IAM Architect - Saviynt
IDMWORKS- Full Time
- Senior (5 to 8 years)
Candidates should possess a Bachelor’s degree in Information Security, Cybersecurity, or a related field, and have at least 8 years of experience in Information Security, with a strong focus on FedRAMP compliance. They should be familiar with policy and compliance requirements, including policy documentation and system requirements, and possess the ability to execute, scale, and continuously evolve InfoSec and GRC functions. Knowledge of NIST CSF and RMF frameworks is also required.
The Director, Information Security will serve as the lead for Saviynt’s FedRAMP Info Sec and Compliance related activities, driving the company through the FedRAMP certification and re-recertification journey, developing System Security Plans, and leading FedRAMP audit work. They will also review security documentation, serve as the Governance POC, identify governance or compliance requirements, assess risks, and draft and update key security documentation such as policies and incident response plans. Furthermore, the role involves supporting customer requests related to compliance, automating GRC inefficiencies, performing vulnerability scanning, and providing remediation guidance, as well as supporting customer requests as they pertain to Compliance queries and to other Information Security questions.
Cloud-based identity security and access governance
Saviynt provides a cloud-based platform focused on identity security and access governance for businesses. Its services include identity governance and administration, third-party access governance, and cloud privileged access management, all aimed at helping organizations manage and secure digital identities, including those of employees and vendors. The platform features automated workflows and tools that simplify identity lifecycle management, while offering visibility and analytics to help businesses stay audit-ready and reduce identity-related risks. Unlike many competitors, Saviynt emphasizes user-friendliness and ease of implementation, making it accessible for a wide range of clients from small businesses to large enterprises. The company's goal is to protect major brands and support their cloud and security initiatives through a subscription-based model that ensures ongoing revenue and investment in product development.