IT Security Engineer II - Identity and Access Management

Endeavor Health

Hybrid Verified listing
Skokie, IL Posted 11 days ago
View original post Log in to save

At a glance

AI generated

TL;DR

As the IT Security Engineer II specializing in Identity Access and Management at Endeavor Health, you will serve as a senior technical resource responsible for designing, implementing, and supporting IAM solutions to ensure secure access to healthcare systems and data. Your daily tasks include leading the configuration of IAM solutions, managing role-based and attribute-based access controls, enforcing multi-factor authentication, and developing integrations between IAM platforms and EHR systems. You will also mentor junior staff, participate in security incident response, and lead complex IAM projects while ensuring compliance with HIPAA, HITRUST, NIST, and other healthcare regulations. Proficiency in programming/scripting languages, strong understanding of modern authentication protocols like SAML and OAuth, and expertise in RBAC/ABAC governance are essential, as is experience with healthcare-specific applications such as EPIC.

Skills

IAM HIPAA HITRUST NIST SAML OAuth OpenID LDAP RBAC ABAC Epic ActiveDirectory Python Terraform Kubernetes AWS Azure CI/CD MFA SSO

What you'll do

  • Lead the configuration, integration, and management of IAM solutions across the organization.
  • Design role-based and attribute-based access controls for automation and regulatory compliance.
  • Manage access certification campaigns to ensure entitlements meet healthcare regulations.
  • Implement privileged access controls using Delinea or MS Entra PIM for secure admin accounts.
  • Develop scripts and APIs to streamline user lifecycle management in IAM systems.
  • Ensure IAM systems comply with HIPAA, HITRUST, NIST CSF, and other healthcare standards.
  • Serve as a technical mentor for junior IAM engineers and analysts.

What we're looking for

  • Minimum three years of mid-level cybersecurity experience at an analyst or engineer level.
  • Expertise in HIPAA, HITRUST, and NIST security controls.
  • Strong understanding of modern authentication protocols (SAML, OAuth, OpenID Connect).
  • Deep knowledge of RBAC/ABAC design and governance in healthcare settings.
  • Experience with ADUC active directory users and computers.
  • Ability to lead complex IAM projects and mentor junior staff.
  • Proficiency in scripting languages and API development for IAM solutions.

Market check

Salary context

This listing doesn't show a salary. Similar roles on FindRole typically pay $113,400–$198,000.

Peer median band

$113,400$198,000

Median floor and ceiling across peers.

Typical midpoint (25–75%)

$142,287$184,912

Middle half of comparable postings.

Based on 240 comparable postings.

* 240 is the maximum number of comparable postings sampled.

Employer

About Endeavor Health

At Endeavor Health, we believe every role plays an important part in advancing our mission to help everyone in our communities be their best.

Endeavor Health currently has 3 open roles on FindRole.

Most-posted roles

View all roles at Endeavor Health

More like this

Similar roles

Principal Information Security Engineer, Identity Security Engineering

JLL (Jones Lang LaSalle)

Remote (Home Office - Texas - Houston Metro, US) 11 days ago $270,000$300,000
Okta CyberArk Active Directory M365 ISO NIST ATT&CK CIAM Zero Trust Privileged Access Management Identity Security Cloud Services SaaS On-premises Appliances Security Policy Compliance Network Security Application Development Teams Security Frameworks
Remote

Senior Engineer, Identity and Access Management

GEICO

Remote (Md Bethesda Office, US) 105 days ago $105,000$215,000
Sailpoint Okta AWS Azure ActiveDirectory Kerberos LDAP SAML OAuth OIDC ServiceNow Workday Oracle Java Go Python PowerShell Perl Bash DevOps CI/CD IdentityGovernance AccessManagement
Remote

Information Systems Security Engineer

Booz Allen Hamilton

Locations Warner Robins, Georgia, US 10 days ago $99,000$225,000
RMF ATO ACAS STIGs Firewalls IDS/IPS SIEM DoD directives DevSecOps AWS Agile Linux UNIX Ubuntu Red Hat CI/CD

Senior Cybersecurity Engineer – Identity Platform and Access Management

Nvidia

Us, Ca, Santa Clara, US 39 days ago $196,000$310,500
OAuth OIDC SAML Zero Trust Conditional Access Privileged Identity Management Risk-based Authentication Device Attestation Federated Identity Token-Based Protocols High Availability Low Latency Centralized Auth CLI Authentication Browser Authentication Agentic Workflows Service-to-Service Identity Managed Device Trust Human and Non-Human Identities Auth Libraries SDKs

Identity Provider Operations Engineer

Booz Allen Hamilton

US 17 days ago $86,800$198,000
PingFederate Okta Entra ID SAML 2.0 OAuth 2.0 OpenID Connect Java JavaScript Python PowerShell Groovy RESTful APIs Active Directory LDAP Zero Trust MFA password-less authentication SCIM DevOps CI/CD NIST FedRAMP HIPAA AWS Cognito Azure AD B2C Google Cloud Identity