Senior Identity and Access Management (IAM) Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

Welch's · 2 days ago

Senior Identity and Access Management (IAM) Analyst

positionWaltham, MA
timeFull-time
remoteHybrid
seniorityMid, Senior Level
money$100K/yr - $110K/yr
date3+ years exp

Welch's is on a journey towards becoming a global leader in fruit-based food and beverages, seeking innovative individuals to join their team. The Senior Identity and Access Management (IAM) Analyst will secure and manage digital identities across cloud and on-premise environments, implementing identity governance and access control solutions to ensure compliance and operational efficiency.

E-CommerceFood and Beverage

Responsibilities

Administer and maintain user accounts, roles, and groups in Azure AD, Microsoft 365, and hybrid Active Directory environments
Manage access provisioning, de-provisioning, and modification workflows for both cloud-based and on-prem systems
Implement role-based access control (RBAC) and least privilege principles across enterprise and manufacturing systems
Ensure consistent access management across SaaS, IaaS, and PaaS platforms, including Azure, AWS, or other connected cloud environments
Configure and support Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Conditional Access policies in Azure AD
Manage federated identities between Azure AD and external partners, cloud providers, or production technology systems
Troubleshoot authentication and authorization issues in hybrid identity environments (on-prem AD + Azure AD)
Integrate identity services with manufacturing systems, ERP (e.g., SAP, Dynamics), and MES platforms
Collaborate with Cloud and Infrastructure teams to design and maintain secure cloud access controls
Participate in the implementation of cloud identity governance and Privileged Access Management (PAM) solutions
Monitor and assess cloud IAM configurations for compliance with security baselines and best practices (e.g., CIS benchmarks, NIST)
Review and manage privileged accounts and access to cloud resources, including Azure subscriptions and virtual machines
Conduct and document periodic access reviews and user certification campaigns across cloud and on-prem systems
Support compliance efforts related to SOX, FDA, GDPR and internal audit requirements
Prepare IAM-related reports and documentation for internal and external audits
Maintain and update IAM policies and standards in line with company guidelines
Automate identity lifecycle and reporting processes using PowerShell, Graph API, or other scripting tools
Identify gaps in IAM processes and propose security and efficiency improvements
Stay current on IAM trends, Zero Trust security models, and cloud security technologies
Support strategic IAM initiatives as part of broader cloud transformation and cybersecurity programs

Qualification

Azure Active DirectoryIdentity GovernanceCloud SecurityAccess Control SolutionsPowerShell ScriptingMulti-Factor AuthenticationSingle Sign-OnConditional AccessIAM AutomationProblem SolvingCommunication SkillsCollaborationAttention to Detail

Required

Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or related field
3–5 years of experience in Identity and Access Management, Cloud Security, or IT Infrastructure roles
Experience with Azure Active Directory, Microsoft 365 Security & Compliance Center, and on-prem Active Directory
Hands-on experience managing identity and access in cloud environments
Strong understanding of Azure AD, Conditional Access, MFA, SSO, PIM, and Identity Governance
Experience with cloud security controls, service principles, and managed identities
Familiarity with IAM automation, PowerShell scripting, and Azure CLI
Working knowledge of network security, endpoint protection, and Zero Trust frameworks
Understanding of identity protocols (SAML, OAuth 2.0, OpenID Connect, LDAP, Kerberos)
Ability to create and own policy, process, documentation and governance for your domain
Exceptional technical, analytical, problem solving, multitasking, and time management skills with consistent attention to detail
Excellent communication skills, with the ability to translate technical issues and processes for business and plant audiences
Ability to balance security rigor with operational uptime in a fast-paced manufacturing environment
Proactive approach to identifying and mitigating risks
Collaborative mindset across IT, cybersecurity, and plant operations teams

Preferred

Background in manufacturing or industrial operations preferred
Certifications (SC-300, AZ-500, SC-200) a plus

Benefits

Paid Time Off and Holidays: Enjoy time away from the office to rest and recharge
Paid Volunteer Time Off: 40 hours of paid volunteer time for all non-union employees
Development & Advancement: Access to LinkedIn Learning as well as both formal and informal opportunities to develop and grow your career
Compensation Package Consisting of Competitive Base Salary and Annual Incentive Plan (Bonus)
401K plan with Generous Company Match
Flexible Benefits from your first day: Choose the benefits that meet your needs and preferences
Health, Dental & Vision Insurance
Health Savings Accounts
Life and accident insurance
Employee Assistance Programs
Tuition reimbursement program
Additional benefits available through Perks at Work
Paid parental (and adoption) leave – Available after 12 months of employment

Company

Welch's

twittertwittertwitter
company-logo
Official Welch's Pinterest Page. Grape Goodness, juicy ideas, recipes & fun snacks! www.welchs.com
dateFounded in 1869
location
Concord, Massachusetts, USA
people-size501-1000 employees
web-link
https://www.welchs.com/

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Andrew Hartshorn
Chief Brand Innovation Officer
linkedin

Recent News

PR Newswire
Welch's Launches Zero-K Challenge with Strava
2026-01-06
PR Newswire
Welch's Breaks Out the Fancy Juice with Biggest-Ever Sparkling Campaign
2025-10-30
Marketing Dive
How Welch’s new kid mascot bridges nostalgia with modern marketing
2025-10-29
Company data provided by crunchbase