Job Summary
As a member of the Community Health Systems (CHS) Cyber Security Team, the Cyber Security (IAM) Engineer, Sr will be responsible for design, implementation, and support of IAM integrations, with a strong focus on automating user provisioning lifecycle processes across a wide range of enterprise applications. The engineer role will serve as subject matter expert for Sailpoint ISC environment and work with cross functional teams to mature the platform and ensure it meets business and application needs.
Essential Functions
- Design, develop, implement, and support enterprise Identity and Access Management (IAM) systems and solutions.
- Serve as a Subject Matter Expert (SME) for SailPoint Identity Security Cloud (ISC), providing guidance and support for integrations across a wide range of applications
- Lead the implementation of core IAM functions, including Joiner-Mover-Leaver (JML) lifecycle processes, role management, connector integrations, provisioning policies, rules, transforms, and workflows.
- Work with a variety of applications and systems, including Active Directory, Ping, GSuite, and more, to support identity integrations and access management processes. Knowledge of working with medical applications like Med host, Cerner is desirable
- Collaborate with enterprise architecture and business stakeholders to drive the strategic growth and maturity of the IAM program.
- Maintain continuous oversight of the IAM environment to ensure security, system integrity, and operational stability.
- Proactively identify security vulnerabilities, conduct risk assessments, and implement remediation measures to strengthen the overall identity security posture and reduce exposure to threats.
- Track and analyze IAM-related metrics, using insights to drive improvements in system performance, access governance, and operational efficiency.
- Partner with audit, compliance, application owners, and business teams to support ongoing operations and new business initiatives.
- Work with teams to proactively troubleshoot and resolve critical issues, and performing root cause analysis to maintain system availability, health, and continuous access provisioning/deprovisioning to applications.
- Work with internal audit and compliance teams to ensure IAM platform aligns with internal policy requirements, respond to audit requests, provide required documentation and evidence reports.
- Build and review business and technical requirements, solution designs, and use case documentation to support the successful implementation of IAM functionalities.
- Maintain up-to-date documentation including architecture diagrams, technical specifications, and run books to support onboarding applications, cross-team collaboration, and smooth handoffs across IAM-related projects.
- Business and Soft Skill expectations:
- Communicate and interact effectively and professionally with co-workers, management, customers and vendors.
- Communicate with management regarding development within areas of assigned responsibilities and perform special projects as required or requested.
Qualifications
- Bachelor’s Degree in Cyber Security, Computer Science, Information Systems (or other related field) or equivalent work experience
- 6+ years of Identity and Access Management
4+ years of Sailpoint experience
2+ years of Sailpoint ISC experience
Knowledge, Skills and Abilities
- Deep knowledge of cyber security tools, techniques, and standards across infrastructure, applications, and cloud environments.
- Strong understanding of security frameworks including NIST, CIS, and ISO 27001.
- Ability to analyze complex technical and business problems and develop effective, scalable solutions.
- Skilled in incident response, forensic analysis, and root cause determination.
- Excellent written and verbal communication skills, with the ability to clearly convey technical concepts to non-technical audiences.
Licenses and Certifications
- Relevant security certifications such as CISSP, CISM, GIAC, or CEH required
- Additional technical certifications (e.g., Azure Security Engineer, AWS Security Specialty) preferred