Manager, Identity and Access Management (IAM)

Included Health is looking for a visionary and experienced Manager to lead our critical Identity and Access Management (IAM) function. You will secure our enterprise, ensuring that every worker has the right access to the right resources, at the right time, and for the right reasons. You will oversee the IAM strategies, policies, and systems that underpin the security and operational integrity of our entire technology landscape.

You will nurture talent, promote a collaborative and growth-oriented team environment, and guide a team of experienced Systems Engineers towards achieving our goals. You will work with leaders across all departments, being a trusted advisor for their technical needs. You have a history of building strong partnerships, having difficult conversations, encouraging growth in a team, and creating achievable roadmaps. You are ready to improve our security posture and overall organizational efficiency.

You will be fully remote and will report to the Sr. Manager, Digital Workplace.

• Develop and implement the IAM strategy and roadmap
• Identify the latest IAM trends and technologies, then determine what will be applied at Included Health
• Manage strategic programs to mature our IAM capabilities
• Lead a high-performing team of IAM Systems Engineers, promoting a culture of continuous learning, accountability, and progress
• Manage team performance, set clear goals, and ensure effective resource allocation to meet project deadlines and operational demands
• Champion team collaboration, knowledge sharing, and best practices within the IAM function and across the Digital Workplace team
• Oversee the daily operations, maintenance, and optimization of all core IAM systems and tools, including our identity provider, Okta, access management solutions, and privileged access management (PAM) systems
• Ensure the stability, availability, and performance of critical IAM infrastructure
• Manage automation projects within IAM processes to improve efficiency, accuracy, and scalability
• Implement robust IAM policies, standards, and procedures, including access control models (e.g., RBAC, ABAC), least privilege principles, and identity lifecycle management
• Oversee critical processes around application management to ensure compliance with internal controls and external regulations (e.g., HIPAA, HITRUST, SOC 2)
• Develop strategies and lead the improvement of app implementation and integrations
• Partner with IT Solutions Architects, Application Owners, IT Systems Engineers, and Departments to understand their needs and propose secure and scalable IAM solutions
• Be an important partner in managing and responding to IAM-related security incidents, performing root cause analysis, and implementing preventative measures
• Find and address IAM risks, vulnerabilities, and potential unauthorized access points
• Be the primary contact for IAM-related inquiries, projects, and escalations across the organization
• Develop and deliver clear, concise communications, presentations, and training programs on IAM policies, best practices, and system usage to all kinds of audiences
• Manage vendor relationships for IAM solutions, including technical evaluations, contract negotiations, and ongoing support

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 8+ years of progressive experience in IT, with at least 5 years of hands-on experience focused on Identity and Access Management.
• 3+ years of direct people management experience leading an IAM Systems Engineering team.
• Experience with IAM principles, concepts, and best practices
• Extensive hands-on experience with Okta.
• Extensive experience with Cloud Identity Management, specifically within Google Cloud Platform (GCP) and Amazon Web Services (AWS) environments.
• Proven experience with RBAC and PAM implementation and governance.
• Familiarity with security and compliance frameworks (e.g., NIST, ISO 27001, HIPAA, SOC 2).
• Strong familiarity with Infrastructure as Code (IaC) principles and hands-on experience with Terraform.
• Coaching and team development skills, with a proven ability to motivate and guide technical professionals.
• Experience writing documentation, proposals, notifications, policies and messages to diverse audiences, including senior leadership, with a high rate of understanding.
• Experience building strong relationships and working with other departments, promoting collaboration and understanding.
• Experience managing multiple work streams and keeping them all on course, while maintaining task tracking and informing tools.
• High degree of integrity and a strong commitment to security best practices.

• Prompt and regular attendance at assigned work location.
• Capability to remain seated in a stationary position for prolonged periods.

Pay:

The United States new hire base salary target ranges for this full-time position are:

Zone A: $128,130 - $180,990 + equity + benefits

Zone B: $140,943 - $199,089 + equity + benefits

Zone C: $153,756 - $217,188 + equity + benefits

Zone D: $166,569 - $235,287 + equity + benefits

This range reflects the minimum and maximum target for new hire salaries for candidates based on their respective Zone. Below is additional information on Included Health's commitment to maintaining transparent and equitable compensation practices across our distinct geographic zones.

Starting base salary for you will depend on several job-related factors, unique to each candidate, which may include education; training; skills; years and depth of experience; certifications and licensure; our needs; internal peer equity; organizational considerations; and understanding of geographic and market data. Compensation structures and ranges are tailored to each zone's unique market conditions to ensure that all employees receive fair and great compensation package based on their roles and locations. Your Recruiter can share your geographic zone upon inquiry.

Benefits & Perks:

In addition to receiving a great compensation package, the compensation package may include, depending on the role, the following and more:

Remote-first culture

401(k) savings plan through Fidelity

Comprehensive medical, vision, and dental coverage through multiple medical plan options (including disability insurance)

Paid Time Off ("PTO") and Discretionary Time Off ("DTO")

12 weeks of 100% Paid Parental leave

Family Building & Compassionate Leave: Fertility coverage, $25,000 for surrogacy/adoption, and paid leave for failed treatments, adoption or pregnancies

Work-From-Home reimbursement to support team collaboration home office work

Your recruiter will share more about the salary range and benefits package for your role during the hiring process.

About Included Health

Included Health is a new kind of healthcare company, delivering integrated virtual care and navigation. We’re on a mission to raise the standard of healthcare for everyone. We break down barriers to provide high-quality care for every person in every community — no matter where they are in their health journey or what type of care they need, from acute to chronic, behavioral to physical. We offer our members care guidance, advocacy, and access to personalized virtual and in-person care for everyday and urgent care, primary care, behavioral health, and specialty care. It’s all included. Learn more at includedhealth.com.

-----

Included Health is an Equal Opportunity Employer and considers applicants for employment without regard to race, color, religion, sex, orientation, national origin, age, disability, genetics or any other basis forbidden under federal, state, or local law. Included Health considers all qualified applicants with arrest or conviction records in accordance with the San Francisco Fair Chance Ordinance, the Los Angeles County Fair Chance Ordinance, and California law.