Skip to content
JustworksJustworksNew York, NY

Sr. Identity and Access Management Analyst

Analyzes business requirements to design and implement RBAC and IAM solutions, conducts access reviews, supports deployments, and improves processes while ensuring compliance and risk mitigation. Requires 5+ years IAM experience with tools like Okta, SailPoint, and strong stakeholder collaboration skills.

Salary not listed
On-site5+ YOESecurity Engineering

About the role

Responsibilities

Business collaboration and requirements analysis

  • Partner with business stakeholders to analyze and define role-based access control (RBAC) requirements and permission models
  • Conduct access reviews and collaborate with business units to establish appropriate access levels and segregation of duties
  • Translate business requirements into technical IAM specifications and access policies
  • Facilitate workshops and requirements gathering sessions with cross-functional teams

Assist IAM Implementation

  • Support IAM leadership and engineers to execute IAM roadmaps
  • Design and document access control matrices, role hierarchies, and permission structures
  • Assist in the deployment and configuration of identity management solutions across enterprise systems
  • Coordinate with technical teams to ensure proper integration of IAM systems with business applications

Process Improvement

  • Continuously evaluate and improve IAM processes, workflows, and user experiences
  • Create and maintain comprehensive documentation for IAM processes, procedures, and system configurations
  • Develop training materials and provide guidance to end users and business stakeholders
  • Analyze access patterns and recommend optimization opportunities

Support Security Management and Risk Management

  • Help developing, maintaining, and enforcing IAM policies, standards, and procedures
  • Assess and document access-related risks and recommend appropriate mitigation strategies
  • Investigate and resolve access-related security incidents and policy violations
  • Support privilege access management (PAM) initiatives and monitor high-privilege account usage
  • Help Cyber Defense Operations triage incidents as need especially related to IAM
  • Work with Internal Audit, IT, and Digital Security to address access review gaps and ensure compliance with security policies and regulatory requirements

Qualifications

Experiences

  • 5+ years of hands-on experience in identity and access management, preferably in technology companies or enterprise environments
  • 3+ years of experience with RBAC design, implementation, and management
  • Extensive experience in the framework and process to define roles and permissions in IGA or RBAC implementations
  • Proven experience working with business stakeholders to gather requirements and translate them into access control specifications
  • Solid experience with IAM tools and platforms (e.g., AD, Okta, SailPoint, ForgeRock, CyberArk, or similar)
  • Demonstrated experience conducting access reviews, certifications, and compliance audits

Technical

  • Strong understanding of identity and access management concepts, protocols, and standards (SAML, OAuth, OpenID Connect, LDAP)
  • Proficiency with directory services and identity providers
  • Knowledge of privileged access management (PAM) concepts and tools
  • Understanding of segregation of duties (SoD) principles and risk-based access controls
  • Familiarity with compliance frameworks (SOX, PCI-DSS, HIPAA, etc.)

Communication and Collaboration

  • Exceptional written and verbal communication skills with ability to explain technical concepts to non-technical stakeholders
  • Proven ability to work collaboratively across diverse teams and organizational levels
  • Experience facilitating meetings, workshops, and training sessions
  • Strong customer service orientation and stakeholder management skills
  • Strong analytical and organizational skills

Preferred Qualifications

  • Bachelor's degree in Information Technology, Computer Science, or related field
  • Industry certifications such as CISSP, CISA, CISM, or vendor-specific IAM certifications
  • Experience with cloud IAM platforms (AWS IAM, Azure AD, Google Cloud IAM)
  • Knowledge of zero trust architecture and modern identity security concepts
  • Experience with automated provisioning and deprovisioning workflows
  • Familiarity with IT service management (ITSM) tools and processes

Skills

OktaSailpointForgerockCyberarkActive DirectorySAMLOAuthOpenid ConnectLdapRBACPamAws IamAzure AdGoogle Cloud IamSod
Snowflake

Senior Software Engineer

SnowflakeBellevue, WA +1

Senior Software Engineer building Snowflake's core identity, access management, and AI-native security infrastructure for the Data Cloud. Design secure agent workflows, IAM systems, encryption, and policy enforcement tooling at massive scale.

200k – 288k/yr
Hybrid5+ YOESecurity Engineering
Anthropic

Software Security Engineering Manager, Secure Frameworks

AnthropicSan Francisco, CA +1

Lead the Secure Frameworks Research team at Anthropic to build high-leverage security libraries and frameworks (cryptographic, serialization, authorization) that prevent vulnerabilities in AI model development. Manage engineers, drive adoption across teams, and balance security rigor with development velocity; requires 5+ years security/software engineering and 3+ years managing security teams.

405k – 485k/yr
Hybrid8+ YOESecurity Engineering
Forus

Founding Security Engineer

ForusNew York, NY

Founding Security Engineer owning cloud (AWS/GCP), product, AI data, detection/response, and compliance (HIPAA/SOC 2) for a healthcare AI platform handling PHI at scale. Requires 7+ years security engineering on strong SWE foundation, hands-on IaC, and multi-domain expertise.

Salary not listed
On-site7+ YOESecurity Engineering
Flexport

Manager, Supply Chain Protection & Loss Intelligence

FlexportMiami, FL

Manager responsible for global supply chain protection, loss prevention, and physical security programs at Flexport. Oversees 50+ security officers, electronic systems (CCTV/access control), data-driven investigations, policy/SOP authoring, and new facility stand-up across offices and fulfillment centers.

Salary not listed
On-site8+ YOESecurity Engineering
Crusoe

Physical Security Manager

CrusoeDallas, TX

Lead day-to-day operations of Crusoe's 24/7 Global Security Operations Center (GSOC), overseeing monitoring, incident response, intelligence, and crisis management to protect facilities and infrastructure. Requires experience building high-performing teams, driving operational maturity, and ensuring compliance in a fast-growing environment.

Salary not listed
On-site7+ YOESecurity Engineering