/ABAC, and the Principle of Least Privilege. • Hands-on experience with modern IGA and Identity Discovery tools (e.g., Veza for authorization graphs, Lumos for SaaS governance, Okta for orchestration). • Proven experience managing non-human identities and secrets management in cloud-native environments (AWS/GCP). • Understanding of ISPM principles—detecting identity drift and misconfigurations before they are exploited. • Ability to translate complex regulatory requirements (like SOX or PCI) into technical controls and automated workflows. • Proficiency in Python, Go, or specialized workflow languages to automate provisioning and remediation tasks. Benefits: • Flexible time off with ample learning and development opportunities to continue growing your career. • Comprehensive onboarding program, leadership training for Titans at all levels, and other programs and events. • Great work is rewarded through Bonusly, peer-nominated awards, and more. • Company-paid medical, dental, and vision (with 100% employer paid options and 90% coverage for dependents), FSA and HSA, 401k match, and telehealth options including memberships to One Medical. • Parental leave and support, up to $20k in fertility services (i.e. IUI and IVF), surrogacy, and adoption reimbursement, on demand maternity support through Maven Maternity, free breast milk shipping through Maven Milk, pet insurance, legal advisory services, financial planning tools, and more. Apply tot his job Apply To this Job