Description
You will design and implement enterprise-grade identity and access management solutions, focusing on RBAC, group-based models, and least privilege principles. You will own the architecture of identity lifecycle processes, ensuring automated provisioning and deprovisioning for Joiners, Movers, and Leavers. Your work will directly impact security posture by enforcing segregation of duties and sensitive data controls.
Responsibilities
- Design and implement RBAC frameworks and role modeling aligned with business requirements and least privilege principles.
- Architect identity lifecycle processes with automated provisioning and deprovisioning workflows.
- Configure and integrate IAM platforms like Okta, Auth0, or Microsoft Entra ID with enterprise applications.
- Develop and enforce access policies, including segregation of duties (SoD) and PHI controls.
- Establish audit logging, reporting, and access certification processes to ensure compliance with NIST, SOX, and healthcare standards.
Required Skills
- 5+ years of experience in IAM architecture, specifically with RBAC design and entitlement mapping.
- Hands-on expertise with IAM platforms such as Okta, Auth0, or Microsoft Entra ID.
- Deep knowledge of authentication protocols including SAML, OAuth, OIDC, SSO, and MFA.
- Experience with access governance, audit logging, and compliance frameworks (PHI, SOX, NIST).
- Proficiency in API integrations and application security concepts.
- Strong analytical and problem-solving skills with a track record of translating business requirements into technical IAM solutions.
Preferred Skills
- Experience in healthcare or financial services environments.
- Familiarity with policy-as-code or automated access controls.
- Knowledge of DevOps and CI/CD integration for IAM solutions.