Identity & Access Management Engineer

You’re more valuable than ever – And that’s just how we’ll make you feel.

Job Summary

The Identity and Access Management (IAM) Engineer is responsible for efficiently onboarding and offboarding employees, ensuring

they have the appropriate access to the systems needed for their roles. This position is crucial for implementing and supporting the

company’s modern IAM architecture, infrastructure, capabilities, and standards.

The IAM Engineer will leverage strong technical skills to analyze IAM data, identify trends or errors, and develop new IAM

processes as required. They will ensure that identity and access systems are integrated to facilitate consistent setup and

onboarding of new employees in the Company’s applications and systems. Collaboration with various IT roles, hiring managers,

and organizational leaders is essential to ensure timely and secure onboarding and offboarding of employees.

Job Requirements

Education

• Bachelor’s degree in Computer Science, Information Technology, or a related field is preferred.
• Equivalent professional experience may be considered in lieu of a degree.

Work Experience

• 5+ years of experience with Identity/Access Management within a healthcare organization required
• Experience provisioning users within an EMR systems such as Epic and/or eClinicalWorks preferred

Required Licenses/Certifications

• Relevant industry certifications (e.g. CISSP, Identity IQ Engineer/Associate, CIAM) or other relevant industry certifications are preferred.
• If not currently held, a willingness to pursue certification is expected.

Additional Knowledge, Skills and Abilities Required

• Skilled in installing, configuring, and troubleshooting Identity Management platforms, especially Okta
• Familiar with identity solutions such as Okta and Azure Active Directory
• Proficient in Okta Workflows and authentication protocols (e.g., SAML 2.0, OIDC)
• Working knowledge of SQL databases (Microsoft SQL, Oracle)
• Capable of scripting with PowerShell, Python, or using stored procedures
• Understanding of Microsoft Active Directory, including Group Policy Management
• Hands-on experience managing Microsoft Exchange/Outlook and Teams in a corporate setting
• Advanced knowledge and comfortable working within Microsoft 365 and Entra ID environments
• Knowledge of Identity Governance practices, including PIM/PAM and access audits
• Strong analytical and problem-solving abilities
• Effective communicator and collaborator across technical and non-technical teams
• Hands-on experience with Access Profiles, Roles, Policies, and Certifications.
• Strong experience with Separation of Duties (SoD) and HIPAA / PCI and PII compliance enforcement.
• Experience configuring SaaS-based Identity Governance (IG) solutions.
• Experience with most common identity access and governance (IGA) and SailPoint connectors including Active Directory (AD), EntraID, JDBC, Exchange, web service, EPIC, Imprivata, and authoritative sources integration (such as Workday).
• Experience implementing access request, entitlements reviews, approval workflows, and certification campaigns.

GoHealth Core Values:

• Collaboration: Takes ownership for collectively establishing productive partnerships and relationships and seek to gain joint understanding of priorities and objectives so that the greater good of the organization and those we serve is always at the forefront.
• Innovation: Consistently uses good judgment, applying creativity to overcome obstacles and increasing effectiveness and efficiency through process and other forms of innovation.
• Diversity & Inclusion:  Fosters diversity and inclusion, to be able to better understand team members, our customers and partners.  Engages the strengths and talents of each GoHealth team member, creating an environment of involvement, respect and connection where the richness of ideas, backgrounds and perspectives are harnessed.
• Courage & Integrity: Models and practices the highest ethical and professional standards; demonstrates pride and personal interest in our patients, partners and fellow team members, deeply engaging in the business. Makes decisions, with a focus on doing the right thing; treats team members, our customers, partners and vendors with dignity, consideration, open-mindedness and respect.
• Accountability: Always shows initiative, demonstrates a bias to action and gets things done. Actively accepts responsibility for diverse roles, obligations and actions that positively influence patient and customer outcomes, our partnerships and the healthcare needs of our communities.

Essential Functions

Essential functions are those tasks, duties and responsibilities that comprise the means of accomplishing the job’s purpose and objectives. Essential functions are critical or fundamental to the performance of the job. They are the major functions for which the person in the job is held accountable. Following are the essential functions of the job.

• Identity and Access Management and Identity Governance Functions
  • Stay up to date with the latest security standards, secure protocols, authentication & authorization protocols, and best practices around IAM industry patterns, including vendor release notes for Azure Entra ID, Okta, SailPoint, Saviynt, CyberArk, Beyond Trust
  • Develop and architect solutions using two or more leading IAM Solution providers such as Azure Entra ID, Okta, SailPoint, Saviynt, CyberArk, Beyond Trust.
  • Develop, build, and maintain automated user access requests, entitlement reviews, approval workflows, and certification campaigns
  • Develop, build, and maintain Joiner-Mover-Leaver (JML) workflows
  • Implement and configure Okta features such as SSO, MFA, Lifecycle Management, Workflows, and Authorization.
  • Provide ongoing support for Okta IAM solutions and troubleshoot issues as they arise.
  • Develop and maintain custom integrations with third-party applications using Okta APIs and SDKs.
  • Collaborate with cross functional teams, including business stakeholders, developers, and architects, to gather business requirements and develop technical solutions and meet business needs.
  • Develop workflows and process to enforce Separation of Duties (SoD) and compliance with HIPAA, PCI-DSS, and PII privacy protections.
  • Develop and maintain custom integrations with third-party applications using Okta APIs and SDKs.
  • Stay up to date with industry trends and best practices related to Okta, IAM and IGA.
  • Implement and configure Okta features such as SSO, MFA, Lifecycle Management, Workflows, and Authorization.
  • Conduct testing and validation of Okta IAM solutions to ensure they meet the required standards and requirements.
  • Experience implementing access request, entitlements reviews, approval workflows, and certification campaigns.
• Develop and maintain documentation on, including technical specifications, design documents, standard operating procedures, guides for the IT helpdesk and internal user manuals.

Note:  This job description is not inclusive of all the duties of the position.  You may be asked by leaders to perform other duties.  Leadership may revise this job description at any time.

Set up email alerts as new job postings become available that meet your interest! 

All qualified persons are granted an equal opportunity for employment without regard to race, color, religion, sex, sexual orientation and gender identity or expression, age, national origin, citizenship status, disability, genetic information, medical condition, family care leave status, pregnancy or pregnancy-related condition, otherwise qualified disabled or veteran status. The company will comply with all fair employment laws in each of the jurisdictions where we conduct business.
For applicants in California, please review our California Consumer Privacy Statement here. https://www.gohealthuc.com/privacy-policy