โšก New

Access Engineer

System One

PuneFull-timeMid LevelOn-site

Job Description

Role Type: Application Engineering | IT Compliance | Access Governance | SOX / ITGC Position Summary: We are seeking experienced Application SME Engineers (IAM/Access Governance) to support enterprise application access reviews, compliance operations, and audit readiness activities across a diverse portfolio of business-critical applications. This role serves as the technical liaison between Application Owners, Audit, Risk Management, and Security teams. The Application SME Engineer will be responsible for validating user access, supporting quarterly and annual access reviews, ensuring compliance with SOX and ITGC controls, investigating access-related issues, and maintaining high-quality audit evidence.

The ideal candidate possesses a blend of application administration, security, compliance, data analysis, and troubleshooting experience, with the ability to work across multiple enterprise platforms, both commercial and custom-developed. Key Responsibilities: Access Reviews & Compliance Support Application Owners through Quarterly Access Reviews (QARs), User Access Reviews (UARs), and annual certification activities. Extract, validate, reconcile, and prepare user access and entitlement data across enterprise applications.

Review access assignments, permissions, roles, and approval structures to ensure compliance with established policies and controls. Identify inappropriate access, orphaned accounts, segregation of duties (SoD) conflicts, and data discrepancies. Coordinate remediation activities with application administrators and business stakeholders.

Audit & Controls Manage audit cycles from initiation through completion, including evidence collection, validation, submission, and auditor follow-up. Ensure audit artifacts are complete, accurate, and aligned with SOX, ITGC, and internal control requirements. Support Internal Audit, External Audit, Risk Management, and Compliance teams during testing and assessment activities.

Document procedures, findings, controls, and remediation efforts according to regulatory and corporate standards. Application Operations & Data Analysis Maintain application access required to perform review and compliance activities. Validate system-generated reports and reconcile access data between source applications and governance platforms.

Utilize SQL and reporting tools to analyze large datasets, investigate anomalies, and support audit requests. Perform DML monitoring and investigation of changes to sensitive business data where applicable. Support production-controlled environments while adhering to documented SOPs and change management processes.

Technical Support & Process Improvement Troubleshoot application, integration, automation, and data-quality issues. Support API-based integrations and data feeds used in compliance and governance processes. Participate in testing activities for compliance tools, dashboards, access review platforms, and process enhancements.

Recommend opportunities to improve automation, data quality, reporting accuracy, and audit efficiency. Mentor junior team members and review work products for quality and completeness. Required Qualifications: 4-10+ years of experience supporting enterprise applications, application security, compliance, governance, or audit-related activities.

Experience supporting application access reviews, user entitlement reviews, or identity governance processes. Strong understanding of: User access management Role-based security models Application permissions and entitlements Segregation of Duties (SoD) SOX and IT General Controls (ITGC) Experience working with enterprise applications such as ERP, CRM, HRIS, IAM, financial, operational, or custom-developed platforms. Ability to extract, analyze, and validate large datasets.

Working knowledge of SQL for troubleshooting, reporting, and data validation. Experience supporting audits, controls testing, and evidence collection processes. Strong Excel skills, including pivots, lookups, reconciliation, and analysis.

Excellent documentation, communication, and stakeholder management skills. Ability to operate in highly controlled and regulated environments with strict deadlines. Preferred Qualifications: Experience with Identity and Access Management (IAM) solutions such as: Okta SailPoint Saviynt CyberArk Microsoft Entra ID (Azure AD) Experience supporting enterprise platforms such as: SAP Workday ServiceNow Oracle Salesforce PeopleSoft SuccessFactors Coupa Other custom business applications Experience with GRC and access certification platforms.

Understanding of REST APIs, middleware, and integration frameworks. Experience with automation, scripting, or reporting tools. Exposure to Agile methodologies and structured change management processes.

Experience interacting directly with Internal Audit, External Audit, Risk, or Compliance organizations. Professional certifications such as: CISA CRISC Security+ Certified Identity and Access Manager (CIAM)

Posted Today

Related Jobs

Related Searches

Apply Now