IAM Governance Analyst

Posted 2 Days Ago
Be an Early Applicant
Hiring Remotely in Poland
Remote
Mid level
Fintech • Software • Travel • Business Intelligence • Consulting • App development • Big Data Analytics
We are the world’s leading B2B travel platform, providing software and services to companies of all sizes.
The Role
Execute and manage User Access Review campaigns using Saviynt/IGA tools; support audit and compliance through evidence collection and control testing; validate and remediate access certifications; analyze access data to identify anomalies; document findings and drive remediation with cross-functional teams to ensure audit-ready access controls.
Summary Generated by Built In

Amex GBT is a place where colleagues find inspiration in travel as a force for good and – through their work – can make an impact on our industry. We’re here to help our colleagues achieve success and offer an inclusive and collaborative culture where your voice is valued.

ROLE OVERVIEW

The IAM Governance Analyst is a critical execution role within the Identity and Access Management team. This position sits at the intersection of audit, compliance, and IAM operations — and that combination is intentional. We are looking for someone whose instincts are audit-minded: someone who understands what "done correctly" means from a controls and evidence perspective, and who brings that discipline to every task they touch.

The core of this role is supporting the User Access Review (UAR) campaigns using our IGA platform, supporting audit and compliance activities, and identifying gaps in access controls before they become findings. You do not need to be a deep IAM engineer — but you do need to be hands-on with IGA tools, precise in your work, and sharp enough to catch what others miss.

If you have a background in GRC, internal audit, or compliance and have worked closely with IAM processes — or if you come from an IAM background with strong audit and controls exposure — this role is built for you.

WHAT YOU'LL DO

User Access Reviews & Campaign Execution

  • Plan, configure, launch, and manage User Access Review campaigns end-to-end using Saviynt or equivalent IGA platforms (SailPoint, Okta, etc.).
  • Monitor campaign progress closely — tracking reviewer completion, chasing outstanding certifications, managing exceptions, and ensuring every campaign closes cleanly and on time.
  • Maintain meticulous records of campaign activity, decisions, and outcomes that are audit-ready at any point during or after the review cycle.
  • Validate access certification results for accuracy and completeness before closure — never assuming the output is correct without checking.
  • Execute remediation actions resulting from access reviews, ensuring revocations and changes are completed, documented, and confirmed.

Audit & Compliance Support

  • Support audit and compliance requirements related to identity and access management, including evidence collection, control testing, and documentation of access control validations.
  • Prepare clear, accurate, and complete responses to audit inquiries — understanding that incomplete or ambiguous evidence is not acceptable.
  • Perform auditing of access controls to verify that provisioning, deprovisioning, and access changes have been executed correctly and in line with policy.

Access Control & Gap Analysis

  • Evaluate current IAM methods and controls against established policies and standards, identifying gaps that could lead to unauthorized or excessive access.
  • Review business processes to identify access control weaknesses and gather requirements for controls that are not yet in place.
  • Document findings in a structured, evidence-based manner that is clear to both technical teams and audit stakeholders.
  • Work with the IAM Governance Manager and cross-functional teams to drive remediation of identified gaps to closure.

WHAT WE'RE LOOKING FOR

Background & Experience

  • 3+ years of experience in one or more of the following: GRC, internal audit, IT compliance, or identity and access management — ideally with meaningful exposure to the others.
  • Hands-on experience executing User Access Review campaigns using an IGA platform such as Saviynt, SailPoint, or a comparable tool. Candidates familiar with one platform will be expected to learn Saviynt quickly.
  • Demonstrated experience supporting or executing audit and compliance activities — including evidence gathering, control testing, and working directly with auditors or audit teams.
  • Working knowledge of compliance frameworks such as NIST, ISO, SOX, SOC2, or Privacy, and an understanding of how these frameworks translate into access control requirements.
  • Experience with data analysis and the ability to interpret access data, identify anomalies, and communicate findings clearly to both technical and non-technical audiences.
  • Expert proficiency in Microsoft Excel — pivot tables, data validation, and working with large datasets are a regular part of this role. Strong working knowledge of PowerPoint and Microsoft 365.

What Will Set You Apart

  • You think like an auditor even when no one is watching. You document your work, validate your outputs, and flag issues before they become problems — not after.
  • You are exceptionally detail-oriented. You notice discrepancies others overlook, and you treat accuracy as non-negotiable, not a nice-to-have.
  • You are comfortable working with ambiguity and incomplete information without letting it stall your work — you know when to proceed, when to ask, and when to escalate.
  • You pick up new tools and processes quickly. If you've worked in SailPoint or another IGA platform, you'll be productive in Saviynt without a long ramp-up.
  • You communicate proactively — you provide clear status updates, flag risks early, and never let something slip without surfacing it.
  • You are organized, manage your time well, and can handle multiple concurrent priorities without dropping detail on any of them.

     

Location

Poland

     

The #TeamGBT Experience

Work and life: Find your happy medium at Amex GBT.

  • Flexible benefits are tailored to each country and start the day you do. These include health and welfare insurance plans, retirement programs, parental leave, adoption assistance, and wellbeing resources to support you and your immediate family.

  • Travel perks: get a choice of deals each week from major travel providers on everything from flights to hotels to cruises and car rentals.

  • Develop the skills you want when the time is right for you, with access to over 20,000 courses on our learning platform, leadership courses, and new job openings available to internal candidates first.

  • We strive to champion Inclusion in every aspect of our business at Amex GBT. You can connect with colleagues through our global INclusion Groups, centered around common identities or initiatives, to discuss challenges, obstacles, achievements, and drive company awareness and action.

  • And much more!

All applicants will receive equal consideration for employment without regard to age, sex, gender (and characteristics related to sex and gender), pregnancy (and related medical conditions), race, color, citizenship, religion, disability, or any other class or characteristic protected by law.

Click Here for Additional Disclosures in Accordance with the LA County Fair Chance Ordinance.

Furthermore, we are committed to providing reasonable accommodation to qualified individuals with disabilities. Please let your recruiter know if you need an accommodation at any point during the hiring process. For details regarding how we protect your data, please consult the Amex GBT Recruitment Privacy Statement.

What if I don’t meet every requirement? If you’re passionate about our mission and believe you’d be a phenomenal addition to our team, don’t worry about “checking every box;" please apply anyway. You may be exactly the person we’re looking for!

Skills Required

  • 3+ years experience in GRC, internal audit, IT compliance, or identity and access management
  • Hands-on experience executing User Access Review campaigns using an IGA platform (Saviynt, SailPoint, Okta, or equivalent)
  • Experience supporting audit and compliance activities including evidence gathering and control testing
  • Working knowledge of compliance frameworks such as NIST, ISO, SOX, SOC2, or Privacy
  • Experience with data analysis and interpreting access data to identify anomalies
  • Expert proficiency in Microsoft Excel (pivot tables, data validation, large datasets)
  • Working knowledge of PowerPoint and Microsoft 365
  • Audit-mindedness, exceptional attention to detail, strong communication and organizational skills
  • Ability to learn Saviynt quickly if experienced with other IGA platforms

American Express Global Business Travel Compensation & Benefits Highlights

The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about American Express Global Business Travel and has not been reviewed or approved by American Express Global Business Travel.

  • Healthcare Strength Healthcare coverage is described as comprehensive, including medical, dental, vision, life, disability, and access to physician consultations in some cases. Emotional and mental-health resources are also highlighted, including counseling, crisis support, and webinars for employees and immediate families.
  • Leave & Time Off Breadth Time off and flexibility options are portrayed as broad, including PTO that combines vacation and sick time, with potential to purchase additional vacation in some locations. Flexible arrangements are described as available in parts of the organization, including remote work and options like part-time schedules, job sharing, and sabbaticals where supported.
  • Retirement Support Retirement support is positioned as available through locally competitive programs, including a U.S. 401(k) with employer matching after a service period. Ownership-related benefits are also present via an employee stock purchase plan offered in many countries.

American Express Global Business Travel Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Jersey City, NJ
18,000 Employees
Year Founded: 2014

What We Do

American Express Global Business (Amex GBT) is the world’s leading B2B travel platform, providing software and services to manage travel, expenses, meetings & events for companies of all sizes. Our solutions include: Egencia: the leading software as service travel platform for small and medium-sized enterprises (SMEs). Ovation: the solution synonymous with high-touch travel service. The Neo Technology Group: a technology-focused team that builds cloud-based travel solutions. Meetings & Events: providing solutions for a single meeting or an entire meetings portfolio. Global Business Consulting: customized services to help clients optimize their travel program.

Why Work With Us

Amex GBT is a place where colleagues find inspiration in travel as a force for good and – through their work – can make an impact on our industry. We’re here to help our colleagues achieve success. Ready to explore a career path? Start your journey with us - apply now!

Gallery

Gallery

Similar Jobs

Ericsson Logo Ericsson

Domain Sales Director

Cloud • Information Technology • Internet of Things • Machine Learning • Software • Cybersecurity • Infrastructure as a Service (IaaS)
In-Office or Remote
22 Locations
88000 Employees

Dynatrace Logo Dynatrace

Software Engineer

Artificial Intelligence • Big Data • Cloud • Information Technology • Software • Big Data Analytics • Automation
Remote or Hybrid
Gdańsk, Pomorskie, POL
5600 Employees
17K-21K Annually

Capco Logo Capco

PMO (Kraków location) (She/He/They)

Fintech • Professional Services • Consulting • Energy • Financial Services • Cybersecurity • Generative AI
Remote or Hybrid
Poland
6000 Employees

Circle (circle.so) Logo Circle (circle.so)

Senior Full-stack Engineer

Artificial Intelligence • Consumer Web • Digital Media • Information Technology • Social Impact • Software
Easy Apply
Remote
31 Locations
250 Employees
130K-140K Annually

Similar Companies Hiring

Hanover Park Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
42 Employees
Kepler  Thumbnail
Fintech • Software
New York, New York
6 Employees
Onshore Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
60 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account