Access Control, Application Integration, Application Programming Interface (API), Artificial Intelligence (AI), Artificial Intelligence (AI) Agents, Authentication, Automation, Cloud Applications, Cloud Computing, Computer Science, Continuous Deployment/Delivery, Continuous Improvement, Continuous Integration, DevOps, Documentation, Ecosystems, Enterprise Applications, Enterprise Architecture, Equipment Maintenance/Repair, HIPAA (Health Insurance Portability and Accountability Act), Healthcare, Human Resources Software, Hybrid Cloud, Identity Data Management, Identity Federation, Information Technology & Information Systems, Internet Security, Just in Time (JIT), Leadership, Machine Learning, Metrics, OAuth, Onboarding, OpenID, Operational Audit, Operational Improvement, Operational Strategy, People Management, REST (Representational State Transfer), Regulatory Compliance Software, Reliability Engineering, Risk, Risk Management, Sarbanes-Oxley Act (SOX), Scalable System Development, Scripting (Scripting Languages), Security Assertion Markup Language (SAML), Security Infrastructure, Service Delivery, Single Sign-On (SSO), Software Development Lifecycle (SDLC), Software Engineering, Software as a Service (SaaS), Technical Strategy, Technical/Engineering Design, Test Automation, U.S. National Institute of Standards and Technology (NIST), Validation Testing
Your Role
The Identity and Access Management team is responsible for designing, engineering, and operating enterprise identity services that enable secure, scalable, and seamless access across Stellarus' technology ecosystem. The team drives Identity Lifecycle Management, Identity Governance, Privileged Access Management, authentication, authorization, automation, and Zero Trust capabilities while partnering across the enterprise to support digital transformation, regulatory compliance, secure software delivery, and responsible AI adoption.
The Senior Manager, Identity Platform Engineering will report to the Sr. Director, Identity & Access Management. In this role, you will help shape the future of Stellarus' identity platform by engineering secure, automated, and scalable IAM capabilities that support hybrid cloud, SaaS, on-premises, application, privileged, service, machine, and AI-enabled access patterns.
You will partner with teams to integrate identity into modern software delivery practices, accelerate automation through DevOps and AI, and deliver programmatic identity services that can be consumed by development teams through self-service, least-privileged, time-bound, and policy-governed patterns.
Our leadership model is about developing great leaders at all levels and creating opportunities for our people to grow personally, professionally, and financially. We are looking for leaders who are energized by creative and critical thinking, building and sustaining high-performing teams, getting results the right way, and fostering continuous learning.
Your Knowledge and Experience
- Bachelor's degree in Computer Science, Information Systems, Cybersecurity, Engineering, or equivalent combination of education and experience.
- A minimum of 8 years of experience designing, implementing, and supporting enterprise Identity and Access Management solutions.
- 4 years of prior people management experience with direct responsibility for supervising, coaching, and evaluating direct reports
- Experience leading IAM, security engineering, platform engineering, cloud, infrastructure, or related technical teams.
- Strong understanding of Identity Lifecycle Management, Joiner/Mover/Leaver processes, Identity Governance, and Privileged Access Management within complex hybrid cloud, SaaS, and on-premises environments.
- Deep understanding of Role-Based Access Control, Attribute-Based Access Control, policy-based access control, Just-in-Time, just-enough, time-bound, and Least Privilege security models.
- Strong knowledge of authentication and authorization frameworks, including Single Sign-On, Multi-Factor Authentication, SAML, OAuth 2.0, OpenID Connect, SCIM, and modern identity federation technologies across enterprise and consumer ecosystems.
- Experience implementing and supporting enterprise identity governance, access management, directory, privileged access, cloud identity, HR, and application integration platforms.
- Experience delivering identity as a platform capability, including self-service, API-driven, and developer-consumable IAM services for application, cloud, platform, and security engineering teams.
- Experience developing automation using scripting languages, REST APIs, workflow automation, or similar programming approaches.
- Experience implementing DevOps or platform engineering practices, including CI/CD, Infrastructure as Code, configuration-as-code, policy-as-code, automated testing, automated deployment, observability, and operational reliability.
- Strong understanding of cloud identity and access patterns, including workload identity, service identities, managed identities, secrets management, key management, privileged access controls, and machine-to-machine access.
- Experience integrating IAM capabilities into enterprise applications, cloud services, SaaS platforms, infrastructure platforms, and modern software development lifecycles.
- Experience applying identity controls to AI-enabled systems, including AI agents, copilots, intelligent automation, machine identities, data access workflows, human-in-the-loop approvals, audit logging, and least-privilege access to sensitive enterprise data.
- Experience leveraging AI-assisted development, intelligent automation, or machine learning technologies to improve operational efficiency, accelerate identity engineering, enhance access governance, or improve risk detection.
Hybrid
This role requires employees to be in-office based on our hybrid workplace model, balancing purposeful in-person collaboration with flexibility. For most teams, this means coming into the office two days each week.
Employees living more than 50 miles from an office location will work with their manager to determine in-office time based on business need.
Your Work
In this role, you will:
- Design, implement, and continuously improve enterprise Identity and Access Management capabilities across hybrid cloud, SaaS, on-premises, application, privileged, service, machine, and AI-enabled access patterns.
- Lead the engineering, automation, and modernization of Identity Lifecycle Management, Identity Governance, Privileged Access Management, authentication, authorization, federation, and access governance capabilities.
- Contribute to enterprise IAM architecture, engineering standards, platform roadmaps, service reliability practices, operational metrics, risk reduction plans, and measurable outcomes that support Stellarus' technology strategy.
- Deliver IAM as a reusable, API-driven, developer-consumable platform that enables secure self-service application onboarding, entitlement workflows, access request automation, standardized integration patterns, reference architectures, and developer documentation.
- Develop and maintain scalable identity services using Infrastructure as Code, configuration-as-code, DevOps practices, CI/CD pipelines, APIs, workflow orchestration, automated testing, policy validation, and automation frameworks to accelerate delivery and improve reliability.
- Partner with teams to embed identity into enterprise platforms, cloud environments, software delivery pipelines, AI-enabled workflows, and modern application architectures.
- Design and implement Role-Based Access Control, Attribute-Based Access Control, policy-based access control, Just-in-Time, just-enough, time-bound, ephemeral, and Least Privilege access models that reduce standing privilege while simplifying access administration.
- Advance privileged access modernization and access governance through automated approval workflows, time-bound elevation, break-glass controls, credential rotation, session monitoring, access expiration, entitlement management, access certification, analytics, and risk-based privilege management.
- Engineer integrations across identity governance, access management, privileged access, directory, cloud, HR, data, AI, and enterprise application platforms to support automated provisioning, deprovisioning, authentication, authorization, federation, policy enforcement, and machine-to-machine access.
- Define secure identity and access patterns for AI-enabled systems, including AI agents, copilots, intelligent automation, autonomous workflows, machine identities, data access workflows, and applications requiring controlled access to enterprise or healthcare data.
- Leverage AI, machine learning, and intelligent automation to improve identity operations, entitlement analysis, access reviews, anomaly detection, governance, audit readiness, operational insights, developer support, engineering productivity, and compliance with HIPAA, SOX, HITRUST, NIST, audit requirements, and Zero Trust principles.
Your Work
In this role, you will:
- Design, implement, and continuously improve enterprise Identity and Access Management capabilities across hybrid cloud, SaaS, on-premises, application, privileged, service, machine, and AI-enabled access patterns.
- Lead the engineering, automation, and modernization of Identity Lifecycle Management, Identity Governance, Privileged Access Management, authentication, authorization, federation, and access governance capabilities.
- Contribute to enterprise IAM architecture, engineering standards, platform roadmaps, service reliability practices, operational metrics, risk reduction plans, and measurable outcomes that support Stellarus' technology strategy.
- Deliver IAM as a reusable, API-driven, developer-consumable platform that enables secure self-service application onboarding, entitlement workflows, access request automation, standardized integration patterns, reference architectures, and developer documentation.
- Develop and maintain scalable identity services using Infrastructure as Code, configuration-as-code, DevOps practices, CI/CD pipelines, APIs, workflow orchestration, automated testing, policy validation, and automation frameworks to accelerate delivery and improve reliability.
- Partner with teams to embed identity into enterprise platforms, cloud environments, software delivery pipelines, AI-enabled workflows, and modern application architectures.
- Design and implement Role-Based Access Control, Attribute-Based Access Control, policy-based access control, Just-in-Time, just-enough, time-bound, ephemeral, and Least Privilege access models that reduce standing privilege while simplifying access administration.
- Advance privileged access modernization and access governance through automated approval workflows, time-bound elevation, break-glass controls, credential rotation, session monitoring, access expiration, entitlement management, access certification, analytics, and risk-based privilege management.
- Engineer integrations across identity governance, access management, privileged access, directory, cloud, HR, data, AI, and enterprise application platforms to support automated provisioning, deprovisioning, authentication, authorization, federation, policy enforcement, and machine-to-machine access.
- Define secure identity and access patterns for AI-enabled systems, including AI agents, copilots, intelligent automation, autonomous workflows, machine identities, data access workflows, and applications requiring controlled access to enterprise or healthcare data.
- Leverage AI, machine learning, and intelligent automation to improve identity operations, entitlement analysis, access reviews, anomaly detection, governance, audit readiness, operational insights, developer support, engineering productivity, and compliance with HIPAA, SOX, HITRUST, NIST, audit requirements, and Zero Trust principles.
B
Blue Cross and Blue Shield Association
At the Blue Cross and Blue Shield Association (BCBSA), we provide business strategy, technical support and consulting expertise to 36 Blue Cross and Blue Shield companies across the nation, employing more than 1,000 of the best strategic thinkers in the industry. We are a Brand manager that sets quality control standards for the 36 independent companies that use the Blue Cross and Blue Shield Brands, and we serve as a trade association that represents these Blue companies. It is through our involvement that the Blues companies share a united vision and strategy while also benefiting from the local strength of all member companies.
2,000 to 2,499 employees
https://www.bcbs.com/about-us/careers