About the role
<p>InterSystems is a global technology provider focused on high-performance data platforms that power mission-critical applications across healthcare, financial services, and the public sector. As the company continues its transition from primarily on-premises deployments to cloud-based and SaaS-delivered solutions, the Managed Services organization plays a central role in operating, securing, and scaling these environments for customers worldwide.<br><br>Managed Services is responsible for the reliability, security, and compliance of InterSystems-hosted platforms across public cloud, private cloud, and datacenter environments. This includes enabling a consistent, secure operating model that meets stringent regulatory and customer requirements while supporting rapid innovation and service delivery.</p> <h4>Role Summary</h4> <p>The Senior IAM Engineer is responsible for designing, implementing, and operating identity and access management platforms across enterprise and Managed Services environments, with a focus on standardization, scalability, and zero trust security models.</p> <h4>Key Responsibilities</h4> <ul> <li>Design and implement IAM architectures across enterprise and cloud platforms</li> <li>Lead standardization of identity platforms including Microsoft Entra ID, Okta, and Active Directory</li> <li>Implement authentication and authorization solutions using SAML, OAuth2, and OpenID Connect</li> <li>Define and enforce RBAC/ABAC models and access governance processes</li> <li>Integrate IAM solutions with SaaS, cloud, and on-prem applications</li> <li>Implement and manage secrets management solutions (e.g., HashiCorp Vault)</li> <li>Support zero trust initiatives with identity as a control plane</li> <li>Troubleshoot and resolve complex identity and access issues</li> </ul> <h4>Required Qualifications and Experience</h4> <ul> <li>7+ years of experience in IAM or security engineering</li> <li>Deep hands-on experience with Entra ID, Okta, and Active Directory</li> <li>Strong understanding of identity protocols (SAML, OAuth, OIDC, LDAP)</li> <li>Experience with privileged access management and secrets management (e.g., HashiCorp Vault)</li> <li>Experience integrating IAM with cloud platforms and SaaS applications</li> <li>Understanding of zero trust architecture and identity-driven security</li> <li>Experience in regulated environments preferred</li> <li>Relevant certifications encouraged (e.g., Microsoft Identity, Okta Certified, CISSP)</li> </ul> <p>&nbsp;</p> <hr> <p><em>We are an equal-opportunity employer and do not discriminate because of race, color, religion, sex, national origin, ancestry, marital status, veteran stat