• Identity & Access Governance - Engineer

    Fiserv (Alpharetta, GA)


    Calling all innovators - find your future at Fiserv.

     

    We're Fiserv, a global leader in Fintech and payments, and we move money and information in a way that moves the world. We connect financial institutions, corporations, merchants and consumers to one another millions of times a day - quickly, reliably, and securely. Any time you swipe your credit card, pay through a mobile app, or withdraw money from the bank, we're involved. If you want to make an impact on a global scale, come make a difference at Fiserv.

     

    Job Title

     

    Identity & Access Governance - Engineer

    About your role:

    You will join the Identity and Access Governance team at Fiserv to help secure workforce access and enable compliant identity lifecycle operations across enterprise systems. The team manages Identity Governance and Administration (IGA) solutions, enterprise integrations, and audit-driven access controls to reduce risk and improve operational efficiency. In this role you will drive SailPoint IdentityIQ implementations, certification campaigns, and remediation efforts that support business and regulatory requirements.

    What you’ll do:

    + Design, implement, and maintain identity lifecycle processes within SailPoint IdentityIQ to support provisioning, de-provisioning, role modeling, and access certifications.

    + Lead and prioritize entitlement certification campaigns, manage nested group remediation, and resolve group membership issues that impact IGA effectiveness.

    + Administer provisioning and de-provisioning across enterprise applications through connectors, APIs, and custom integrations; develop scalable application onboarding approaches.

    + Manage incident handling and remediation for identity and access issues, produce timely reports, and collaborate with cross-functional teams to implement governance requirements.

    + Build and maintain IAM dashboards and reports to monitor IGA metrics, certification progress, and compliance posture.

    + Support internal and external audits for user access and entitlements; prepare evidence and remediation plans to meet FFIEC, PCI, SOC, SOX, GDPR, and HIPAA requirements.

    + Stay current with IGA trends and recommend enhancements to optimize identity governance, automation, and data governance practices.

    + Responsibilities listed are not intended to be all-inclusive and may be modified as necessary.

    **Experience you’ll need to have:**

    + 10+ years of experience in SailPoint IdentityIQ implementation, configuration, role engineering, certification campaign design, and lifecycle management.

    + 10+ years of experience supporting regulatory compliance and audit requirements related to identity and access (PCI DSS, SOC, SOX, GDPR, HIPAA, FFIEC).

    + 8+ years of experience in identity architecture and application integration, including REST/SOAP APIs, SCIM, LDAP/Active Directory, and connector development.

    + 8+ years of experience with identity protocols and standards such as SAML, OAuth2, and OpenID Connect, and with RBAC and entitlement modeling.

    + 6+ years of experience in relational databases and data preparation/cleansing for IGA (SQL Server, Oracle) and writing SQL for reports and reconciliations.

    + 6+ years of experience in scripting and automation for IGA workflows and connectors using Java, JavaScript, and Python.

    + 6+ years of equivalent combination of educational background, related experience, and/or military experience.

    Experience that would be great to have:

    + SailPoint certifications such as Identity Security Engineer Certification.

    + Industry certifications like CISSP, CISM, or similar security governance credentials.

    + Experience with complementary IAM tools and cloud identity platforms (e.g., Azure AD, Okta, ForgeRock).

    + Experience designing CI/CD or deployment automation for IGA connectors and configurations.

    + Practical experience with application onboarding frameworks and entitlement discovery/role-mining tools.

    How you’ll work:

    + This role is on-site Monday through Friday. Fiserv considers in-person collaboration to be an essential part of this role as in-person office experiences help you with your overall onboarding experience and leads to stronger productivity.

    + This role requires the use of a computer and audio equipment.

    Travel:

    + Approximately 0% travel off-site or to other office locations is expected.

    Sponsorship:

    + You must currently possess valid and unrestricted U.S. work authorization to be considered for this role. Individuals with temporary visas including, but not limited to, F-1 (OPT, CPT, STEM), H-1B, H-2, or TN, or any candidate requiring sponsorship, now or in the future, will not be considered for this role.

    Benefits at Fiserv:

    + Fuel Your Life program to support physical, financial, social, and emotional well-being.

    + Paid holidays and generous time away policies.

    + No-cost mental health support through Employee Assistance Programs.

    + Living Proof program to recognize your peers’ extra effort with points used for rewards.

    + Eight Employee Resource Groups to foster a collaborative culture.

    + Unparalleled professional growth with training, development, and internal mobility opportunities.

    + Retirement planning and discounted shares with the Employee Stock Purchase Plan.

    + Medical, dental, vision, life, and disability insurance options available day one.

    + Tuition assistance and reimbursement program.

    + Paid parental, caregiver, and military leave.

     

    Salary Range

     

    $109,000.00 - $182,400.00

     

    _These pay ranges apply to employees in New Jersey and New York. Pay ranges for employees in other states may differ._

     

    It is unlawful to discriminate against a prospective employee due to the individual's status as a veteran.

     

    For incentive eligible associates, the successful candidate is eligible for an annual incentive opportunity which may be delivered as a mix of cash bonus and equity awards in the Company’s sole discretion.

     

    Thank you for considering employment with Fiserv. Please:

     

    + Apply using your legal name

    + Complete the step-by-step profile and attach your resume (either is acceptable, both are preferable).

    Our commitment to Equal Opportunity:

    Fiserv is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, age, disability, protected veteran status, or any other category protected by law.

     

    If you have a disability and require a reasonable accommodation in completing a job application or otherwise participating in the overall hiring process, please contact [email protected] . Please note our AskHR representatives do not have visibility to your application status. Current associates who require a workplace accommodation should refer to Fiserv’s Disability Accommodation Policy for additional information.

    Note to agencies:

    Fiserv does not accept resume submissions from agencies outside of existing agreements. Please do not send resumes to Fiserv associates. Fiserv is not responsible for any fees associated with unsolicited resume submissions.

    Warning about fake job posts:

    Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from a Fiserv representative will come from a legitimate Fiserv email address.