Medix Technology
Overview
Recruitment Advisor II, Information Technology at Medix Job Summary: Senior Identity and Access Management (IAM) Engineer We are seeking a senior-level IAM Security Engineer to be a key technical resource for our team. This role is responsible for designing, implementing, and supporting comprehensive Identity and Access Management solutions that ensure secure and compliant access to our systems and data. The ideal candidate has deep expertise in Identity Governance and Administration (IGA) platforms and a strong background in healthcare-specific compliance frameworks, including HIPAA, HITRUST, and NIST. The IAM Security Engineer will collaborate with security, compliance, HR, and clinical teams to deliver robust identity lifecycle management, privileged access controls, and authentication solutions. This role also involves designing security policies, overseeing security for various systems, and mentoring junior staff. It is a mostly remote position that includes a 24/7 on-call rotation and requires strong leadership and project management skills.
What You Will Do
Lead the configuration, integration, and management of IAM solutions across the organization. Design and configure role-based (RBAC) and attribute-based access controls (ABAC) for automation and birthright access. Implement and support privileged access controls using solutions like Delinea or MS Entra PIM for admin and clinical application accounts. Enforce multi-factor authentication (MFA) and just-in-time access for privileged accounts. Develop and maintain integrations between IAM platforms and EHR systems, cloud services, and on-prem applications. Create scripts, APIs, and workflows to streamline user lifecycle management. Ensure IAM systems meet healthcare regulatory requirements such as HIPAA and HITRUST. Configure and support Single Sign-on (SSO) integrations using SAML, OAuth, or OpenID Connect. Serve as a technical mentor for junior IAM engineers and analysts. Lead complex IAM projects, act as a subject matter expert for cross-functional initiatives, and participate in security incident response. Review new or existing systems to ensure IAM requirements are satisfied prior to implementation. What You Will Need
Education: A Bachelor's Degree in a related field such as Information Security or Computer Science, or equivalent experience. Certifications: At least one industry-preferred certification such as CISA, CISM, CISSP, or CIAM. Experience: Minimum of eight (8) years of combined IT and Cybersecurity experience. Minimum of five (5) years of direct IAM experience. Hands-on experience with IAM tools such as SailPoint, Saviynt, Ping, MS Entra, Duo, or similar platforms. Strong scripting skills (e.g., Powershell, Python, Java) and experience with APIs and system integrations. Proven experience in healthcare IT environments, with knowledge of clinical workflows and EHR systems. Expertise in HIPAA, HITRUST, and NIST security controls. Knowledge of modern authentication protocols and IAM principles like the principle of least privilege, Zero Trust, and separation of duties. Experience with IAM integrations for EPIC and other cloud-based healthcare applications. Excellent communication, analytical, and problem-solving skills. The ability to work independently with minimal oversight on a broad range of IAM projects.
#J-18808-Ljbffr
Recruitment Advisor II, Information Technology at Medix Job Summary: Senior Identity and Access Management (IAM) Engineer We are seeking a senior-level IAM Security Engineer to be a key technical resource for our team. This role is responsible for designing, implementing, and supporting comprehensive Identity and Access Management solutions that ensure secure and compliant access to our systems and data. The ideal candidate has deep expertise in Identity Governance and Administration (IGA) platforms and a strong background in healthcare-specific compliance frameworks, including HIPAA, HITRUST, and NIST. The IAM Security Engineer will collaborate with security, compliance, HR, and clinical teams to deliver robust identity lifecycle management, privileged access controls, and authentication solutions. This role also involves designing security policies, overseeing security for various systems, and mentoring junior staff. It is a mostly remote position that includes a 24/7 on-call rotation and requires strong leadership and project management skills.
What You Will Do
Lead the configuration, integration, and management of IAM solutions across the organization. Design and configure role-based (RBAC) and attribute-based access controls (ABAC) for automation and birthright access. Implement and support privileged access controls using solutions like Delinea or MS Entra PIM for admin and clinical application accounts. Enforce multi-factor authentication (MFA) and just-in-time access for privileged accounts. Develop and maintain integrations between IAM platforms and EHR systems, cloud services, and on-prem applications. Create scripts, APIs, and workflows to streamline user lifecycle management. Ensure IAM systems meet healthcare regulatory requirements such as HIPAA and HITRUST. Configure and support Single Sign-on (SSO) integrations using SAML, OAuth, or OpenID Connect. Serve as a technical mentor for junior IAM engineers and analysts. Lead complex IAM projects, act as a subject matter expert for cross-functional initiatives, and participate in security incident response. Review new or existing systems to ensure IAM requirements are satisfied prior to implementation. What You Will Need
Education: A Bachelor's Degree in a related field such as Information Security or Computer Science, or equivalent experience. Certifications: At least one industry-preferred certification such as CISA, CISM, CISSP, or CIAM. Experience: Minimum of eight (8) years of combined IT and Cybersecurity experience. Minimum of five (5) years of direct IAM experience. Hands-on experience with IAM tools such as SailPoint, Saviynt, Ping, MS Entra, Duo, or similar platforms. Strong scripting skills (e.g., Powershell, Python, Java) and experience with APIs and system integrations. Proven experience in healthcare IT environments, with knowledge of clinical workflows and EHR systems. Expertise in HIPAA, HITRUST, and NIST security controls. Knowledge of modern authentication protocols and IAM principles like the principle of least privilege, Zero Trust, and separation of duties. Experience with IAM integrations for EPIC and other cloud-based healthcare applications. Excellent communication, analytical, and problem-solving skills. The ability to work independently with minimal oversight on a broad range of IAM projects.
#J-18808-Ljbffr