Jobs · Engineering · Massachusetts

Senior IAM Engineer – Identity Governance & Administration

Moderna · Cambridge, MA · 3 wk ago
Engineering$131k–$209k/yrFull-time

About the role

Moderna is seeking a Senior IAM Engineer with expertise in Identity Governance & Administration (IGA) to help design, build, and scale our identity governance capabilities across the enterprise.

Responsibilities

  • Serve as a senior technical leader and hands-on engineer for Identity Governance & Administration (IGA), contributing to both platform strategy and engineering execution
  • Lead and actively contribute to the design, implementation, and continuous improvement of identity governance capabilities, including:
    • Access request and approval workflows
    • Identity lifecycle management (Joiner/Mover/Leaver processes)
    • Access certifications and recertifications
    • Role-based access control (RBAC) and access policies
  • Design and implement scalable provisioning and deprovisioning solutions across enterprise systems and applications
  • Partner with business stakeholders and application owners to gather requirements and translate them into technical designs and governance models
  • Integrate IAM/IGA solutions with enterprise systems, including Active Directory, Entra ID, Okta, and SaaS applications
  • Develop and maintain workflows, automation, and integrations using APIs, scripting, and modern identity standards (e.g., SCIM, REST APIs)
  • Troubleshoot complex access, provisioning, and identity governance issues across systems and platforms
  • Evaluate the current identity governance landscape, identify gaps, and drive improvements in security, scalability, and user experience
  • Establish and support governance processes aligned with regulatory and audit requirements (e.g., GxP, SOX), including access reviews and policy enforcement
  • Develop documentation, standards, and runbooks to support consistency, scalability, and audit readiness
  • Collaborate with cybersecurity, infrastructure, and compliance teams to align identity governance controls with enterprise security strategy
  • Stay current with industry trends, emerging technologies, and best practices in IAM and identity governance

Requirements

  • Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience)
  • 8+ years of experience in IT, cybersecurity, or identity engineering
  • 5+ years of experience in Identity and Access Management (IAM), with strong exposure to Identity Governance & Administration (IGA)
  • Hands-on experience implementing or supporting IGA capabilities such as lifecycle management, provisioning, and access certifications
  • Experience integrating IAM solutions with enterprise systems and applications (e.g., Active Directory, Entra ID, Okta, SaaS platforms)
  • Experience with identity lifecycle processes, including provisioning, deprovisioning, and role-based access control
  • Experience working with APIs, automation, and scripting (e.g., PowerShell, JSON, REST APIs)
  • Strong understanding of identity security principles, including least privilege, Zero Trust, and access governance
  • Experience working in complex, fast-paced environments with the ability to manage multiple priorities

Qualifications

  • Experience implementing one or more IGA platforms (e.g., SailPoint, Saviynt, Omada, One Identity)
  • Experience supporting or leading IGA platform selection efforts, including participation in RFP/RFI processes, vendor evaluations, and proof-of-concept (POC) activities
  • Experience designing and implementing access certification programs, governance models, and role frameworks (RBAC/ABAC)
  • Experience with ServiceNow or similar platforms for access request workflows and automation
  • Familiarity with identity architecture in hybrid environments (on-prem and cloud)
  • Experience working in regulated environments (GxP, SOX, or similar)
  • Strong understanding of identity governance best practices and industry frameworks
  • Experience with automation tools and scripting (PowerShell, APIs, etc.)
  • Relevant certifications such as CISSP, CISM, or IAM/IGA-related certifications
  • Strong analytical, problem-solving, and communication skills, with the ability to influence both technical and non-technical stakeholders
  • A desire to make an impact as part of a high-growth, transformational company that is Bold, Relentless, Curious, and Collaborative

Similar jobs