Apply now »

Principal IAM Engineer

About Providence

Providence, one of the US’s largest not-for-profit healthcare systems, is committed to high quality, compassionate healthcare for all. Driven by the belief that health is a human right and the vision, ‘Health for a better world’, Providence and its 121,000 caregivers strive to provide everyone access to affordable quality care and services.

Providence has a network of 51 hospitals, 1,000+ care clinics, senior services, supportive housing, and other health and educational services in the US.

Providence India is bringing to fruition the transformational shift of the healthcare ecosystem to Health 2.0. The India center will have focused efforts around healthcare technology and innovation, and play a vital role in driving digital transformation of health systems for improved patient outcomes and experiences, caregiver efficiency, and running the business of Providence at scale.


Why Us?

  • Best In-class Benefits
  • Inclusive Leadership
  • Reimagining Healthcare
  • Competitive Pay
  • Supportive Reporting Relation

Job Description – Principal IAM Engineer (Active Directory & BeyondTrust)

Role Overview
The Principal IAM Engineer is a senior, hands-on technical authority responsible for end-to-end engineering ownership, design decisions, and technical governance of enterprise Identity and Access Management (IAM) platforms, with deep expertise in Active Directory (AD) and BeyondTrust (PAM/EPM).

This role acts as the highest-level technical escalation (L4) for IAM engineering, drives architecture standards, and ensures IAM platforms are secure, scalable, resilient, and audit-ready across on-prem, hybrid, and cloud environments.

Key Responsibilities

Active Directory – Principal Engineering Ownership
• Own architecture, design authority, and technical standards for Active Directory.
• Design and govern AD forest/domain architecture, trust models, OU strategies, and delegation.
• Lead Domain Controller lifecycle management including build, hardening, patching, and health.
• Design and approve Group Policy (GPO) strategies aligned with security and compliance.
• Troubleshoot complex replication, DNS, authentication, and Kerberos issues.
• Lead AD modernization and technical debt reduction initiatives.

BeyondTrust – Privileged Access & Endpoint Privilege Engineering
• Act as technical authority for BeyondTrust PAM / EPM platforms.
• Design least-privilege enforcement and endpoint elevation policies.
• Define enterprise privilege use cases, guardrails, and exception handling.
• Ensure auditability and monitoring of privileged access activities.

Architecture, Standards & Governance
• Define IAM engineering standards, reference architectures, and patterns.
• Review and approve high-risk IAM designs and integrations.
• Align IAM platforms to Zero Trust and identity-centric security models.
• Drive roadmap, upgrades, and continuous improvement initiatives.

Operational Excellence
• Serve as L4 escalation point for complex IAM issues.
• Lead root cause analysis for critical incidents.
• Ensure SOPs, runbooks, and design artifacts are maintained.

Mentorship & Technical Leadership
• Mentor IAM engineers and leads through design and technical reviews.
• Act as trusted advisor to security, infrastructure, and application teams.

Required Skills & Experience
• 12+ years of experience in IAM or security engineering.
• Expert-level hands-on experience with Active Directory.
• Strong expertise in BeyondTrust PAM / EPM.
• Advanced PowerShell scripting skills.
• Experience in large, regulated enterprise environments.

Good to Have
• Experience with Microsoft Entra ID / Azure AD.
• Exposure to SailPoint or other IGA platforms.
• Knowledge of ISO 27001, SOX, HITRUST, or SOC 2 environments.
• Zero Trust architecture familiarity.

Role Level Clarification
• Principal-level individual contributor
• Technical authority role (non-people manager)

Providence’s vision to create ‘Health for a Better World’ aids us to provide a fair and equitable workplace for all in our employment, whether temporary, part-time or full time, and to promote individuality and diversity of thought and background, and acknowledge its role in the organization’s success. This makes us committed towards equal employment opportunities, regardless of race, religion or belief, color, ancestry, disability, marital status, gender, sexual orientation, age, nationality, ethnic origin, pregnancy, or related needs, mental or sensory disability, HIV Status, or any other category protected by applicable law. In furtherance to our mission in building a more inclusive and equitable environment, we shall, from time to time, undertake programs to assist, uplift and empower underrepresented groups including but not limited to Women, PWD (Persons with Disabilities), LGTBQ+ (Lesbian, Gay, Transgender, Bisexual or Queer), Veterans and others. We strive to address all forms of discrimination or harassment and provide a safe and confidential process to report any misconduct.

Contact our Integrity hotline also, read our Code of Conduct.

Apply now »