Help us maintain the quality of our job listings. If you find any issues with this job post, please let us know.
Select the reason you're reporting this job:
Aledade is the largest network of independent primary care, enabling clinicians to deliver better patient outcomes and generate more savings revenue through value-based care. Aledade’s data, personal coaching, user-friendly workflows, health care policy expertise, strong payer relationships and integrated care solutions enable primary care organizations to succeed financially by keeping people healthy. Together with more than 1,900 practices and community health centers in 45 states and the District of Columbia, Aledade manages accountable care organizations that share in the risk and reward across more than 200 value-based contracts representing more than 2.5 million patient lives. To learn more, visit www.aledade.com.
As a Senior Security Engineer II for Identity and Access Management (IAM) at Aledade, you will play a central role in enhancing the security posture of our enterprise, cloud-native environments, and applications. We are seeking a dedicated professional with in-depth knowledge of IAM principles, standards, and best practices to help safeguard our systems and support our security compliance initiatives.
In this role, you will work to design, implement, and maintain robust IAM solutions, managing authentication, authorization, and provisioning across diverse platforms. You will also collaborate closely with various teams to ensure alignment between IAM solutions and organizational security requirements, enabling secure and seamless access across the enterprise. Your ability to partner cross-functionally will be key to driving impactful outcomes and further strengthening our digital landscape.
Primary Duties:
Working cross functionally to design, build, and operate solutions that continuously improve and automate our security capabilities.
Leveraging data to understand trends, metrics, and opportunities to improve our security posture and then helping execute on those opportunities with stakeholders.
Leading and enhancing incident response efforts, spearheading analysis, containment, and mitigation strategies in a cross-functional environment to ensure effective resolution and remediation of security incidents.
Helping craft and refine security documentation pertinent to our Security Program, such as policies, standards, baselines, and standard operating procedures.
Mentoring and coaching more junior engineers or analysts.
Minimum Qualifications:
BS / BTech (or higher) in Computer Science, Information Technology, Cybersecurity or a related field, 8 years security domain experience without degree.
6+ years of experience in software or security engineering within Cloud Native environments.
4+ years of experience working with large datasets to identify opportunities for security posture improvements or to detect, investigate and respond to threats.
4+ years of experience acting as a trusted advisor in a team setting, solving for short-term and long-term business value.
4+ years of experience coaching other engineers or analysts.
Preferred KSA's:
Domain Specific Preferred KSA’s:
Identity & Access Management.
Experience with Identity & Access Management (IaM) systems and practices.
In-depth knowledge of authentication protocols, authorization mechanisms, and directory services.
Strong proficiency implementing IaM solutions within very complex environments.
Familiarity with regulatory compliance and security standards.
Experience generating automated metrics to measure service and program effectiveness and consistency.
Strong communication skills, both written and verbal, with the capability to articulate complex security issues to a diverse audience.
Experience with tools in the security stack strongly preferred: Federated Identity - Okta/Entra ID/Ping Identity, IGA - Sailpoint/Saviynt/Omada, Cloud Platforms - AWS/Azure/GCP, etc.
AWS Certified Security – Specialty or other relevant AWS certifications.
Proficiency in scripting languages like PowerShell, Python or Javascript.
Nice to have knowledge, skills, and/or abilities
Experience with full stack and complex web applications built using modern web technologies.
Experience with health-tech systems, like Electronic Health Records, Clinical data, etc.
Experience with various compliance standards and frameworks: SOC 2, HIPAA, CCPA, ISO 27001, SOX ITGC.
Physical Requirments:
Sitting for prolonged periods of time. Extensive use of computers and keyboard. Occasional walking and lifting may be required.
Required profile
Experience
Level of experience:Senior (5-10 years)
Spoken language(s):
English
Check out the description to know which languages are mandatory.