Identity and Access Management

JOB DESCRIPTION:

Position Summary

General overview of the position As the Identity and Access Management (IAM) Specialist, you will be responsible for designing, implementing, and operationalizing IAM functions to ensure secure and efficient access management across the organization. In this critical role, you will establish and maintain role-based access control (RBAC) frameworks, streamline user lifecycle processes, and ensure compliance with security policies and regulatory requirements. You will work closely with cross-functional teams including IT, Security, HR, and business units to align IAM initiatives with organizational objectives. Your responsibilities will include managing user on-boarding and off-boarding processes, defining birthright access policies, conducting regular entitlement reviews, and continuously improving IAM operations through automation and process optimization. This role requires a strong understanding of identity governance, access management principles, and the ability to balance security requirements with business enablement. Primary Duties Essential duties performed on a daily/weekly basis #* Duty% of time* 1. Design, implement, and maintain Role-Based Access Control (RBAC) frameworks aligned with business functions, ensuring least privilege and separation of duties principles. 25% 2. Manage and optimize user lifecycle processes including on-boarding, transfers, and off-boarding, ensuring timely provisioning and de-provisioning of access across all systems and applications. 20% 3. Define and manage birthright access policies, establishing standardized access baselines for different roles, departments, and job functions. 15% 4. Plan, coordinate, and conduct periodic access certification and entitlement reviews with business owners, remediating excessive or inappropriate access rights. 20% 5. Collaborate with application owners and stakeholders to integrate IAM processes into business workflows and ensure compliance with security policies and regulatory requirements (HIPAA, SOC 2, etc.). 10% 6. Develop and maintain IAM documentation including policies, procedures, role definitions, access matrices, and operational runbooks. 10% Minimum Qualifications Essential to perform duties without training

• Bachelor's degree in Computer Science, Information Security, Information Technology, or related field.
• Minimum of 4+ years of experience in Identity and Access Management, access governance, or related cybersecurity domains.
• Proven experience designing and implementing RBAC frameworks and access control models in enterprise environments.
• Strong understanding of IAM principles including least privilege, separation of duties, user lifecycle management, and access certification processes.
• Hands-on experience with IAM tools and technologies such as Okta, Azure AD/Entra ID, SailPoint, Saviynt, or similar identity governance platforms.
• Experience with user provisioning, de-provisioning, and automating access management workflows.
• Knowledge of authentication and authorization protocols (SAML, OAuth, OpenID Connect, LDAP).

Preferred KSA's Nice to have knowledge, skills, and/or abilities Strongly Preferred:

• Experience conducting access reviews, attestation campaigns, and remediation of entitlement risks.
• Proficiency with automation and scripting (Python, PowerShell, Bash) to enhance IAM operations and reduce manual processes.
• Experience implementing and managing Single Sign-On (SSO) and Multi-Factor Authentication (MFA) solutions.
• Knowledge of identity federation, privileged access management (PAM), and just-in-time (JIT) access principles.
• Familiarity with compliance frameworks and regulations such as HIPAA, SOC 2, GDPR, and their IAM-related requirements.
• Experience integrating IAM with HR systems (Workday, BambooHR, etc.) and IT service management platforms (ServiceNow, Jira).
• Certifications such as CISSP, CISM, Certified Identity and Access Manager (CIAM), or similar are strongly preferred.

Preferred:

• Experience with cloud IAM services for AWS, Azure, and GCP, including identity federation and role management.
• Familiarity with Zero Trust security architecture and its IAM implications.
• Experience working in healthcare or health-tech environments with knowledge of Electronic Health Records (EHR) systems and clinical data access requirements.
• Understanding of DevSecOps principles and experience implementing IAM controls in CI/CD pipelines and containerized environments (Docker, Kubernetes).
• Experience with Identity Governance and Administration (IGA) tools and their implementation in complex enterprise environments.
• Knowledge of API security and implementing API-based access management solutions

Job Types: Full-time, Contract

Pay: $ $80.00 per hour

Work Location: Remote