Identity Governance/Lifecycle Management; LCM Architect
Listed on 2026-06-27
-
IT/Tech
Cybersecurity
Veza is the pioneer in identity security, purpose‑built to answer the fundamental question enterprises face: who can and should take what action on what data. Veza's Access Graph platform maps an organization's entire identity ecosystem across users, groups, roles, policies, permissions, and resources providing deep visibility and control over human, non‑human, and agentic identities across SaaS, cloud, on‑prem, and custom applications.
With over 30 billion access permissions under management, global enterprises including Blackstone, Expedia, and Wynn Resorts trust Veza to manage privileged access monitoring, non‑human identity security, access entitlement management, and next‑generation identity governance.
Founded in 2020 and headquartered in Redwood City, California, Veza is now part of the Service Now family, with the acquisition closing in March 2026. The combination brings together Veza's AI‑native Access Graph with Service Now's AI Control Tower and agentic workflows, enabling organizations to enforce end‑to‑end identity security rooted in the principle of least privilege across applications, data, cloud environments, and AI agents.
For engineers joining Veza today, this means the scale and resources of an enterprise platform company, with the product velocity and mission‑driven focus of a security innovator at a pivotal moment in the industry.
A Veza Identity Governance / Lifecycle Management (LCM) Architect designs and deploys access controls, authorization policies and automated workflows on the Veza platform. Candidates require 5 to 10+ years of IAM experience, proficiency with cloud/SaaS access management, and strong customer‑facing consulting or engineering skills.
Core Qualifications & Experience- Experience:
5+ years of hand on professional experience in IAM (Identity and Access Management) architecture, security consulting, or customer success. - Education:
Bachelor’s Degree in CS, Cybersecurity, or equivalent practical experience. - Platform Knowledge:
Fluency in IGA (Identity Governance & Administration) platforms, authorization graphs, and access discovery. - Cloud & SaaS:
Hands‑on experience integrating identity platforms across cloud service providers (AWS, Azure, GCP) and enterprise SaaS (Microsoft 365, Salesforce, Service Now, Git Hub).
- Lifecycle Management:
Deep understanding of Joiner/Mover/Leaver (JML) processes and automated provisioning workflows. - Authorization Models:
Mastery of RBAC (Role‑Based Access Control), ABAC (Attribute‑Based Access Control), and the Principle of Least Privilege. - Non‑Human Identities:
Ability to govern and track machine identities, service accounts, and API keys. - Scripting/APIs:
Practical knowledge of building API‑driven integrations using Python, REST APIs, or SQL.
- Executive Communication:
Ability to translate complex access policies into actionable technical controls and advise CISOs/Security Leaders. - Project Leadership:
Track record of gathering requirements, conducting stakeholder workshops, and leading deployments from kickoff to production. - Core Values:
Veza typically looks for customer‑centric problem solvers with an ownership mindset and can lead projects independently.
For positions in this location, we offer a base pay of $123,900 - $216,800
, plus equity (when applicable), variable/incentive compensation and benefits. Sales positions generally offer a competitive OTE incentive compensation structure. Please note that the base pay shown is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies, and work location. We also offer health plans, including flexible spending accounts, a 401(k) Plan with company match, ESPP, matching donations, a flexible time away plan and family leave programs.
Compensation is based on the geographic location in which the role is located and is subject to change based on work location.
We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to Service Now…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).