Manager, Identity and Access Management (IAM)

About the Role

Included Health is looking for a visionary and experienced Manager to lead our critical Identity and Access Management (IAM) function. You will secure our enterprise, ensuring that every worker has the right access to the right resources, at the right time, and for the right reasons. You will oversee the IAM strategies, policies, and systems that underpin the security and operational integrity of our entire technology landscape.

You will nurture talent, promote a collaborative and growth-oriented team environment, and guide a team of experienced Systems Engineers towards achieving our goals. You will work with leaders across all departments, being a trusted advisor for their technical needs. You have a history of building strong partnerships, having difficult conversations, encouraging growth in a team, and creating achievable roadmaps. You are ready to improve our security posture and overall organizational efficiency.

You will be fully remote and will report to the Sr. Manager, Digital Workplace.

Responsibilities

• Develop and implement the IAM strategy and roadmap
• Identify the latest IAM trends and technologies, then determine what will be applied at Included Health
• Manage strategic programs to mature our IAM capabilities
• Lead a high-performing team of IAM Systems Engineers, promoting a culture of continuous learning, accountability, and progress
• Manage team performance, set clear goals, and ensure effective resource allocation to meet project deadlines and operational demands
• Champion team collaboration, knowledge sharing, and best practices within the IAM function and across the Digital Workplace team
• Oversee the daily operations, maintenance, and optimization of all core IAM systems and tools, including our identity provider, Okta, access management solutions, and privileged access management (PAM) systems
• Ensure the stability, availability, and performance of critical IAM infrastructure
• Manage automation projects within IAM processes to improve efficiency, accuracy, and scalability
• Implement robust IAM policies, standards, and procedures, including access control models (e.g., RBAC, ABAC), least privilege principles, and identity lifecycle management
• Oversee critical processes around application management to ensure compliance with internal controls and external regulations (e.g., HIPAA, HITRUST, SOC 2)
• Develop strategies and lead the improvement of app implementation and integrations
• Partner with IT Solutions Architects, Application Owners, IT Systems Engineers, and Departments to understand their needs and propose secure and scalable IAM solutions
• Be an important partner in managing and responding to IAM-related security incidents, performing root cause analysis, and implementing preventative measures
• Find and address IAM risks, vulnerabilities, and potential unauthorized access points
• Be the primary contact for IAM-related inquiries, projects, and escalations across the organization
• Develop and deliver clear, concise communications, presentations, and training programs on IAM policies, best practices, and system usage to all kinds of audiences
• Manage vendor relationships for IAM solutions, including technical evaluations, contract negotiations, and ongoing support

Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 8+ years of progressive experience in IT, with at least 5 years of hands-on experience focused on Identity and Access Management.
• 3+ years of direct people management experience leading an IAM Systems Engineering team.
• Experience with IAM principles, concepts, and best practices
• Extensive hands-on experience with Okta.
• Extensive experience with Cloud Identity Management, specifically within Google Cloud Platform (GCP) and Amazon Web Services (AWS) environments.
• Proven experience with RBAC and PAM implementation and governance.
• Familiarity with security and compliance frameworks (e.g., NIST, ISO 27001, HIPAA, SOC 2).
• Strong familiarity with Infrastructure as Code (IaC) principles.