IAM Governance Analyst

Role Architecture | Access Certification | Identity Governance

Are you an experienced IAM professional with a passion for strong governance, structured role design and audit-ready access controls?

We are seeking a hands-on IAM Governance Analyst to take ownership of enterprise-wide role architecture and lead access certification programs in a complex environment.

This is a key governance role focused on strengthening RBAC frameworks, driving attestation campaigns, and ensuring access remains aligned to Least Privilege and Zero Trust principles.

About the Role

As the custodian of the organisation’s access model, you will:
 

• Design and optimise scalable Business and Technical roles
• Lead quarterly and annual access certification campaigns
• Oversee Segregation of Duties (SoD) governance
• Review and refine birthright access controls
• Partner with Application Owners to ensure secure and compliant system access

You will act as the central governance gatekeeper, ensuring access controls are robust, sustainable, and audit ready.

Key Responsibilities

Role Engineering & RBAC Governance

• Conduct role mining and deep analysis of existing entitlements
• Develop and maintain a scalable global role catalogue
• Enforce Least Privilege principles in role design
• Define and monitor SoD rules to prevent high-risk access combinations

Access Attestation & Certification

• Plan and manage enterprise-wide access certification campaigns
• Enable Application Owners and Business Leads to make informed revoke/retain decisions
• Track campaign completion and escalate non-compliance
• Produce clear audit evidence and reporting

Operational Governance & Continuous Improvement

• Review and update birthright access based on HR and organisational changes
• Govern manual or exception-based access requests
• Improve attestation processes to reduce certification fatigue
• Support onboarding of new applications into the governance framework

Skills & Experience

• 4+ years’ experience working with Identity Governance / IAM platforms
• Strong experience in RBAC design, role mining, birthright access and SoD controls
• Exposure to Certification/Attestation modules
• Advanced SQL and Excel skills for reporting and analysis
• Understanding of audit and compliance frameworks (e.g. ISO 27001 or similar)
• Knowledge of application onboarding (connectors, flat files) and workflow integrations such as ServiceNow

About You
 

• Confident in challenging stakeholders to ensure due diligence
• Highly organised with the ability to manage multiple certification timelines
• Strong communicator who can translate technical entitlements into clear business language
• Detail-oriented and governance-focused

What Success Looks Like
 

• 100% completion of scheduled certification campaigns
• Increased adoption of structured role-based access
• Zero high or critical audit findings relating to access governance

If you are looking to play a pivotal role in strengthening identity governance within a large enterprise environment, HIT the APPLY BUTTON, or email your CV to jason@capstonerecruitment.com.au