Associate Manager, IAM

Why join us? 

Our purpose is design for the good of humankind. It’s the ideal we strive toward each day in everything we do. Being a part of MillerKnoll means being a part of something larger than your work team, or even your brand. We are redefining modern for the 21st century. And our success allows MillerKnoll to support causes that align with our values, so we can build a more sustainable, equitable, and beautiful future for everyone.

PURPOSE / PROFILE

The Associate Manager, IAM leads a team of analysts while maintaining hands-on ownership of MillerKnoll’s Identity Governance and Administration (IGA) platform and daily IAM operations across a multi-brand environment (Herman Miller, Knoll, Holly Hunt, DWR, etc). The role owns the full identity lifecycle, oversees IAM service desk performance, and partners with Cybersecurity, Audit, HR Technology, and Legal to sustain access controls and compliance obligations.

• Lead and manage a team of IAM analysts; conduct regular one-on-ones, provide coaching, manage workload prioritization, and serve as the primary escalation point for complex issues.
• Own IGA platform configuration, rule logic, workflow design, and ongoing development; lead production change management including validation testing, rollback planning, and GRC change control coordination.
• Design, maintain, and continuously improve Joiner-Mover-Leaver (JML) lifecycle processes to ensure accurate and timely provisioning and de-provisioning across all integrated systems.
• Manage enterprise application integrations to the IGA Platform and partner with HR Technology on identity source-of-truth integrity and attribute write-back.
• Define and maintain RBAC models, birthright provisioning rules, reconciliation logic, and entitlement structures aligned to organizational roles and compliance requirements.
• Oversee IAM service desk operations; monitor SLA performance, fulfillment quality, and access incident resolution.
• Manage the Privileged Access Management (PAM) program through Keeper, including account provisioning, reconciliation, and lifecycle controls.
• Execute access certification campaigns and access reviews to meet SOX, Internal Audit, and regulatory requirements.
• Identify and deliver automation opportunities to reduce manual identity lifecycle effort and improve accuracy and efficiency.

• Support GRC, Cybersecurity, and Internal Audit as the IAM subject matter expert, including AD security monitoring, control design, and evidence preparation.
• Create and maintain IAM documentation: runbooks, integration specifications, RBAC catalogs, and change records.
• Stay current on key IGA systems and broader IAM industry developments.

• IAM principles: JML lifecycle, RBAC, birthright provisioning, access certification, and least-privilege access design.
• Hands-on IGA platform expertise.
• Active Directory in multi-domain environments: OU structure, group policy, and user attribute management.
• HR identity integration patterns: HR System RaaS reports, SCIM provisioning, and attribute write-back.
• Privileged Access Management; Keeper or equivalent tooling.
• SSO and MFA platforms
• SOX compliance requirements and access control audit standards.
• People management: coaching, goal setting, performance feedback, and workload balancing for a small technical team.
• Cross-functional communication; ability to translate IAM concepts for non-technical stakeholders.

Education / Experience

• Bachelor’s degree in Information Systems, Cybersecurity, Computer Science, or Business Administration is preferred
• 6+ years of experience in Identity and Access Management, IT Security, or a related field
• 1–2 years in a team lead, senior analyst, or supervisory role with people management responsibility
• Demonstrated hands-on experience with an enterprise IGA platform, including integration configuration, JML process design, and production operations

Licenses and Certifications

One or more preferred: Certified Identity and Access Manager (CIAM), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Saviynt platform certification.

Who We Hire?

Simply put, we hire qualified applicants representing a wide range of backgrounds and abilities. MillerKnoll is comprised of people of all abilities, gender identities and expressions, ages, ethnicities, sexual orientations, veterans from every branch of military service, and more. Here, you can bring your whole self to work. We’re committed to equal opportunity employment, including veterans and people with disabilities.

This organization participates in E-Verify Employment Eligibility Verification. In general, MillerKnoll positions are closed within 45 days and are open for applications for a minimum of 5 days. We encourage our prospective candidates to submit their application(s) expediently so as not to miss out on our opportunities. We frequently post new opportunities and encourage prospective candidates to check back often for new postings.

MillerKnoll complies with applicable disability laws and makes reasonable accommodations for applicants and employees with disabilities. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact MillerKnoll Talent Acquisition at  [email protected].