Note: The job is a remote job and is open to candidates in USA. HealthEquity is dedicated to saving and improving lives by empowering healthcare consumers. The Identity & Access Governance Analyst will be responsible for enhancing HealthEquity’s IAM Governance program, focusing on SOX-aligned access controls and audit readiness while collaborating with various teams to ensure compliance and risk mitigation.
Responsibilities
• Own and manage User Access Certifications (UACs) for SOX in-scope systems, ensuring controls are designed, executed, and evidenced to meet Sarbanes-Oxley requirements
• Partner closely with Compliance and Audit teams to support audits, respond to findings, and continuously mature IAM controls
• Define, govern, and maintain roles and entitlements across enterprise applications, ensuring least privilege and audit defensibility
• Develop and track governance metrics and KPIs related to certifications, access quality, and risk reduction
• Act as an IAM Subject Matter Expert, identifying internal and external IAM risks and driving mitigation strategies
• Support and enhance automated access administration, SSO, directory services, and IAM integrations
• Lead governance components of new application onboarding, including role modeling, access design, and UAT participation
• Capture and resolve access exceptions, performing root cause analysis and recommending sustainable improvements
• Serve as a trusted liaison between business partners, application owners, and technical teams
• Drive understanding of IAM standards, certification requirements, and governance best practices across the organization
• Facilitate and lead multi-functional initiatives, ensuring projects stay aligned with IAM, compliance, and risk objectives
• Create and maintain clear, audit-ready documentation for IAM processes, controls, and integrations
• Identify opportunities to improve data quality, control effectiveness, and operational efficiency
• Define mitigation plans for risks related to timelines, resources, or control gaps
• Support UAT cycles for enhancements, fixes, and new IAM capabilities
Skills
• Bachelor's degree or equivalent practical experience
• Strong understanding of IAM principles, access governance, and compliance controls
• Experience supporting SOX-aligned access reviews, certifications, or audit activities
• Proven ability to create clear, defensible process and control documentation
• Comfort working across multiple initiatives in a fast-paced environment
• Strong communication skills with the ability to influence without direct authority
• Hands-on exposure to IAM platforms such as SailPoint, Oracle Identity Manager (OIM), Okta, or similar tools
• Experience defining roles, entitlements, and access models in large enterprise environments
• Familiarity with security and regulatory frameworks
• CISSP or similar security certification (nice to have, not required)
Benefits
• Medical, dental, and vision
• HSA contribution and match
• Dependent care FSA match
• Full-time team members receive a minimum of 18 days of annual PTO and 13 paid holidays per year
• Paid parental leave
• 401(k) match
• Personal and healthcare financial literacy programs
• Ongoing education & tuition assistance
• Gym and fitness reimbursement
• Wellness program incentives
Company Overview
• HealthEquity connects health and wealth by administering Health Savings Accounts (HSAs) and other consumer-directed benefits. It was founded in 2002, and is headquartered in Draper, Utah, USA, with a workforce of 1001-5000 employees. Its website is http://www.healthequity.com.