Staff Security Engineer (IAM)
Job Summary
Job Description
Aledade is seeking a Staff Security Engineer specializing in Identity and Access Management (IAM) to enhance the security of its enterprise and cloud-native environments. The role involves designing, implementing, and maintaining robust IAM solutions for authentication, authorization, and provisioning. Responsibilities include leading security strategy development, deploying advanced security controls, shaping security services, mentoring engineers, and setting security process standards. The ideal candidate will have 8+ years of experience in cloud-native environments and a BS/BTech in a related field, or 10 years of security domain experience without a degree. Experience with IAM/IGA solutions, cloud platforms (AWS, Azure, GCP), and various compliance standards is preferred. The company offers a remote-first culture and comprehensive benefits.
Must have:
- 8+ years of experience in software or security engineering within Cloud Native environments
- BS/BTech in Computer Science, Information Technology, Cybersecurity or related field OR 10 years security domain experience
- Experience with Identity & Access Management (IaM) systems and practices
- In-depth knowledge of authentication protocols, authorization mechanisms, and directory services
- Strong proficiency implementing IaM solutions in complex environments
- Familiarity with regulatory compliance and security standards
- Strong communication skills, written and verbal
Good to have:
- Experience architecting, developing, and deploying enterprise-wide IAM and IGA solutions
- Experience with cloud technologies (AWS, Azure, GCP)
- 4+ years acting as a trusted technical decision-maker
- Experience taking ownership of technology decisions and delegating
- Experience communicating analysis to non-technical audiences
- Strong communication and relationship building skills
- Adaptability to evolving technologies and regulations
- Experience with compliance standards (SOC 2, HIPAA, CCPA, ISO 27001, SOX ITGC)
- Experience with security stack tools (Okta/Auth0/Entra ID/Ping Identity, Sailpoint/Saviynt/Omada, AWS/Azure/GCP)
- AWS Certified Security – Specialty or other AWS certifications
Perks:
- Flexible work schedules
- Remote work availability
- Health, dental, and vision insurance (80% paid for employees, dependents, and domestic partners)
- 21 days of PTO in the first year
- Two paid volunteer days
- 11 paid holidays
- 12 weeks paid parental leave
- Six weeks paid sabbatical after six years of service
- Educational Assistant Program
- Clinical Employee Reimbursement Program
- 401(k) with up to 4% match
- Stock options
4 skills required
Job Details
As a Staff Security Engineer for Identity and Access Management (IAM) at Aledade, you will play a central role in enhancing the security posture of our enterprise, cloud-native environments, and applications. We are seeking a dedicated professional with in-depth knowledge of IAM principles, standards, and best practices to help safeguard our systems and support our security compliance initiatives.
In this role, you will work to design, implement, and maintain robust IAM solutions, managing authentication, authorization, and provisioning across diverse platforms. You will also collaborate closely with various teams to ensure alignment between IAM solutions and organizational security requirements, enabling secure and seamless access across the enterprise. Your ability to partner cross-functionally will be key to driving impactful outcomes and further strengthening our digital landscape.
Primary Duties:
- Lead the development, implementation, and ongoing maintenance of comprehensive security strategies and solutions.
- Design and deploy advanced security controls to safeguards networks, systems, and applications.
- Work across disciplines to shape our security services strategy and execution
- Mentor and galvanize new engineers to do their best work
- Set and uphold the standard for security processes to support high-quality engineering
Minimum Qualifications:
- BS/BTech (or higher) in Computer Science, Information Technology, Cybersecurity or a related field, 10 years security domain experience without degree
- 8+ years of experience in software or security engineering within Cloud Native environments.
Preferred Knowledge, Skills, and/or Abilities:
- Experience architecting, developing, and deploying enterprise-wide IAM and IGA solutions and aligning them with business objectives
- Experience with cloud technologies, e.g., AWS, Azure, GCP
- 4+ years of experience acting as a trusted technical decision-maker in a team setting, solving for short-term and long-term business value
- You have experience in taking ownership of the technology decisions, while delegating and empowering team members.
- You have experience communicating analysis and establishing confidence among audiences who do not share your disciplinary background or training.
- You have strong communication and relationship building skills, with experience influencing and aligning multiple stakeholders
- Adaptability to rapidly evolving technologies and regulations
- Experience with various compliance standards and frameworks: SOC 2, HIPAA, CCPA, ISO 27001, SOX ITGC are required
- Domain Specific:
- Identity & Access Management
- Experience with Identity & Access Management (IaM) systems and practices
- In-depth knowledge of authentication protocols, authorization mechanisms, and directory services
- Strong proficiency implementing IaM solutions within very complex environments
- Familiarity with regulatory compliance and security standards
- Experience generating automated metrics to measure service and program effectiveness and consistency
- Strong communication skills, both written and verbal, with the capability to articulate complex security issues to a diverse audience
- Experience with tools in the security stack strongly preferred: Federated Identity - Okta/Auth0/Entra ID/Ping Identity, IGA - Sailpoint/Saviynt/Omada, Cloud Platforms - AWS/Azure/GCP, etc.
- AWS Certified Security – Specialty or other relevant AWS certifications are a plus
Who We Are:
Aledade, a public benefit corporation, exists to empower the most transformational part of our health care landscape - independent primary care. We were founded in 2014, and since then, we've become the largest network of independent primary care in the country - helping practices, health centers and clinics deliver better care to their patients and thrive in value-based care. Additionally, by creating value-based contracts across a wide variety of health plans, we aim to flip the script on the traditional fee-for-service model. Our work strengthens continuity of care, aligns incentives and ensures primary care physicians are paid for what they do best - keeping patients healthy. If you want to help create a health care system that is good for patients, good for practices and good for society - and if you're eager to join a collaborative, inclusive and remote-first culture - you've come to the right place.
What Does This Mean for You?
At Aledade, you will be part of a creative culture that is driven by a passion for tackling complex issues with respect, open-mindedness and a desire to learn. You will collaborate with team members who bring a wide range of experiences, interests, backgrounds, beliefs and achievements to their work - and who are all united by a shared passion for public health and a commitment to the Aledade mission.
In addition to time off to support work-life balance and enjoyment, we offer the following comprehensive benefits package designed for the overall well-being of our team members:
Flexible work schedules and the ability to work remotely are available for many roles
Health, dental and vision insurance paid up to 80% for employees, dependents and domestic partners
Robust time-off plan (21 days of PTO in your first year)
Two paid volunteer days and 11 paid holidays
12 weeks paid parental leave for all new parents
Six weeks paid sabbatical after six years of service
Educational Assistant Program and Clinical Employee Reimbursement Program
401(k) with up to 4% match
Stock options
And much more!
At Aledade, we don’t just accept differences, we celebrate them! We strive to attract, develop and retain highly qualified individuals representing the diverse communities where we live and work. Aledade is committed to creating a diverse environment and is proud to be an equal opportunity employer. Employment policies and decisions at Aledade are based on merit, qualifications, performance and business needs. All qualified candidates will receive consideration for employment without regard to age, race, color, national origin, gender (including pregnancy, childbirth or medical conditions related to pregnancy or childbirth), gender identity or expression, religion, physical or mental disability, medical condition, legally protected genetic information, marital status, veteran status, or sexual orientation.
Privacy Policy: By applying for this job, you agree to Aledade's Applicant Privacy Policy available at https://www.aledade.com/privacy-policy-applicants
Similar Jobs
ARHS
Brussels, Brussels, Belgium (Remote)
• 8 Months ago
Get notifed when new similar jobs are uploaded
Similar Skill Jobs
Marvell
Santa Clara, California, United States (On-Site)
• 1 Month ago
C3 IoT
United States (On-Site)
• 1 Month ago
Get notifed when new similar jobs are uploaded
Jobs in United States
Lambda
San Francisco, California, United States (Hybrid)
• 2 Months ago
Apple
New York, New York, United States (On-Site)
• 2 Months ago
Scanline VFX
Los Angeles, California, United States (Hybrid)
• 5 Months ago
DevRev
Palo Alto, California, United States (Hybrid)
• 1 Month ago
Riot Games
Los Angeles, California, United States (On-Site)
• 3 Months ago
Nordson Corporation
Arab, Alabama, United States (On-Site)
• 3 Months ago
Pokemon
Bellevue, Washington, United States (Hybrid)
• 1 Month ago
Get notifed when new similar jobs are uploaded
Cyber Security Jobs
Tencent
Shenzhen, Guangdong Province, China (On-Site)
• 2 Months ago
Get notifed when new similar jobs are uploaded
