Overview

Identity Access Management – Nashville, 37201, United States of America 

Job Summary 

We are currently seeking an Identity & Access Management Engineer with specialization in Identity Governance & Administration (IGA) to join UMG’s global Tech Security & Identity organization. Reporting to the VP, Tech Security & Identity, this is a hands-on engineering role responsible for designing, implementing, and operating enterprise IGA capabilities across a complex, global environment. 

This engineer will play a critical role in governing digital identities, access entitlements, and lifecycle processes for employees, contractors, and non-employee populations. The role emphasizes strong engineering execution, automation, and operational discipline, partnering closely with security, HR, infrastructure, and application teams to ensure access is provisioned appropriately, reviewed regularly, and removed in a timely manner. The ideal candidate brings deep experience with modern IGA platforms, strong understanding of access governance controls, and the ability to operate at scale in a regulated enterprise. 

Job Functions 

Design, engineer, deploy, and operate Identity Governance & Administration (IGA) solutions across the enterprise. 

Implement and manage identity lifecycle processes including joiner, mover, and leaver (JML) workflows for employees and non-employee identities. 

Engineer and maintain access request, approval, and provisioning workflows integrated with HR systems, directories, and enterprise applications. 

Design and operate access governance controls including role models, entitlement catalogs, access certifications, and periodic access reviews. 

Partner with application owners and platform teams to onboard applications into IGA and remediate access governance gaps. 

Develop and maintain automation and integrations for IGA workflows using scripting, APIs, and infrastructure-as-code approaches (e.g., PowerShell, Python). 

Support segregation of duties (SoD) controls, access policy enforcement, and audit readiness activities. 

Troubleshoot and resolve complex identity lifecycle, provisioning, and access-related issues across integrated systems. 

Collaborate with Security, HR, Compliance, and Infrastructure teams to ensure identity governance controls align with security policies and regulatory requirements. 

Maintain technical documentation, configuration standards, and operational runbooks to support scalable and repeatable IGA operations. 

Continuously identify opportunities to improve access governance maturity, reduce manual effort, and enhance user experience through automation and platform enhancements. 

Job Requirements 

Essential Qualifications 

5+ years of hands-on experience in Identity & Access Management or Security Engineering roles, with a strong focus on Identity Governance & Administration. 

Demonstrated experience implementing and operating enterprise IGA platforms (e.g., Saviynt, SailPoint, or equivalent). 

Strong understanding of identity lifecycle management, access provisioning, role-based access control (RBAC), and entitlement governance. 

Hands-on experience designing and supporting access certification campaigns and remediation processes. 

Experience integrating IGA solutions with HR systems, Active Directory / Entra ID, and enterprise applications. 

Proficiency in scripting and automation using tools such as PowerShell or Python. 

Experience working in hybrid and cloud environments (Azure and/or AWS) with IAM integrations. 

Ability to independently own complex technical deliverables while collaborating effectively within a global organization. 

Strong troubleshooting, documentation, and communication skills. 

Desirable Qualifications 

Bachelor’s degree in Computer Science, Information Security, Engineering, or a related technical discipline. 

Experience with advanced IGA capabilities such as role mining, access analytics, or policy-based provisioning. 

Familiarity with compliance and audit frameworks such as SOX, ISO 27001, NIST, or similar. 

Professional certifications such as Saviynt Certified Professional, SailPoint Certified IdentityIQ Engineer, Security+, or CISSP. 

Experience operating IAM or identity governance platforms within a large, global, or highly regulated enterprise environment. 

 

Before you apply -
Register now and turn on alerts for jobs like this!

  • To apply for this position, receive job notifications and manage your applications, click "Register with Diversity Jobs Group".
  • To apply for this position without registering, click "Apply with Customer".

By registering you agree to our terms and conditions.

Apply with Customer

IMPORTANT: Before applying for this role, please make sure you have the right to work in the country where the role is based. Unless it clearly stipulates within in the job advert above that the hiring company is looking to or able to sponsor applicants it is deemed that the hiring employer will only consider applications from those able to comply with and work in the country where the role is based.