IAM Specialist - Recertifications

Senior/Lead Identity and Access Management Specialist (Recertification Focus)

Lincoln, RI (remote or hybrid). Full‑time, 37.5‑hour work week. Salary range: $94,748 – $145,985 based on experience; eligible for annual variable incentive.

This role focuses on identity and access management operations, including application onboarding, access provisioning, recertification campaigns, and privileged access management.

• Implement, configure, upgrade, and maintain IAM platforms that provision access, recertify access, and vault privileged credentials.
• Gather and document requirements for onboarding applications into IAM platforms.
• Map access models and support integration activities based on onboarding requirements.
• Administer user access provisioning and deprovisioning in accordance with IAM policies.
• Coordinate and execute access recertification campaigns, track completion, resolve issues, and validate results for audit readiness.
• Define, document, and maintain role‑based access control (RBAC) models, roles, entitlements, and inheritance structures.
• Administer privileged access management (PAM) processes, including provisioning, credential management, and elevated access validation.
• Create, maintain, and validate IAM documentation—application onboarding artifacts, entitlement definitions, and audit evidence.
• Monitor and manage IAM request queues to meet service level agreements and resolve requests timely.
• Identify and escalates access control issues or risks.
• Collaborate with application owners, business stakeholders, and security teams to gather requirements and implement controls.
• Communicate access decisions, risks, and IAM processes clearly to technical and non‑technical stakeholders.
• Share knowledge, document processes, and provide guidance to promote consistency and operational excellence.
• Support cross‑functional IAM initiatives aligned with enterprise security and governance objectives.
• Continuously develop knowledge of IAM tools, technologies, and best practices.
• Diagnose and resolve access‑related issues: provisioning errors, entitlement conflicts, and policy violations.
• Identify opportunities to improve IAM processes, workflows, and automation to increase efficiency and reduce risk.
• Apply risk‑based analysis to access decisions, ensuring alignment with security policies and regulatory requirements.
• Foster a culture of learning and creativity within the team.
• Perform additional duties as required.

• Bachelor’s degree or equivalent combination of education and experience (6+ years). Must successfully perform essential functions.
• Deep expertise in IAM: access provisioning, RBAC, identity governance, and privileged access management.
• Experience leveraging AI and large language models (LLMs) to automate processes, enhance decision‑making, or improve operational efficiency.
• Hands‑on programming and scripting:
  Java, Python, SQL, or Power Shell.
• Experience with NetIQ IDM, Open Text IGA, SailPoint, Saviynt, or similar products is preferred.
• Strong communication and interpersonal skills at all organizational levels.
• Excellent problem‑solving and troubleshooting skills for complex platform issues.
• Ability to manage difficult situations across IT and business units effectively.
• Perseverance through resistance and setbacks to complete tasks.
• Capability to manage large, complex assignments with a focus on successful outcomes.
• Commitment to continuous improvement in innovation, quality, productivity, and documentation.
• Willingness to expand technical knowledge and stay current with emerging technologies.

• Medical, dental, vision, short and long‑term disability, and life insurance.
• Paid vacation: at least 13 days in the first year (accrues monthly).
• 14 paid holidays observed.
• Sick time: 6 days at hire, additional 6 days at 90 days.
• Generous 401(k) with company match and immediate vesting; annual 3% non‑elective employer contribution.
• Annual Success Sharing Plan – paid if company meets performance goals.
• Generous leave programs, including paid parental bonding leave.
• Student loan repayment and tuition reimbursement.
• Fitness and wellness reimbursement.
• Employee community involvement and opportunities for…