Senior Active Directory / IAM Engineer - Remote
Auto ImportShare
<p style="font-family:Arial;">Join the transformative team at <a href="https://www.cityofhope.org/about-city-of-hope" target="_blank" rel="noopener">City of Hope</a>, where we're changing lives and making a real difference in the fight against cancer, diabetes, and other life-threatening illnesses. City of Hope’s growing national system includes its Los Angeles campus, a network of clinical care locations across Southern California, a new cancer center in Orange County, California, and treatment facilities in Atlanta, Chicago and Phoenix. our dedicated and compassionate employees are driven by a common mission: To deliver the cures of tomorrow to the people who need them today. </p><p class="MsoNormal" style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:0px="" 0px="" 12px;orphans:2;text-align:center;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><span style="font-family:arial, helvetica, sans-serif;"><span><strong>** This is a Fully Remote Opportunity within the United States**</strong></span></span></p><p class="MsoNormal" style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;line-height:normal;margin:0px="" 0px="" 0in;orphans:2;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><span style="font-family:arial, helvetica, sans-serif;"><strong>As a successful candidate, you will:</strong></span></p><p class="MsoNormal" style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:0px="" 0px="" 12px;orphans:2;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><span style="font-family:arial, helvetica, sans-serif;">City of Hope is seeking an experienced and strategic-minded Senior Identity and Access Management / Active Director Engineer to join our Information Technology team. This individual will lead the design, implementation, and ongoing management of our hybrid identity infrastructure—including on-premises Active Directory and Entra ID (formerly Azure AD)—to ensure secure, efficient, and scalable access to enterprise systems.</span></p><p class="MsoNormal" style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:0px="" 0px="" 12px;orphans:2;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><span style="font-family:arial, helvetica, sans-serif;">The Senior IAM / Active Directory Engineer will collaborate with cross-functional teams and regularly present technical strategies, risks, and performance metrics to executive leadership. This position plays a critical role in advancing City of Hope’s security posture through innovation, standardization, and continuous improvement in identity and access management practices.</span></p><p class="MsoNormal" style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;line-height:normal;margin:0in="" 0in="" 0.25in;orphans:2;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><span style="font-family:arial, helvetica, sans-serif;">IAM Solution Design and Implementation:</span></p><ul style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:12px="" 0px;orphans:2;padding:revert;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><li class="MsoNormal" style="line-height:normal;"><span style="font-family:arial, helvetica, sans-serif;">Design, implement, and maintain IAM solutions to manage user identities, access privileges, and authentication mechanisms.</span></li><li class="MsoNormal" style="line-height:normal;"><span style="font-family:arial, helvetica, sans-serif;">Collaborate with stakeholders to gather requirements and ensure that IAM solutions align with business needs.</span></li></ul><p class="MsoNormal" style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;line-height:normal;margin:0in="" 0in="" 0.25in;orphans:2;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><span style="font-family:arial, helvetica, sans-serif;">System Integration and Optimization:</span></p><ul style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:12px="" 0px;orphans:2;padding:revert;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><li class="MsoNormal" style="line-height:normal;"><span style="font-family:arial, helvetica, sans-serif;">Integrate IAM solutions with existing systems, applications, and directory services.</span></li><li class="MsoNormal" style="line-height:normal;"><span style="font-family:arial, helvetica, sans-serif;">Optimize IAM workflows and processes to enhance efficiency and user experience.</span></li></ul><p class="MsoNormal" style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;line-height:normal;margin:0in="" 0in="" 0.25in;orphans:2;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><span style="font-family:arial, helvetica, sans-serif;">Access Control and Authorization:</span></p><ul style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:12px="" 0px;orphans:2;padding:revert;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><li class="MsoNormal" style="line-height:normal;"><span style="font-family:arial, helvetica, sans-serif;">Implement and manage role-based access controls (RBAC) to ensure that users have appropriate access permissions.</span></li><li class="MsoNormal" style="line-height:normal;"><span style="font-family:arial, helvetica, sans-serif;">Conduct regular access reviews and audits to maintain a secure access environment.</span></li></ul><p class="MsoNormal" style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;line-height:normal;margin:0in="" 0in="" 0.25in;orphans:2;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><span style="font-family:arial, helvetica, sans-serif;">Authentication and Federation:</span></p><ul style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:12px="" 0px;orphans:2;padding:revert;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><li class="MsoNormal" style="line-height:normal;"><span style="font-family:arial, helvetica, sans-serif;">Evaluate, implement, and manage authentication mechanisms, including multi-factor authentication (MFA).</span></li><li class="MsoNormal" style="line-height:normal;"><span style="font-family:arial, helvetica, sans-serif;">Implement and maintain identity federation solutions for seamless and secure access across systems.</span></li></ul><p class="MsoNormal" style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;line-height:normal;margin:0in="" 0in="" 0.25in;orphans:2;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><span style="font-family:arial, helvetica, sans-serif;">Incident Response and Troubleshooting:</span></p><ul style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:12px="" 0px;orphans:2;padding:revert;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><li class="MsoNormal" style="line-height:normal;"><span style="font-family:arial, helvetica, sans-serif;">Participate in incident response activities related to IAM, investigating and resolving security incidents.</span></li><li class="MsoNormal" style="line-height:normal;"><span style="font-family:arial, helvetica, sans-serif;">Troubleshoot and resolve IAM-related issues in a timely manner.</span></li></ul><p class="MsoNormal" style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:0px="" 0px="" 12px;orphans:2;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""> </p><ul style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:12px="" 0px;orphans:2;padding:revert;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><li class="MsoNormal" style="line-height:normal;"><span style="background-color:white;color:black;font-family:arial, helvetica, sans-serif;">Lead the administration, maintenance, and optimization of Microsoft Active Directory, including Group Policy Objects (GPOs), OU structures, trusts, and replication.</span></li><li class="MsoNormal" style="line-height:normal;"><span style="background-color:white;color:black;font-family:arial, helvetica, sans-serif;">Design, implement, and manage hybrid identity solutions between on-prem Active Directory and Entra ID (Azure AD).</span></li><li class="MsoNormal" style="line-height:normal;"><span style="background-color:white;color:black;font-family:arial, helvetica, sans-serif;">Maintain and enhance identity lifecycle processes (provisioning, deprovisioning, role-based access control) for both cloud and on-prem environments.</span></li><li class="MsoNormal" style="line-height:normal;"><span style="background-color:white;color:black;font-family:arial, helvetica, sans-serif;">Manage synchronization and federation services such as Azure AD Connect, ADFS, or Entra Connect Cloud Sync.</span></li><li class="MsoNormal" style="line-height:normal;"><span style="background-color:white;color:black;font-family:arial, helvetica, sans-serif;">Enforce identity governance policies including conditional access, MFA, and privileged access management in Entra ID.</span></li><li class="MsoNormal" style="line-height:normal;"><span style="background-color:white;color:black;font-family:arial, helvetica, sans-serif;">Monitor and troubleshoot authentication and authorization issues across Active Directory and Entra services.</span></li><li class="MsoNormal" style="line-height:normal;"><span style="background-color:white;color:black;font-family:arial, helvetica, sans-serif;">Develop and maintain automation scripts (e.g., PowerShell) to support IAM tasks and improve operational efficiency.</span></li><li class="MsoNormal" style="line-height:normal;"><span style="background-color:white;color:black;font-family:arial, helvetica, sans-serif;">Support audits and ensure compliance with security standards such as NIST, HIPAA, or ISO 27001 by maintaining clean identity records and access logs.</span></li><li class="MsoNormal" style="line-height:normal;"><span style="background-color:white;color:black;font-family:arial, helvetica, sans-serif;">Partner with cybersecurity, infrastructure, and application teams to integrate IAM services with enterprise platforms.</span></li></ul><br><br><p style="font-family:Arial;"><strong>Your qualifications should include: </strong></p><ul style="-webkit-text-stroke-width:0px;background-color:rgb(255, 255, 255);color:rgb(0, 0, 0);font-family:" open="" sans",="" "segoe="" ui",="" frutiger,="" "frutiger="" linotype",="" "dejavu="" "helvetica="" neue",="" arial,="" sans-serif;font-size:13.02px;font-style:normal;font-variant-caps:normal;font-variant-ligatures:normal;font-weight:400;letter-spacing:normal;margin:12px="" 0px;orphans:2;padding:revert;text-align:start;text-decoration-color:initial;text-decoration-style:initial;text-decoration-thickness:initial;text-indent:0px;text-transform:none;white-space:normal;widows:2;word-spacing:0px;"=""><li class="MsoListParagraphCxSpFirst" style="line-height:normal;"><span style="background-color:white;color:black;font-family:arial, helvetica, sans-serif;font-size:14px;">Bachelor’s degree in related field; 4 additional years of experience plus the minimum experience requirement may substitute for minimum education</span></li><li class="MsoListParagraphCxSpMiddle" style="line-height:normal;"><span style="background-color:white;color:black;font-family:arial, helvetica, sans-serif;font-size:14px;">Seven or more years in a technology related field, with a minimum of 5 years in Identity and Access Management specific experience.<span> </span>Hospital/healthcare industry experience is desirable, but not required.</span></li><li class="MsoListParagraphCxSpMiddle" style="line-height:normal;"><span style="background-color:white;color:black;font-family:arial, helvetica, sans-serif;font-size:14px;">Working knowledge of Information Security tools, practices, policies and processes in a multi-vendor environment with an emphasis on risk analysis, risk assessment and risk management.</span></li><li class="MsoListParagraphCxSpLast" style="line-height:normal;"><span style="background-color:white;color:black;font-family:arial, helvetica, sans-serif;font-size:14px;">Management/Computer Information Systems (MIS/CIS), Computer/Electrical Engineering, Computer Science or related field</span></li></ul><p style="font-family:Arial;"><strong>City of Hope employees pay is based on the following criteria: work experience, qualifications, and work location.</strong></p><p style="font-family:Arial;"><strong>City of Hope is an equal opportunity employer. To learn more about our commitment to diversity, equity, and inclusion, please </strong><a href="https://www.cityofhope.org/careers/diversity-equity-inclusion" target="_blank" rel="noopener"><strong>click here</strong></a><strong>.</strong></p><p style="font-family:Arial;"><span style="color:#236fa1;"><strong>To learn more about our Comprehensive Benefits, please</strong></span><strong> </strong><a href="https://www.cityofhope.org/careers/wellness-and-benefits/benefits" target="_blank" rel="noopener"><strong>CLICK HERE</strong></a><strong>.</strong></p>