Identity Access Management Jobs in USA with Visa Sponsorship
Identity Access Management roles attract strong H-1B visa and O-1 sponsorship because the work requires specialized cybersecurity and IT credentials that qualify as a specialty occupation. Most employers file year-round under cap-exempt or change-of-status routes, making IAM one of the more sponsorship-friendly tracks in tech. For detailed occupation requirements, see the O*NET profile.
See All Identity Access Management JobsOverview
Showing 5 of 62+ Identity Access Management jobs
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
See all 62+ Identity Access Management jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new Identity Access Management roles.
Get Access To All JobsA Day in Your Life at MKS
The Identity & Access Management Engineer will be responsible for the ongoing operation and evolution of the Saviynt Identity Governance & Administration (IGA) platform, including designing, implementing, and optimizing identity governance solutions across the enterprise. This role partners closely with security, IT, and application teams to deliver scalable, compliant, and efficient identity lifecycle management.
As a technical expert in identity governance, you will contribute to platform stability, integrations, and continuous improvement while helping advance MKS’s overall IAM maturity.
The ideal candidate is a highly motivated, self‑driven professional who enjoys solving complex problems, learning new technologies, and delivering secure identity solutions.
You Will Make an Impact By
Saviynt Platform Ownership
- Serve as the subject matter expert (SME) for the Saviynt IGA platform
- Oversee configuration, customization, and integration of Saviynt with enterprise systems
- Ensure platform scalability, performance, reliability, and alignment with security standards
- Support ongoing operations including upgrades, maintenance, and issue resolution
- Collaborate with vendors and internal stakeholders to ensure platform success
Technical Leadership
- Provide technical guidance and knowledge sharing within the IAM team
- Partner with IT and security leadership to prioritize work and deliver solutions
- Contribute to and promote best practices for configuration, development, and operations
Identity Lifecycle Management
- Design and maintain workflows for user provisioning, de-provisioning, and access reviews
- Implement role-based access control (RBAC) and attribute-based access control (ABAC) models
Integration & Automation
- Develop connectors and integrations between Saviynt/CyberArk and applications (on-prem and cloud)
- Automate identity processes using APIs, scripts, and Saviynt/CyberArk
- Improve operational efficiency through automation and solution optimization
Security & Compliance
- Ensure adherence to regulatory requirements (e.g., SOX, GDPR)
- Conduct periodic access certifications and audits
- Implement controls for privileged access management
Incident Management & Continuous Improvement
- Troubleshoot and resolve Saviynt platform issues
- Perform root cause analysis and implement preventive measures
- Stay current with Saviynt product capabilities, roadmap updates, and IAM industry trends
- Recommend enhancements to improve security posture and operational efficiency
Skills You Bring:
- Strong hands-on experience with Saviynt IGA platform (configuration, workflows, connectors)
- Solid understanding of identity and access management concepts and best practices
- Knowledge of directory services (Active Directory, LDAP), SSO, and federation protocols (SAML, OAuth, OIDC)
- Familiarity with APIs, REST, and scripting languages (PowerShell, Python)
- Proven ability to lead technical teams and manage complex projects
- Strong problem-solving and analytical skills with minimal supervision and escalate issues as appropriate
- Excellent communication skills for collaboration with stakeholders and vendors
- Working with an international team and stakeholders (USA, India, Germany, …)
Requirements
- 5+ years in IAM engineering roles, with at least 2+ years focused on Saviynt
- Experience in large-scale enterprise environments
- Demonstrated understanding of risk and compliance frameworks
- Excellent documentation, written and communication skills
- Must be a detail-oriented, well-organized, self-starter able to work in a dynamic environment with the ability to perform multiple tasks
- Highly motivated individual with the ability to self-start, prioritize, and multi-task
Preferred Requirements:
- Saviynt certification
- Scripting and/or programming skills in technologies, such as PowerShell, SQL, Python, and JSON
- Strong interpersonal and communication skills and the ability to collaborate and work effectively with a wide range of cross-functional teams, vendors, and time zones
- Experience with REST protocols
- Familiarity with standards for SSO technologies such as SAML2, OAuth2
Physical Demands and Working Conditions:
- Perform activities such as sitting, standing, or typing for extended periods of time
- Regularly requires good manual dexterity and coordination
- Must be able to communicate information and ideas so others will understand
- Must be able to exchange accurate information
- The ability to observe documents and details at close range (within a few feet of the observer)
- Operates in a professional office environment
- Constantly operates a computer and other office productivity machinery
- Noise level in the work environment is usually average
This position is hybrid and candidates must be within commutable distance to Andover, MA. Relocation benefits are not available for this position.
We are interested in a qualified candidates eligible to work in the United States and will not be sponsoring work visas for this position, at this time.
MKS is an equal opportunity employer, including disability, veteran status and all categories protected by law. Please review our EOE statements for additional details. MKS is generally only hiring candidates who reside in states where we are registered to do business.
Compensation and Benefits:
-
Salary Pay Range: $88,000 - $147,000 per year. This range is a good faith estimate of the expected salary range for this position, based on a wide range of factors including qualifications, experience and training, operational and business needs and other considerations permitted by law.
-
Bonus: This position is eligible for a discretionary annual bonus, in an amount to be determined by MKS [or as applicable].
-
Benefits: MKS offers a comprehensive benefits package, including health insurance coverage (medical, dental and vision), 401(k) with company match, life and disability insurance, 12 paid holidays, sick time, 15 paid vacation days, [6 weeks fully paid] parental leave, adoption assistance and tuition reimbursement [and for participation in any stock programs, signing bonus, etc.]
LI-MH1 #LI-Hybrid
Globally, our policy is to recruit individuals from wide and diverse backgrounds. However, certain positions require access to controlled goods and technologies subject to the International Traffic in Arms Regulations (ITAR) or Export Administration Regulations (EAR). Applicants for these positions may need to be “U.S. persons.” “U.S. persons” are generally defined as U.S. citizens, noncitizen nationals, lawful permanent residents (or, green card holders), individuals granted asylum, and individuals admitted as refugees.
MKS Inc. and its affiliates and subsidiaries (“MKS”) is an affirmative action and equal opportunity employer: diverse candidates are encouraged to apply. We win as a team and are committed to recruiting and hiring qualified applicants regardless of race, color, national origin, sex (including pregnancy and pregnancy-related conditions), religion, age, ancestry, physical or mental disability or handicap, marital status, membership in the uniformed services, veteran status, sexual orientation, gender identity or expression, genetic information, or any other category protected by applicable law. Hiring decisions are based on merit, qualifications and business needs. We conduct background checks and drug screens, in accordance with applicable law and company policies. MKS is generally only hiring candidates who reside in states where we are registered to do business.
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
MKS is committed to working with and providing reasonable accommodations to qualified individuals with disabilities. If you need a reasonable accommodation during the application or interview process due to a disability, please contact us at: accommodationsatMKS@mksinst.com.
If applying for a specific job, please include the requisition number (ex: RXXXX), the title and location of the role.
A Day in Your Life at MKS
The Identity & Access Management Engineer will be responsible for the ongoing operation and evolution of the Saviynt Identity Governance & Administration (IGA) platform, including designing, implementing, and optimizing identity governance solutions across the enterprise. This role partners closely with security, IT, and application teams to deliver scalable, compliant, and efficient identity lifecycle management.
As a technical expert in identity governance, you will contribute to platform stability, integrations, and continuous improvement while helping advance MKS’s overall IAM maturity.
The ideal candidate is a highly motivated, self‑driven professional who enjoys solving complex problems, learning new technologies, and delivering secure identity solutions.
You Will Make an Impact By
Saviynt Platform Ownership
- Serve as the subject matter expert (SME) for the Saviynt IGA platform
- Oversee configuration, customization, and integration of Saviynt with enterprise systems
- Ensure platform scalability, performance, reliability, and alignment with security standards
- Support ongoing operations including upgrades, maintenance, and issue resolution
- Collaborate with vendors and internal stakeholders to ensure platform success
Technical Leadership
- Provide technical guidance and knowledge sharing within the IAM team
- Partner with IT and security leadership to prioritize work and deliver solutions
- Contribute to and promote best practices for configuration, development, and operations
Identity Lifecycle Management
- Design and maintain workflows for user provisioning, de-provisioning, and access reviews
- Implement role-based access control (RBAC) and attribute-based access control (ABAC) models
Integration & Automation
- Develop connectors and integrations between Saviynt/CyberArk and applications (on-prem and cloud)
- Automate identity processes using APIs, scripts, and Saviynt/CyberArk
- Improve operational efficiency through automation and solution optimization
Security & Compliance
- Ensure adherence to regulatory requirements (e.g., SOX, GDPR)
- Conduct periodic access certifications and audits
- Implement controls for privileged access management
Incident Management & Continuous Improvement
- Troubleshoot and resolve Saviynt platform issues
- Perform root cause analysis and implement preventive measures
- Stay current with Saviynt product capabilities, roadmap updates, and IAM industry trends
- Recommend enhancements to improve security posture and operational efficiency
Skills You Bring:
- Strong hands-on experience with Saviynt IGA platform (configuration, workflows, connectors)
- Solid understanding of identity and access management concepts and best practices
- Knowledge of directory services (Active Directory, LDAP), SSO, and federation protocols (SAML, OAuth, OIDC)
- Familiarity with APIs, REST, and scripting languages (PowerShell, Python)
- Proven ability to lead technical teams and manage complex projects
- Strong problem-solving and analytical skills with minimal supervision and escalate issues as appropriate
- Excellent communication skills for collaboration with stakeholders and vendors
- Working with an international team and stakeholders (USA, India, Germany, …)
Requirements
- 5+ years in IAM engineering roles, with at least 2+ years focused on Saviynt
- Experience in large-scale enterprise environments
- Demonstrated understanding of risk and compliance frameworks
- Excellent documentation, written and communication skills
- Must be a detail-oriented, well-organized, self-starter able to work in a dynamic environment with the ability to perform multiple tasks
- Highly motivated individual with the ability to self-start, prioritize, and multi-task
Preferred Requirements:
- Saviynt certification
- Scripting and/or programming skills in technologies, such as PowerShell, SQL, Python, and JSON
- Strong interpersonal and communication skills and the ability to collaborate and work effectively with a wide range of cross-functional teams, vendors, and time zones
- Experience with REST protocols
- Familiarity with standards for SSO technologies such as SAML2, OAuth2
Physical Demands and Working Conditions:
- Perform activities such as sitting, standing, or typing for extended periods of time
- Regularly requires good manual dexterity and coordination
- Must be able to communicate information and ideas so others will understand
- Must be able to exchange accurate information
- The ability to observe documents and details at close range (within a few feet of the observer)
- Operates in a professional office environment
- Constantly operates a computer and other office productivity machinery
- Noise level in the work environment is usually average
This position is hybrid and candidates must be within commutable distance to Andover, MA. Relocation benefits are not available for this position.
We are interested in a qualified candidates eligible to work in the United States and will not be sponsoring work visas for this position, at this time.
MKS is an equal opportunity employer, including disability, veteran status and all categories protected by law. Please review our EOE statements for additional details. MKS is generally only hiring candidates who reside in states where we are registered to do business.
Compensation and Benefits:
-
Salary Pay Range: $88,000 - $147,000 per year. This range is a good faith estimate of the expected salary range for this position, based on a wide range of factors including qualifications, experience and training, operational and business needs and other considerations permitted by law.
-
Bonus: This position is eligible for a discretionary annual bonus, in an amount to be determined by MKS [or as applicable].
-
Benefits: MKS offers a comprehensive benefits package, including health insurance coverage (medical, dental and vision), 401(k) with company match, life and disability insurance, 12 paid holidays, sick time, 15 paid vacation days, [6 weeks fully paid] parental leave, adoption assistance and tuition reimbursement [and for participation in any stock programs, signing bonus, etc.]
LI-MH1 #LI-Hybrid
Globally, our policy is to recruit individuals from wide and diverse backgrounds. However, certain positions require access to controlled goods and technologies subject to the International Traffic in Arms Regulations (ITAR) or Export Administration Regulations (EAR). Applicants for these positions may need to be “U.S. persons.” “U.S. persons” are generally defined as U.S. citizens, noncitizen nationals, lawful permanent residents (or, green card holders), individuals granted asylum, and individuals admitted as refugees.
MKS Inc. and its affiliates and subsidiaries (“MKS”) is an affirmative action and equal opportunity employer: diverse candidates are encouraged to apply. We win as a team and are committed to recruiting and hiring qualified applicants regardless of race, color, national origin, sex (including pregnancy and pregnancy-related conditions), religion, age, ancestry, physical or mental disability or handicap, marital status, membership in the uniformed services, veteran status, sexual orientation, gender identity or expression, genetic information, or any other category protected by applicable law. Hiring decisions are based on merit, qualifications and business needs. We conduct background checks and drug screens, in accordance with applicable law and company policies. MKS is generally only hiring candidates who reside in states where we are registered to do business.
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
MKS is committed to working with and providing reasonable accommodations to qualified individuals with disabilities. If you need a reasonable accommodation during the application or interview process due to a disability, please contact us at: accommodationsatMKS@mksinst.com.
If applying for a specific job, please include the requisition number (ex: RXXXX), the title and location of the role.
See all 62+ Identity Access Management jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new Identity Access Management roles.
Get Access To All JobsTips for Finding Identity Access Management Jobs
Frame your degree as a direct match
USCIS requires a degree in a specific field tied to the role. Computer science, information systems, and cybersecurity degrees map cleanly to IAM. If your degree is adjacent, document how your coursework directly applies to identity governance and access control.
Target employers with an established IAM practice
Large financial institutions, healthcare networks, and enterprise tech companies run dedicated IAM teams and sponsor regularly. These organizations have existing immigration counsel and streamlined processes, which dramatically reduces the time from offer to petition filing.
Highlight certifications alongside your degree
Certifications like SailPoint, CyberArk, Okta, or CISSP strengthen your specialty occupation case. USCIS looks at the totality of qualifications, and recognized industry credentials signal the specialized nature of the work beyond what a degree title alone conveys.
Understand the cap-exempt H-1B pathway
Universities, nonprofits, and government research organizations can file H-1B petitions outside the annual lottery. If you're early in your career or missed the cap, IAM roles at these institutions offer a direct route to H-1B status without waiting for the next registration cycle.
Get your LCA details right before the interview
Your employer files a Labor Condition Application with the Department of Labor certifying prevailing wage compliance before your petition proceeds. Confirm the LCA lists the correct work location, as IAM engineers often work across multiple sites or remotely, which can complicate compliance.
Use OPT STEM extension time strategically
If you're on F-1 OPT, cybersecurity and information systems degrees typically qualify for the 24-month STEM extension, giving you up to three years of work authorization. Use that window to register for the H-1B lottery twice and build your specialty occupation evidence file.
Identity Access Management jobs are hiring across the US. Find yours.
Find Identity Access Management JobsFrequently Asked Questions
Do Identity Access Management jobs qualify as a specialty occupation for H-1B?
Yes. IAM roles consistently qualify as a specialty occupation because they require at minimum a bachelor's degree in computer science, information systems, cybersecurity, or a directly related field. USCIS has approved thousands of IAM-related petitions, and the role's technical complexity, governing user provisioning, privileged access, and identity governance platforms, supports the specialty occupation argument clearly.
Which visa types are most common for IAM professionals?
The H-1B is the most common pathway for IAM engineers hired from abroad. Australians can pursue the E-3, which has no annual lottery and processes faster. Canadians and Mexicans may qualify under TN status. Senior IAM architects with documented leadership and publications sometimes qualify for the O-1A, which bypasses the H-1B cap entirely.
Does my degree field matter, or is experience enough?
Degree field matters for H-1B purposes. USCIS requires a direct relationship between your degree and the specific IAM role. Computer science, information security, and information systems are the strongest fits. If your degree is in a different field, you'll need to show through transcripts and an expert evaluation that your coursework is equivalent to a qualifying degree in a relevant discipline.
How do I find IAM employers who actively sponsor visas?
Browse Migrate Mate's job board, which filters specifically for visa-sponsoring employers in tech and cybersecurity. IAM sponsorship is most common at large enterprises in finance, healthcare, and cloud infrastructure. DOL Labor Condition Application disclosure data also shows which companies filed IAM-related petitions recently, giving you a concrete list of historically active sponsors to target in your search.
Can IAM contractors or consultants get sponsored, or only direct hires?
Sponsorship for IAM contractors is more complicated. Under H-1B rules, the petitioning employer must maintain an employer-employee relationship, which consulting arrangements can blur. Staffing firms do sponsor H-1Bs for consulting placements, but USCIS scrutinizes third-party placement petitions more closely. Direct hire roles at the end client are the cleanest sponsorship path and face significantly fewer requests for evidence.
What is the prevailing wage requirement for sponsored Identity Access Management jobs?
U.S. employers sponsoring a visa must pay at least the prevailing wage, which is what workers in the same role, area, and experience level typically earn. The Department of Labor sets this rate to make sure companies aren't hiring foreign workers simply because they'd accept lower pay than a U.S. worker. It varies by job title, location, and experience. You can look up current prevailing wage rates for any occupation and location using the OFLC Wage Search page.
See which Identity Access Management employers are hiring and sponsoring visas right now.
Search Identity Access Management Jobs