Advisor Identity & Access Management (IAM) Engineer

Summary

As Advisor Identity & Access Management (IAM) Engineer at Gainwell, you can contribute your skills as we harness the power of technology to help our clients improve the health and well-being of the members they serve — a community’s most vulnerable. Connect your passion with purpose, teaming with people who thrive on finding innovative solutions to some of healthcare’s biggest challenges. Here are the details on this position.

Your role in our mission

Discover career satisfaction by design in this challenging position, where you will:

• Develop, implement, and maintain identity and access management solutions and systems.
• Troubleshoot, identify, and resolve technical identity and access management related issues.
• Improve identity and access management solutions and systems for protection against evolving threats and efficiency.
• Coach other members of the organization on the best practices that should be followed in identity and access management.
• Stay up-to-date on current IAM threats and industry solutions.
• Strong analytical and troubleshooting skills to resolve IAM-related issues.
• Ability to work across teams and effectively communicate technical concepts to both technical and non-technical stakeholders.

What we're looking for

10+ years of experience in IT, Information Security and Identity & Access Management (IAM) Engineering with advanced skills in Okta, ForgeRock, and Ping Identity. Requires a broad and versatile skill set to effectively handle these platforms:    

• Proficiency in implementing and managing Okta (SSO, MFA, Workflows), ForgeRock (OpenAM, OpenIDM, OpenDJ, OpenIG), and Ping Identity (PingFederate, PingAccess, PingDirectory).
• Strong knowledge of authentication protocols like OAuth, SAML, OpenID Connect, and Kerberos for secure user authentication and authorization.
• Programming and scripting with Java, Python, JavaScript, Groovy, and PowerShell for automations, customizations, and integrations.
• Hands-on experience integrating IAM platforms with AWS cloud, on-premises systems, and SaaS applications.
• Familiarity with RESTful APIs for extending functionalities across the platforms.
• Understanding of identity federation principles to connect and secure users across different domains or organizations.
• Security Protocols: Expertise in SSL/TLS, PKI, and encryption standards.
• Knowledge of regulations like GDPR, HIPAA, and SOC2 to ensure IAM systems meet compliance requirements.
• Familiarity with managing identities in hybrid and cloud environments.
• DevOps Tools: Jenkins, Kubernetes, Docker, and Terraform for deployments and automation.

Certifications in one of the platforms:  Okta Certified Professional, ForgeRock Identity Management Specialist, and Ping Identity Certified Professional

What you should expect in this role

• HYRBRID ROLE:  Applicants who live in the Sacramento/Roseville, CA area will be required to be in the office 2-3 days per week.  Applicants who do not live within a commutable distance in CA, or live out of state in the USA, will work remotely 100%.
• Willingness to work a flexible schedule to accommodate business needs and travel as required
• Video cameras must be used during all interviews, as well as during the initial week of orientation

#LI-SH1  
#LI-REMOTE 

The deadline to submit applications for this posting is February 27, 2026