# Sr. Identity and Access Management Analyst

**Company:** [Justworks](https://hotfix.jobs/companies/justworks)
**Location:** New York, NY
**Role:** Security Engineering
**Experience:** 5+ years
**Skills:** Okta, Sailpoint, Forgerock, Cyberark, Active Directory, SAML, OAuth, Openid Connect, Ldap, RBAC, Pam, Aws Iam, Azure Ad, Google Cloud Iam, Sod
**Posted:** 2026-04-16

> Analyzes business requirements to design and implement RBAC and IAM solutions, conducts access reviews, supports deployments, and improves processes while ensuring compliance and risk mitigation. Requires 5+ years IAM experience with tools like Okta, SailPoint, and strong stakeholder collaboration skills.

## Job Description

## Responsibilities

**Business collaboration and requirements analysis**
- Partner with business stakeholders to analyze and define role-based access control (RBAC) requirements and permission models
- Conduct access reviews and collaborate with business units to establish appropriate access levels and segregation of duties
- Translate business requirements into technical IAM specifications and access policies
- Facilitate workshops and requirements gathering sessions with cross-functional teams

**Assist IAM Implementation**
- Support IAM leadership and engineers to execute IAM roadmaps
- Design and document access control matrices, role hierarchies, and permission structures
- Assist in the deployment and configuration of identity management solutions across enterprise systems
- Coordinate with technical teams to ensure proper integration of IAM systems with business applications

**Process Improvement**
- Continuously evaluate and improve IAM processes, workflows, and user experiences
- Create and maintain comprehensive documentation for IAM processes, procedures, and system configurations
- Develop training materials and provide guidance to end users and business stakeholders
- Analyze access patterns and recommend optimization opportunities

**Support Security Management and Risk Management**
- Help developing, maintaining, and enforcing IAM policies, standards, and procedures
- Assess and document access-related risks and recommend appropriate mitigation strategies
- Investigate and resolve access-related security incidents and policy violations
- Support privilege access management (PAM) initiatives and monitor high-privilege account usage
- Help Cyber Defense Operations triage incidents as need especially related to IAM
- Work with Internal Audit, IT, and Digital Security to address access review gaps and ensure compliance with security policies and regulatory requirements

## Qualifications

**Experiences**
- 5+ years of hands-on experience in identity and access management, preferably in technology companies or enterprise environments
- 3+ years of experience with RBAC design, implementation, and management
- Extensive experience in the framework and process to define roles and permissions in IGA or RBAC implementations
- Proven experience working with business stakeholders to gather requirements and translate them into access control specifications
- Solid experience with IAM tools and platforms (e.g., **AD**, **Okta**, **SailPoint**, **ForgeRock**, **CyberArk**, or similar)
- Demonstrated experience conducting access reviews, certifications, and compliance audits

**Technical**
- Strong understanding of identity and access management concepts, protocols, and standards (**SAML**, **OAuth**, **OpenID Connect**, **LDAP**)
- Proficiency with directory services and identity providers
- Knowledge of privileged access management (PAM) concepts and tools
- Understanding of segregation of duties (SoD) principles and risk-based access controls
- Familiarity with compliance frameworks (**SOX**, **PCI-DSS**, **HIPAA**, etc.)

**Communication and Collaboration**
- Exceptional written and verbal communication skills with ability to explain technical concepts to non-technical stakeholders
- Proven ability to work collaboratively across diverse teams and organizational levels
- Experience facilitating meetings, workshops, and training sessions
- Strong customer service orientation and stakeholder management skills
- Strong analytical and organizational skills

## Preferred Qualifications
- Bachelor's degree in Information Technology, Computer Science, or related field
- Industry certifications such as **CISSP**, **CISA**, **CISM**, or vendor-specific IAM certifications
- Experience with cloud IAM platforms (**AWS IAM**, **Azure AD**, **Google Cloud IAM**)
- Knowledge of zero trust architecture and modern identity security concepts
- Experience with automated provisioning and deprovisioning workflows
- Familiarity with IT service management (ITSM) tools and processes

## Similar roles

- [Senior Software Engineer](https://hotfix.jobs/jobs/2ad28874-4486-42ff-949a-ec54985c2762) - Snowflake - Bellevue, WA - $200k – $288k/yr
- [Software Security Engineering Manager, Secure Frameworks](https://hotfix.jobs/jobs/26e1ecde-76c2-491f-951c-78e9c075c076) - Anthropic - San Francisco, CA - $405k – $485k/yr
- [Founding Security Engineer](https://hotfix.jobs/jobs/6deb6526-e0c3-42a9-9c29-360c4354d869) - Forus - New York, NY
- [Manager, Supply Chain Protection & Loss Intelligence](https://hotfix.jobs/jobs/9e3a84ce-58cf-480f-bf1d-6fefa2cf89bf) - Flexport - Miami, FL
- [Physical Security Manager](https://hotfix.jobs/jobs/053f4772-7be2-438c-b890-e7752ae44a12) - Crusoe - Dallas, TX

**Apply:** https://hotfix.jobs/jobs/666b27ca-5d0f-4b32-8b69-c010ad50b14b
**Canonical:** https://hotfix.jobs/jobs/666b27ca-5d0f-4b32-8b69-c010ad50b14b