Senior Identity Engineer (IAM)

Posted Feb 23

Datavant is a data logistics company for healthcare whose products and solutions enable organizations to move and connect data securely. We are a data logistics company for healthcare whose products and solutions enable organizations to move and connect data securely. Datavant has a network of networks consisting of thousands of organizations, more than 70,000 hospitals and clinics, 70% of the 100 largest health systems, and an ecosystem of 500+ real-world data partners.

By joining Datavant today, you’re stepping onto a highly collaborative, remote-first team that is passionate about creating transformative change in healthcare. We hire for three traits: we want people who are smart, nice, and get things done. We invest in our people and believe in hiring for high-potential and humble individuals who can rapidly grow their responsibilities as the company scales. Datavant is a distributed, remote-first team, and we empower Datavanters to shape their working environment in a way that suits their needs.

Datavant is seeking a Senior Identity Engineer to work full-time, 100% remotely, on the identity management team. An Identity Engineer is responsible for designing, implementing, and maintaining an organization's identity and access management solutions. They work closely with IT and DevOps teams to ensure secure and efficient access to systems and applications.

Key technologies and skills include:  

  1. Azure AD: Experience with Azure Active Directory, including user management, authentication, and authorization.
  2. Omada Identity: Knowledge of Omada Identity Manager or like Identity Management tool (ie Sailpoint, Saviynt, etc), used identity lifecycle management, access management, user provisioning, role management, and compliance. 
  3. SAML, OAuth2, OpenID Connect: Security Assertion Markup Language (SAML) is a single sign-on (SSO) authentication protocol between identity and service providers. As well as other commonly used authentication standards like OAuth and OpenID Connect, implementations include both Azure AD and Okta. 
  4. Okta: Okta identity and access management platform to provide SSO and multi-factor authentication to internal users as well as partners and customer identity and access management (CIAM).
  5. PowerShell: Strong scripting skills in PowerShell are needed to automate identity management tasks such as user provisioning, group management, and access control.

Responsibilities Include:

  • Migrate legacy Partner/Customer accounts/users from an On-Premise Active Directory to an Okta LDAP.  
  • Evaluating and automating Identity Management requirements within Azure AD environments
  • Ensuring federated access across Active Directory, Azure AD, and Okta environments
  • Troubleshooting and resolving Azure environment performance issues, connectivity issues, security issues, etc.
  • Implementing new environments in the Azure DevOps cloud related to subscriptions and IAM Roles
  • Working with teams to integrate Azure infrastructure components into processes and procedures.
  • Implementing, monitoring, and maintaining Microsoft Azure solutions, including primary services related to Identity, Groups, Managed Identity, and MSGraph use cases.
  • Working with Azure AD Identity, MFA, PIM, Access Packages, MyApps and MyAccess, Azure AD Security Conditional Access Policies, and Cloud Defender, including Defender for Identity. 
  • Ability to drive their own workload and take initiative.
  • Ability to meet with external customers 

Qualifications:

  • Bachelor’s degree in computer science, information technology, or related field, or seven or more years of equivalent experience
  • Seven years or more of experience in supporting applications and functions in the Azure Cloud

We are committed to building a diverse team of Datavanters who are all responsible for stewarding a high-performance culture in which all Datavanters belong and thrive. We are proud to be an Equal Employment Opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status.

Our compensation philosophy is to be externally competitive, internally fair, and not win or lose on compensation. Salary ranges for this position are developed with the support of benchmarks and industry best practices. 

We’re building a high-growth, high-autonomy culture. We rely less on job titles and more on cultivating an environment where anyone can contribute, the best ideas win, and personal growth is driven by expanding impact. The range posted is for a given job title, which can include multiple levels. Individual rates for the same job title may differ based on their level, responsibilities, skills, and experience for a specific job. The estimated salary range for this role is  $140,000 - $160,000.

At the end of this application, you will find a set of voluntary demographic questions. If you choose to respond, your responses will be anonymous and used to help us identify areas of improvement in our recruitment process. (We can only see aggregate responses, not individual responses. In fact, we aren’t even able to see if you’ve responded or not.) Responding is your choice and it will not be used in any way in our hiring process.