Senior IAM Engineer
Sapphire Digital, Part of Zelis
At Zelis, we Get Stuff Done. So, let’s get to it!
A Little About Us
Zelis is modernizing the healthcare financial experience across payers, providers, and healthcare consumers. We serve more than 750 payers, including the top five national health plans, regional health plans, TPAs and millions of healthcare providers and consumers across our platform of solutions. Zelis sees across the system to identify, optimize, and solve problems holistically with technology built by healthcare experts – driving real, measurable results for clients.
A Little About You
You bring a unique blend of personality and professional expertise to your work, inspiring others with your passion and dedication. Your career is a testament to your diverse experiences, community involvement, and the valuable lessons you've learned along the way. You are more than just your resume; you are a reflection of your achievements, the knowledge you've gained, and the personal interests that shape who you are.
Position Overview
The Senior IAM Engineer – Team Lead is a technical leadership role responsible for designing, implementing, and optimizing Identity and Access Management (IAM) solutions, primarily using SailPoint ISC. The position involves managing IAM lifecycle processes, automating workflows, troubleshooting system issues, collaborating with IT and business stakeholders, and mentoring junior engineers. Key qualifications include expertise in SailPoint, Active Directory, Azure, automation scripting, and identity protocols, with preferred experience in other IAM tools and compliance frameworks.Senior Identity and Access Management (IAM) Engineer – Team Lead
Overview
We are seeking a highly skilled and motivated Senior IAM Engineer – Team Lead to join the Identity and Access Management (IAM) team. This is a hands-on technical leadership role, ideal for someone who thrives in dynamic environments and is passionate about Security, IAM, Automation, and Identity Governance.
Key Responsibilities
Manage lifecycle management integrations for Identity Governance and Administration (IGA), specifically leveraging SailPoint ISC. Drive the planning, design, and execution of engineering projects to achieve IAM program objectives including access provisioning, deprovisioning, role-based access control, access reviews, and service account management.
Design and implement IAM solutions aligned with organizational goals and security standards, and architect, develop, and implement accelerators and enablers for automating IAM processes, driving efficiency and accuracy. Identify opportunities for process optimization and execute strategies to improve service delivery and scalability
Analyze and troubleshoot IAM system issues, providing robust engineering solutions to enhance performance, security, and reliability. Conduct detailed root cause analyses of technical problems and implement solutions to prevent recurrences
Collaborate with key stakeholders, including IT, security teams, and business unit contacts to extend IAM control solutions across enterprise technology assets. Work closely with application development teams to understand current initiatives and strategies, ensuring alignment and integration with IAM solutions.
Monitor IAM operations to ensure optimal performance and compliance with Standard Operating Procedures (SOPs). Escalate incidents to next-level support as needed, and lead efforts to resolve critical issues promptly. Provide technical guidance and mentorship to junior engineers, fostering a collaborative and innovative engineering culture.
Conduct research to address complex technical challenges and stay informed of emerging trends and technologies in IAM. Drive continuous engineering improvement opportunities and focus on innovation and efficiencies to minimize known issues.
Create and maintain comprehensive knowledge articles, architecture diagrams, and SOPs to address operational needs. Develop procedures and documentation for continuous improvement and maintenance activities related to IAM infrastructure.
Qualifications
Proven technical experience implementing and managing SailPoint ISC in an enterprise environment with an emphasis on Active Directory, Azure, Workday, and SailPoint Workflows.
Strong understanding of IAM principles, including provisioning, de-provisioning, access reviews, RBAC, and least privilege.
Proficiency in PowerShell scripting and experience with automation platforms (e.g., Azure Automation, AWS Lambda Functions).
Familiarity with identity protocols such as SAML, OAuth, OpenID Connect, and directory services like LDAP and Active Directory.
Familiarity with REST API principles, system-to-system authentication methods (Basic Authentication, OAuth, Certificate Auth, etc.), and System for Cross-domain Identity Management (SCIM).
Experience with cloud platforms (e.g., Azure, AWS) and hybrid identity environments.
Excellent communication and collaboration skills.
Ability to lead technical initiatives and drive results without direct managerial authority.
Preferred Qualifications
SailPoint certifications (e.g., Identity Security Engineer).
Experience with other IAM tools (e.g., Okta, CyberArk, Ping).
Knowledge of compliance frameworks (e.g., SOX, HIPAA, GDPR).
Please note at this time we are unable to proceed with candidates who require visa sponsorship now or in the future.
Location and Workplace Flexibility
We have offices in Atlanta GA, Boston MA, Morristown NJ, Plano TX, St. Louis MO, St. Petersburg FL, and Hyderabad, India. We foster a hybrid and remote friendly culture, and all our employee's work locations are based on the needs of the position and determined by the Leadership team. In-office work and activities, if applicable, vary based on the work and team objectives in accordance with Company policies.
Base Salary Range
$139,000.00 - $186,000.00At Zelis we are committed to providing fair and equitable compensation packages. The base salary range allows us to make an offer that considers multiple individualized factors, including experience, education, qualifications, as well as job-related and industry-related knowledge and skills, etc. Base pay is just one part of our Total Rewards package, which may also include discretionary bonus plans, commissions, or other incentives depending on the role.
Zelis’ full-time associates are eligible for a highly competitive benefits package as well, which demonstrates our commitment to our employees’ health, well-being, and financial protection. The US-based benefits include a 401k plan with employer match, flexible paid time off, holidays, parental leaves, life and disability insurance, and health benefits including medical, dental, vision, and prescription drug coverage.
Equal Employment Opportunity
Zelis is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.
We welcome applicants from all backgrounds and encourage you to apply even if you don’t meet 100% of the qualifications for the role. We believe in the value of diverse perspectives and experiences and are committed to building an inclusive workplace for all.
Accessibility Support
We are dedicated to ensuring our application process is accessible to all candidates. If you are a qualified individual with a disability or a disabled veteran and require a reasonable accommodation with any part of the application and/or interview process, please email TalentAcquisition@zelis.com.
Disclaimer
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal responsibilities, duties, and skills from time to time.