Identity Governance & Administration (IGA) and Privileged Access Management (PAM) Specialist
We are seeking a skilled IGA and PAM Specialist to join our team, dedicated to enhancing our identity governance and privileged access strategies. The ideal candidate will be experienced in managing identity lifecycle processes and securing privileged accounts, ensuring compliance with organizational policies.
Responsibilities:
Identity Governance & Administration (IGA):
Implement and manage the joiner–mover–leaver (JML) lifecycle using Okta Identity Governance.
Configure and maintain advanced access request workflows, including role-based, time-bound, delegated, and just-in-time (JIT) access.
Support risk-based certification processes through targeted campaigns and automated recertification.
Define and manage roles, entitlements, segregation of duties (SoD) policies, and access review criteria.
Integrate IGA workflows with HRIS, AD/Entra ID, and both on-premise and cloud applications.
Develop and enforce identity governance controls, such as birthright access and entitlement governance.
Maintain connectors and workflows for efficient provisioning and deprovisioning automation.
Act with integrity, professionalism, and personal responsibility to uphold the firm’s respectful and courteous work environment.
Privileged Access Management (PAM):
Deploy and manage Okta Privileged Access (OPA) solutions to secure privileged accounts.
Implement privileged access vaulting, password rotation, credential discovery, and account lifecycle management.
Build policy-driven privileged access workflows with comprehensive request and approval processes.
Deploy and manage session brokering, isolation, monitoring, and auditing for enhanced security.
Ensure least-privilege access principles across *nix, Windows, various applications, and non-human identities.
Integrate PAM solutions with SIEM, logging platforms, endpoint security, and access management systems.
Maintain separation of duties for privileged administrators and enforce detailed PAM policies.
Qualifications:
5 to 10 years of experience required.
Proven experience with Okta Identity Governance and Privileged Access Management solutions.
Strong knowledge of identity lifecycle management and access governance frameworks.
Expertise in integrating identity solutions with HRIS, AD/Entra ID, and a range of applications.
Experience with policy creation and enforcement regarding least privilege and segregation of duties.
Familiarity with auditing, monitoring, and compliance standards in identity and access management.
REQUIRED SKILLS
OKTA OIG and PAM certified
==================
KPMG LLP (“KPMG”) seeks a contractor in the United States to provide service to KPMG through one of our contracted employer/agency service providers. All applicants for any KPMG role are expected to act with integrity, professionalism, and personal responsibility to uphold the firm’s respectful and courteous work environment. All applicants must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa).
Nothing herein shall be deemed to create an employer-employee relationship between contractor and KPMG, nor shall contractor be considered a representative or agent of KPMG.
KPMG LLP and its subsidiaries comply with all local/state regulations in regard to displaying pay rate ranges. The pay rate range(s) displayed is/are specifically for those contracted who will perform work in or reside in the location(s) listed, if selected for the role. Pay is determined based on a variety of factors including market data, ranges, applicant's skills and prior relevant experience, certain degrees and certifications (e.g. JD, technology), and specific location, for example. Additionally, applicants may be required to apply and become employed by a service provider utilized by KPMG, and final pay rate(s) and/or eligibility for additional benefits may be determined by such provider.
KPMG LLP, its subsidiaries, and its agency service providers (including, but not limited to, MBO Partners Inc., Magnit LLC, and TalentBurst Inc.) are equal opportunity employers/contractors. All qualified applicants are considered without regard to race, color, creed, religion, age, sex/gender, national origin, ancestry, citizenship status, marital status, sexual orientation, gender identity or expression, disability, physical or mental handicap unrelated to ability, pregnancy, veteran status, unfavorable discharge from military service, genetic information, or other legally protected status.
Los Angeles County applicants: Material job duties for this position are listed above. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness, and safeguard business operations and company reputation. Pursuant to the California Fair Chance Act, Los Angeles County Fair Chance Ordinance for Employers, Fair Chance Initiative for Hiring Ordinance, and San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Pay Rate Range
110 - 120 USD hourly
