Inovalon was founded in 1998 on the belief that technology, and data specifically, would empower the transformation of the entire healthcare ecosystem for the better, improving both outcomes and economics. At Inovalon, we believe that when our customers are successful in their missions, healthcare improves. Therefore, we focus on empowering them with data-driven solutions. And the momentum is building.
Together, as ONE Inovalon, we are a united force delivering solutions that address healthcare’s greatest needs. Through our mission-based culture of inclusion and innovation, our organization brings value not just to our customers, but to the millions of patients and members they serve.
The Staff Engineer L6 – IAM & Okta will lead the design, implementation, and modernization of Identity and Access Management (IAM) solutions across enterprise platforms, driving innovation in identity security, authentication, authorization, and access governance. This position serves as a technical leader responsible for architecting scalable and secure identity solutions using Okta and related technologies while ensuring engineering excellence, operational resilience, and compliance with enterprise security standards.
Duties and Responsibilities:- Design, build, and maintain enterprise Identity and Access Management (IAM) solutions using Okta and related identity technologies.
- Architect and implement Single Sign-On (SSO), Multi-Factor Authentication (MFA), Adaptive Authentication, Lifecycle Management, and Identity Governance solutions.
- Research, evaluate, and implement emerging IAM technologies, cloud identity platforms, and Zero Trust security frameworks.
- Design scalable identity architectures supporting hybrid cloud, SaaS, and on-premises applications.
- Document technical designs, implementation plans, security architecture, and operational procedures.
- Develop and maintain integrations using SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), SCIM, LDAP, and REST APIs.
- Build and maintain custom Okta workflows, automation, and provisioning solutions using Okta Workflows, APIs, and scripting.
- Collaborate with security, infrastructure, cloud, DevOps, and application teams to integrate identity services across enterprise environments.
- Drive code reviews, architecture reviews, and security assessments to ensure high-quality IAM implementations.
- Implement Infrastructure as Code (IaC) and CI/CD pipelines for IAM deployments using Terraform, GitHub Actions, Azure DevOps, or Jenkins.
- Troubleshoot complex authentication, authorization, federation, provisioning, and identity synchronization issues.
- Perform root cause analysis for identity-related production incidents and implement preventive measures.
- Monitor IAM platform health, performance, availability, and security posture.
- Provide technical leadership and mentorship to engineers while establishing IAM engineering best practices.
- Communicate effectively with business stakeholders, security architects, compliance teams, and executive leadership.
- Facilitate cross-functional collaboration to align identity initiatives with enterprise security strategies and business objectives.
- Lead cloud identity transformation initiatives and enterprise IAM modernization programs.
- Ensure compliance with security frameworks, regulatory standards, and organizational policies including SOX, HIPAA, PCI-DSS, GDPR, ISO 27001, and NIST.
- Maintain compliance with organizational security policies, procedures, and mission while contributing to operational excellence.
On Call Policy: Participate in an on-call rotation to support critical IAM and authentication services, ensuring timely incident response and resolution in accordance with defined SLAs.
Job Requirements:- Minimum of 15 years of IT experience, including 8+ years of Identity and Access Management (IAM) experience.
- Minimum of 5+ years of hands-on experience with Okta Workforce Identity Cloud in enterprise environments.
- Strong expertise in Single Sign-On (SSO), Multi-Factor Authentication (MFA), Adaptive Authentication, Universal Directory, Lifecycle Management, and Identity Governance.
- Extensive experience implementing authentication protocols including SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), SCIM, LDAP, Kerberos, and WS-Federation.
- Strong programming and scripting experience using Java, Python, PowerShell, JavaScript, or Shell scripting.
- Experience developing REST APIs and integrating enterprise applications with Okta.
- Strong knowledge of Identity Governance and Administration (IGA), Privileged Access Management (PAM), and Role-Based Access Control (RBAC).
- Experience integrating enterprise SaaS applications such as Microsoft 365, Salesforce, ServiceNow, Workday, AWS, Azure, and Google Workspace.
- Hands-on experience with cloud platforms including AWS, Azure, and Google Cloud Platform (GCP).
- Strong understanding of Zero Trust Architecture and modern identity security principles.
- Experience implementing Infrastructure as Code using Terraform and automation frameworks.
- Experience building CI/CD pipelines for IAM deployments.
- Experience working with Active Directory, Azure AD (Microsoft Entra ID), LDAP, and hybrid identity environments.
- Strong understanding of enterprise security concepts including PKI, certificates, cryptography, IAM security architecture, and access controls.
- Experience with monitoring, logging, SIEM integration, and security event management.
- Experience leading large-scale IAM implementations and enterprise identity transformation initiatives.
- Strong troubleshooting and problem-solving skills in complex distributed enterprise environments.
- Experience mentoring engineers and providing technical leadership across cross-functional teams.
- Excellent verbal and written communication skills.
- Strong project planning, stakeholder management, and technical documentation skills.
- Extensive knowledge of enterprise security standards, industry best practices, and compliance frameworks.
- Self-motivated with strong ownership, leadership, and collaborative problem-solving abilities.
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, Software Engineering, or a related technical discipline.
- Master's degree preferred.
- Relevant certifications such as Okta Certified Professional, Okta Certified Administrator, Okta Certified Consultant, CISSP, CCSP, Microsoft Certified: Identity and Access Administrator, or equivalent certifications are highly preferred.
- Sedentary work (i.e., sitting for extended periods of time).
- Subject to standard office or remote working environmental conditions.
- Travel for this position will typically be less than 10%, primarily for training, project meetings, or customer engagements.
This position is not eligible for immigration sponsorship (e.g. H-1B, TN, or E-3). Applicants must be authorized to work in the United States as a condition of employment. (This is only applicable for US-based positions)
If you don’t meet every qualification listed but are excited about our mission and the work described, we encourage you to apply. Inovalon is most interested in finding the best candidate for the job, and you may be just the right person for this or other roles.
By embracing inclusion, we enhance our work environment and drive business success. Inovalon strives to provide equal opportunities to the communities where we operate and to our clients and everyone whom we serve. We endeavor to create a culture of inclusion in which our associates feel empowered to bring their full, authentic selves to work and pursue their professional goals in an equitable setting. We understand that by fostering this type of culture, and welcoming different perspectives, we generate innovation and growth.
Inovalon is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirement.
To review the legal requirements, including all labor law posters, please visit this link
To review the California Consumer Privacy Statement: Disclosures for California Residents, please visit this link
Skills Required
- 15 years of IT experience
- 2 years experience with public cloud (AWS)
- 6 years of strong experience with Big Data frameworks
- Strong programming experience in Python and Java/Scala
- Experience with healthcare data formats including EDI and FHIR
- Experience building CI/CD pipelines in public cloud
- Bachelor's degree in computer science, Software Engineering or IT
Inovalon Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Inovalon and has not been reviewed or approved by Inovalon.
-
Leave & Time Off Breadth — PTO is described as front‑loaded with growth over tenure, alongside an expanded paid‑holiday calendar and a floating holiday. This structure provides a solid baseline of paid time away from work.
-
Retirement Support — A 401(k) with employer match is repeatedly highlighted as a strong element of total rewards. This adds meaningful long‑term value beyond base pay.
-
Wellbeing & Lifestyle Benefits — Hybrid and fully remote options are commonly referenced as a positive, supporting flexibility. This work‑arrangement latitude is often weighed alongside cash compensation.
Inovalon Insights
What We Do
Inovalon is a leading provider of cloud-based platforms empowering data-driven healthcare.
