WPS—A health solutions company
Principal IAM Security Engineer & Architect
WPS—A health solutions company, Des Moines, Iowa, United States
Principal IAM Security Engineer & Architect
Role to protect WPS assets and align IAM Program with WPS’s vision. The Architect works with key IT and business unit stakeholders to review, recommend, and document standards and best practices for data, network, cloud, and application security. Ensures information system processes and procedures meet contractual security compliance requirements and Government policies and standards, including Medicare, HIPAA and NIST Cyber Security Framework. Responsibilities
Provide technical leadership in the design, development, implementation and maturity of Identity and Access Management (IAM) platforms and infrastructure. Foster innovation and continuous improvement in processes, platforms, technologies and practices related to IAM. Lead security architecture efforts across multiple domains (data, network, cloud, application) and serve as SME on enterprise projects to ensure architecture standards and regulatory compliance. Conduct security architecture reviews and consultations for all lines of business in an enterprise environment. Participate in Architecture Review Board (ARB) and Technology Review Board (TRB) to provide security and IAM architecture expertise. Translate security and IAM architecture strategy into policies, standards, documentation, and diagrams. Maintain up-to-date knowledge of industry trends and provide leadership with recommendations on architecture direction. Minimum Qualifications
U.S. citizenship is required for this position due to Department of Defense restrictions. Bachelor’s degree in Computer Science, Cybersecurity, Information Technology or related field OR equivalent post-high-school education and/or work-related experience. 7+ years of progressive experience in Information Security, specifically in IAM architecture and engineering. Demonstrated experience designing and implementing IAM solutions (e.g., Okta, RSA, SailPoint, Azure AD, Entra ID, Ping Identity, CyberArk). Experience leading security architecture efforts across multiple domains (data, network, cloud, application). Experience in regulated industries (e.g., healthcare, government) with HIPAA, NIST CSF, FISMA, FedRAMP. Strong understanding of IT and IAM concepts: authentication, authorization, RBAC, ABAC, SSO, MFA, provisioning/deprovisioning; cloud security in AWS/Azure/GCP; secure architecture patterns and Zero Trust; DevSecOps, CI/CD, and automated provisioning; policy/standards documentation; leadership and mentoring; effective communication; ability to convert strategy into actionable plans; strong documentation and diagramming skills (Visio, Lucidchart). Preferred Qualifications
Proficiency in at least one scripting/programming language (PowerShell, SQL, Java, etc.). Industry certifications such as CISSP, CCSP, CISM, CyberArk Sentry/Guardian. Experience gathering design requirements and maintaining documentation and knowledge bases. Remote Work & Location
Primary location preference: Wisconsin with hybrid work (3 days/week). Employees within 45 miles of WPS Headquarters (1717 W. Broadway, Madison, WI) will be expected to work Hybrid 3 days a week. Remote work is approved for certain states: Arizona, Colorado, Florida, Georgia, Illinois, Indiana, Iowa, Michigan, Minnesota, Missouri, Nebraska, Nevada, New Jersey, North Carolina, Ohio, South Carolina, Texas, Virginia, Wisconsin. Salary
$125,000 ~ $160,000. The base pay offered may vary within the posted range based on job-related knowledge, skills, and experience. Remote Work Requirements
High speed internet; 10 Mbps downstream and 1 Mbps upstream minimum. Benefits
Remote and hybrid work options Performance bonus and/or merit increase opportunities 401(k) with company match Competitive paid time off Health, dental, and telehealth services start Day 1 Professional and Leadership Development Programs About Us
WPS, a health solutions company, is a leading not-for-profit health insurer and federal government contractor headquartered in Madison, Wisconsin. We offer health plans for individuals, families, seniors and groups, process claims, and manage benefits for millions of beneficiaries and service members. We are proud to be military and veteran ready. Culture & Compliance
Our culture emphasizes an open and empowering employee experience. We comply with federal regulations, agency contract requirements, and internal policies for data security, privacy, confidentiality, and program integrity. All personnel may be subject to enhanced screening and background investigations as required.
#J-18808-Ljbffr
Role to protect WPS assets and align IAM Program with WPS’s vision. The Architect works with key IT and business unit stakeholders to review, recommend, and document standards and best practices for data, network, cloud, and application security. Ensures information system processes and procedures meet contractual security compliance requirements and Government policies and standards, including Medicare, HIPAA and NIST Cyber Security Framework. Responsibilities
Provide technical leadership in the design, development, implementation and maturity of Identity and Access Management (IAM) platforms and infrastructure. Foster innovation and continuous improvement in processes, platforms, technologies and practices related to IAM. Lead security architecture efforts across multiple domains (data, network, cloud, application) and serve as SME on enterprise projects to ensure architecture standards and regulatory compliance. Conduct security architecture reviews and consultations for all lines of business in an enterprise environment. Participate in Architecture Review Board (ARB) and Technology Review Board (TRB) to provide security and IAM architecture expertise. Translate security and IAM architecture strategy into policies, standards, documentation, and diagrams. Maintain up-to-date knowledge of industry trends and provide leadership with recommendations on architecture direction. Minimum Qualifications
U.S. citizenship is required for this position due to Department of Defense restrictions. Bachelor’s degree in Computer Science, Cybersecurity, Information Technology or related field OR equivalent post-high-school education and/or work-related experience. 7+ years of progressive experience in Information Security, specifically in IAM architecture and engineering. Demonstrated experience designing and implementing IAM solutions (e.g., Okta, RSA, SailPoint, Azure AD, Entra ID, Ping Identity, CyberArk). Experience leading security architecture efforts across multiple domains (data, network, cloud, application). Experience in regulated industries (e.g., healthcare, government) with HIPAA, NIST CSF, FISMA, FedRAMP. Strong understanding of IT and IAM concepts: authentication, authorization, RBAC, ABAC, SSO, MFA, provisioning/deprovisioning; cloud security in AWS/Azure/GCP; secure architecture patterns and Zero Trust; DevSecOps, CI/CD, and automated provisioning; policy/standards documentation; leadership and mentoring; effective communication; ability to convert strategy into actionable plans; strong documentation and diagramming skills (Visio, Lucidchart). Preferred Qualifications
Proficiency in at least one scripting/programming language (PowerShell, SQL, Java, etc.). Industry certifications such as CISSP, CCSP, CISM, CyberArk Sentry/Guardian. Experience gathering design requirements and maintaining documentation and knowledge bases. Remote Work & Location
Primary location preference: Wisconsin with hybrid work (3 days/week). Employees within 45 miles of WPS Headquarters (1717 W. Broadway, Madison, WI) will be expected to work Hybrid 3 days a week. Remote work is approved for certain states: Arizona, Colorado, Florida, Georgia, Illinois, Indiana, Iowa, Michigan, Minnesota, Missouri, Nebraska, Nevada, New Jersey, North Carolina, Ohio, South Carolina, Texas, Virginia, Wisconsin. Salary
$125,000 ~ $160,000. The base pay offered may vary within the posted range based on job-related knowledge, skills, and experience. Remote Work Requirements
High speed internet; 10 Mbps downstream and 1 Mbps upstream minimum. Benefits
Remote and hybrid work options Performance bonus and/or merit increase opportunities 401(k) with company match Competitive paid time off Health, dental, and telehealth services start Day 1 Professional and Leadership Development Programs About Us
WPS, a health solutions company, is a leading not-for-profit health insurer and federal government contractor headquartered in Madison, Wisconsin. We offer health plans for individuals, families, seniors and groups, process claims, and manage benefits for millions of beneficiaries and service members. We are proud to be military and veteran ready. Culture & Compliance
Our culture emphasizes an open and empowering employee experience. We comply with federal regulations, agency contract requirements, and internal policies for data security, privacy, confidentiality, and program integrity. All personnel may be subject to enhanced screening and background investigations as required.
#J-18808-Ljbffr