Engineer, Information Security and Risk

Cardinal Health is a global healthcare services and products company seeking a highly skilled Identity and Access Management (IAM) Engineer. The role involves designing, implementing, and managing IAM solutions to secure enterprise applications and facilitate integration during Mergers and Acquisitions, ensuring robust access controls and operational continuity.

Responsibilities:

• Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning
• Lead the planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions
• Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure
• Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions
• Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), and Role-Based Access Control (RBAC) frameworks
• Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information
• Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration
• Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders
• Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends

Requirements:

• Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience
• Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP)
• Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA, and privileged access management (PAM)
• Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint)
• Experience with scripting languages (e.g., PowerShell, Python) for automation and integration
• Strong understanding of security principles, risk management, and access control models (e.g., RBAC)
• Understanding of DevOps practices
• Familiarity with Zero Trust architecture principles
• Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context
• Proven track record of managing complex integration projects, including assessing existing IAM capabilities, workflow, systems, and processes of acquired entities
• Ability to navigate the complexities of integrating diverse identity infrastructures
• Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders
• Detail-oriented mindset to ensure precise access control configurations and compliance
• Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements
• Must be a self-starter who takes full ownership of projects from inception to completion, holding oneself accountable for the security and operation integrity of IAM platform
• Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment
• Adaptability to stay ahead of evolving IAM technologies and security threats
• 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred