IAM Engineer
Company Description:
Tradeweb Markets is a world leader in the evolution of electronic trading. A fintech company serving approximately 2,500 clients - including the world's largest banks, asset managers, hedge funds, insurance companies, wealth managers and retail clients -- in more than 65 countries across the globe. Since our first trade in 1998, we have helped transform and electronify the fixed income markets. Tradeweb is a culture built on innovation, creativity and collaboration. Through a combination of very talented and driven people, innovative products and solutions, cutting-edge technology, market data, and a vast network of clients, we continue to work together to improve the way financial markets trade.
Mission: Move first and never stop. Collaborate with clients to create and build solutions that drive efficiency, connectivity, and transparency in electronic trading.
Tradeweb Markets LLC ("Tradeweb") is proud to be an EEO Minorities/Females/Protected Veterans/Disabled/Affirmative Action Employer.
https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf
Job Description:
To capitalize on our success and continued growth, we are seeking a detail-oriented, results-driven IAM Engineer to join our Identity & Access Management (IAM) team. This role will be responsible for engineering and supporting both our Single Sign-On (SSO) integrations and our Identity Governance & Administration (IGA) platform to ensure secure, scalable, and auditable access across the organization.
The ideal candidate will work across the full identity lifecycle—designing and integrating enterprise applications into our SSO infrastructure using modern federation standards (SAML, OIDC, OAuth2), while also onboarding those applications into our IGA platform (such as SailPoint, Saviynt, or equivalent) to enforce role-based access control (RBAC), streamline entitlement reviews, and support regulatory compliance initiatives.
We are looking for an engineer with a strong technical foundation in identity systems who can build and automate IAM solutions, contribute to role modeling and access policies, and communicate effectively with both technical teams and compliance stakeholders. Experience in the financial industry and familiarity with regulatory frameworks (e.g., SOX, GLBA, FFIEC) are strongly preferred.
Job Responsibilities:
Support the implementation of access certification processes within the IGA platform (e.g., SailPoint, Saviynt) to ensure periodic entitlement reviews align with least-privilege principles and compliance requirements.
Contribute to the integration of applications with Single Sign-On (SSO) using identity federation protocols such as SAML, OIDC, and OAuth2, collaborating with application teams and security architects.
Work closely with IAM architects and application teams to onboard applications into the IGA platform, ensuring entitlement data, user attributes, and provisioning rules are accurately mapped and configured.
Analyze access patterns and application entitlements to assist in role mining, entitlement rationalization, and the development of scalable, governance-aligned role models.
Document technical specifications, data mappings, and integration workflows for SSO and IGA implementations, supporting both technical teams and audit requirements.
Configure and maintain integrations between target systems and the IGA platform, ensuring proper lifecycle management of users and entitlements.
Assist in the creation of access policies and role definitions, aligning with business and compliance requirements.
Want more jobs like this?
Get jobs in Hinganghāt, India delivered to your inbox every week.
Generate reports and provide evidence for audit activities, including entitlement reviews, access request histories, and policy enforcement logs.
Identify technical gaps or inconsistencies in access controls, provisioning workflows, or entitlement structures and propose engineering solutions to address them.
Participate in testing, validation, and deployment of IAM-related changes, ensuring proper functionality across SSO and IGA components.
Provide technical support and knowledge sharing to application teams and business stakeholders around IAM integration processes and access governance best practices.
Required Qualifications
Bachelor's degree in information systems, Computer Science, Cybersecurity, or a related technical or business field (or equivalent practical experience).
5+ years of experience in Identity and Access Management (IAM), with at least 2 years focused on access governance, entitlement reviews, or SSO integration.
Hands-on experience with an Identity Governance and Administration (IGA) platform such as SailPoint, Saviynt, or Oracle Identity Governance, including configuring connectors, onboarding applications, and implementing access certification workflows.
Practical experience integrating applications with enterprise Single Sign-On (SSO) solutions using SAML, OIDC, or OAuth2 protocols.
Solid understanding of Role-Based Access Control (RBAC) concepts, the entitlement lifecycle, and how they apply to automated provisioning, de-provisioning, and access modeling.
Demonstrated ability to gather, analyze, and document technical and business requirements to support IAM processes such as role mining, access policy definition, and entitlement rationalization.
Familiarity with regulatory frameworks such as SOX, ISO 27001, NIST, or GLBA, and how they influence identity lifecycle and access governance requirements.
Strong written and verbal communication skills, with the ability to work effectively across technical, security, and business stakeholders.
Experience using tools such as Excel, Visio, and Confluence to create process flows, data maps, and documentation for IAM initiatives.
Highly organized and detail-oriented, with the ability to manage multiple concurrent application onboarding and integration efforts.
Preferred Qualifications
Proven experience leading or significantly contributing to enterprise-scale entitlement review campaigns, including remediation strategies and audit response preparation.
Deep hands-on experience customizing complex workflows, provisioning policies, certification rules, and connectors within enterprise IGA platforms such as SailPoint or Saviynt.
Strong proficiency in scripting or programming for IAM automation and data transformation, using languages such as Python or Go, as well as tools like SQL or PowerShell.
Perks and Benefits
Health and Wellness
- Health Insurance
- Dental Insurance
- Vision Insurance
- Life Insurance
- Long-Term Disability
- FSA
- Fitness Subsidies
- Pet Insurance
- Mental Health Benefits
- Short-Term Disability
Parental Benefits
- Birth Parent or Maternity Leave
- Non-Birth Parent or Paternity Leave
- Fertility Benefits
- Adoption Assistance Program
- Family Support Resources
- Adoption Leave
Work Flexibility
- Flexible Work Hours
- Remote Work Opportunities
- Hybrid Work Opportunities
Office Life and Perks
- Commuter Benefits Program
- Happy Hours
- Snacks
- Holiday Events
Vacation and Time Off
- Paid Vacation
- Paid Holidays
- Personal/Sick Days
- Leave of Absence
- Volunteer Time Off
- Summer Fridays
Financial and Retirement
- 401(K)
- Performance Bonus
- Financial Counseling
Professional Development
- Tuition Reimbursement
- Promote From Within
- Mentor Program
- Shadowing Opportunities
- Access to Online Courses
- Lunch and Learns
- Internship Program
- Work Visa Sponsorship
- Leadership Training Program
- Associate or Rotational Training Program
Diversity and Inclusion
Company Videos
Hear directly from employees about what it is like to work at Tradeweb.