Role: Identity & Access Management (IAM) Engineer
Location: Remote
Summary
seeking an Identity & Access Management (IAM) Engineer responsible for designing, implementing, and supporting secure identity services across enterprise, clinical, and cloud platforms. This role is critical to protecting sensitive healthcare and business data while ensuring employees, providers, and partners have secure and reliable access to the systems they need to perform their roles.
The IAM Engineer will focus on identity lifecycle automation, secure authentication, and access governance across Okta, Auth0, Microsoft Entra ID (Azure AD), Microsoft 365, clinical applications, and business platforms. This position works closely with Information Security, Infrastructure, Application Owners, HR, and Compliance teams to strengthen access controls while maintaining operational efficiency in a healthcare environment.
Responsibilities
Identity Platform Engineering & Integration
- Design, implement, and maintain IAM capabilities across Okta, Auth0, and Microsoft Entra ID environments.
- Configure and support Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Conditional Access policies.
- Integrate enterprise and healthcare applications using SAML, OAuth2, OpenID Connect, LDAP, and SCIM provisioning.
- Administer Okta and Auth0 tenants, including application onboarding, federation configuration, identity flows, and authentication policy enforcement.
- Support secure access across Microsoft 365, SaaS platforms, cloud environments, and internally hosted applications.
- Partner with infrastructure and application teams to onboard systems into centralized identity platforms.
Identity Lifecycle Management
- Manage automated joiner, mover, and leaver (JML) processes integrated with HR and business systems.
- Automate provisioning and deprovisioning workflows to reduce manual effort and access risk.
- Design and maintain Role-Based Access Control (RBAC) aligned to job functions and least-privilege principles.
- Support periodic access certifications and reviews in coordination with Compliance and Internal Audit teams.
- Continuously improve identity governance processes as Innovista s security maturity evolves.
Security, Compliance & Governance
- Ensure IAM controls align with HIPAA security requirements and organizational security policies.
- Support internal and external audits by providing access control evidence, reporting, and documentation.
- Monitor authentication activity and investigate anomalous or high-risk sign-in behavior.
- Maintain IAM standards, procedures, and technical documentation.
- Assist in implementation and enforcement of identity-related security policies and Zero Trust principles.
Privileged Access & Risk Management
- Support privileged access management practices for administrative and high-risk accounts.
- Implement least-privilege access models and just-in-time administrative access where appropriate.
- Monitor privileged account activity and assist with remediation of access risks.
- Participate in incident response activities related to identity compromise or unauthorized access.
Automation & Operational Support
- Develop automation using PowerShell or similar scripting tools to streamline identity operations.
- Support API-based integrations between IAM platforms and enterprise applications.
- Troubleshoot authentication, federation, and access issues impacting business and clinical operations.
- Provide Tier 3 support for identity and access-related incidents and service requests.
- Collaborate with Service Desk and Infrastructure teams to improve operational workflows and user experience.
Required Qualifications
Preferred Qualifications
- Experience with Identity Governance and Administration (IGA) platforms such as SailPoint or similar tools.
- Experience supporting healthcare payer or clinical applications integrations.
- Familiarity with Microsoft Intune and device compliance-based access controls.
- Experience supporting hybrid environments (on-premises Active Directory and cloud identity).
- Exposure to Privileged Access Management (PAM) solutions.
- Security or identity certifications such as CISSP, CISM, SC-300, or equivalent.
Key Competencies
- Strong analytical and troubleshooting skills in complex identity environments.
- Ability to balance security requirements with operational and clinical usability.
- Clear communication skills with both technical and non-technical stakeholders.
- Ability to operate effectively in a lean, fast-moving healthcare IT organization.
- High attention to detail and strong commitment to protecting sensitive data.
Never miss an opportunity! Create an alert based on the job you applied for.
