SENIOR DOMAIN ANALYST - Access Management SSO MFA

Senior Analyst - IAM Assurance & Compliance, Identity & Access Management (IAM)

Role Summary

The Senior Analyst - IAM Assurance & Compliance is responsible for leading and enhancing Identity & Access Management (IAM) governance, ensuring strong control execution, and driving compliance across the enterprise. This role oversees critical IAM control processes, partners with auditors and application teams, and acts as a subject-matter expert on SOX ITGC, access governance, and Identity Governance & Administration (IGA) platforms such as SailPoint or equivalent solutions.

The role requires end-to-end ownership of access reviews, control design, remediation, and continuous improvement across IAM processes. The position also leverages automation and data-driven techniques to improve the efficiency, consistency, and auditability of IAM control execution and monitoring.

Key Responsibilities ? Governance, Risk & Compliance

• Own end-to-end SOX ITGC Access Management controls including User Access Reviews (UAR), Privileged Access Management (PAM), Joiner-Mover-Leaver (JML) processes, and periodic control attestations.
• Lead internal and external audit cycles including walkthroughs, evidence coordination, issue response, and remediation tracking.
• Perform control design assessments and operating effectiveness evaluations.
• Govern remediation activities and provide management oversight through structured reporting and dashboards.
  
  

Operational Excellence & Control Enhancement

• Supervise execution of access governance cycles including UARs, PAM reviews, and periodic access validations.
• Design and implement automation using Python, Power Automate, or RPA to enhance IAM control execution, evidence generation, and exception handling.
• Automate recurring control activities such as access population extraction, reconciliation, aging analysis, and reviewer follow-ups.
• Build reusable IAM assurance frameworks, scripts, and templates to standardize control execution.
• Perform deep analysis of access anomalies and control deficiencies using automated data analysis techniques.
  
  

Automation, Data Analytics & Continuous Improvement

• Apply automation and analytics techniques to support IAM assurance use cases including SOX User Access Reviews and privileged access validations.
• Develop automated dashboards, control metrics, and exception reports to support management oversight and audit readiness.
• Collaborate with IAM engineering, ITSM, and automation teams to embed controls into workflows.
• Identify opportunities to transition manual assurance activities into sustainable automated solutions.
  
  

Stakeholder Engagement & Leadership

• Serve as primary point of contact for Business Units, BISOs, IAM engineering teams, and ITSM stakeholders.
• Provide advisory support on access design, RBAC models, and segregation of duties considerations.
• Influence compliance with Group IAM standards and policies.
• Mentor junior analysts and contribute to capability building.
  
  

Required Skills & Qualifications

• 6 - 9 years of experience in IAM, IT Risk, IT Controls, or related disciplines in a regulated environment.
• Strong knowledge of SOX ITGC Access Management controls.
• Proficiency with SailPoint or equivalent IGA platforms will be a plus.
• Understanding of Active Directory, Azure AD, Privileged Access Management tools, and RBAC.
• Hands-on experience with Python, Power Automate, or RPA to support IAM assurance activities.
• Ability to translate control requirements into automated or semi-automated solutions while maintaining audit defensibility.
  
  

Education & Certifications

Bachelor?s degree required.

Preferred certifications include CISA, CISM, CRISC, SailPoint certifications, or equivalent.

Why This Role Is Critical

This role strengthens IAM assurance across the organization, ensuring access governance is audit-ready, risk-aware, and scalable.

By embedding automation and analytics into IAM assurance activities, the role enables consistent control execution, improved audit outcomes, and reduced operational risk.

Access Management (SSO/MFA)

---