Blue Shield of California’s mission is to ensure all Californians have access to high-quality health care at a sustainably affordable price. We are transforming health care in a way that truly serves our nonprofit mission by lowering costs, improving quality, and enhancing the member and physician experience.

To fulfill our mission, we must ensure a diverse, equitable, and inclusive environment where all employees can be their authentic selves and fully contribute to meet the needs of the multifaceted communities we serve. Our comprehensive approach to diversity, equity, and inclusion combines a focus on our people, processes, and systems with a deep commitment to promoting social justice and health equity through our products, business practices, and presence as a corporate citizen.

Blue Shield has received awards and recognition for being a certified Great Place to Work, best place to work for LGBTQ equality, leading disability employer, one of the best companies for women to advance, Bay Area’s top companies in volunteering & giving, and one of the world’s most ethical companies. Here at Blue Shield of California, we are striving to make a positive change across our industry and the communities we live in – join us!

Your Role

The Cloud IAM Engineer is critical to the success of Blue Shield of California in realizing its goals and objectives while embracing the DevOps and Agile mantra People > Process > Tools. This individual will play a key role as part of the Identity Engineering team in defining and accelerating the strategy, roadmap, implementation and support of cloud based IAM processes and tools.

Your Work

In this role, you will:

Play a key role in the design, build and operationally excellent security capabilities that enable the secure and compliant delivery of IT and business services in a hybrid multi-cloud environment
Operate as the subject matter expert in cloud based Directory and Identity solutions
Collaborate with other IT and Security practitioners to assess current identities capabilities against cloud native capabilities. Benchmark and document the benefit and/or challenges associated with leveraging one over the other
Participates and represent Identity Engineering within the organization at architectural, design, engineering engagements, and project efforts
Automate identity and access management processes and tooling to allow for rapid, secure and compliant cloud deployments
Establish and build programmatic guardrails that ensure adequate and appropriate governance and establish metrics and KPI’s that measure the continued effectiveness and performance of identity and access capabilities
Engage in Incident Response, Audit, and Disaster Recovery practices. Directs remediation work as required internally
Lead proof-of-concept and prototyping efforts in both an infrastructure design and engineering capacity – collects, analyzes, and documents results; produces summaries and recommendation
Document design decisions, flows, techniques, operational playbooks and other relevant items as needed to support easy and consistent consumption and support of identity and access capabilities
Design and develop an identity capabilities framework that allows for cloud services and technologies to consume

Your Knowledge and Experience

Requires a bachelor’s degree, master’s degree or equivalent experience, and minimum 10 years of prior relevant experience
Requires experience in IT security, Identity and Access Management
Requires experience working with production public cloud platforms like Azure, GCP and AWS
Requires knowledge of modern Authentication methods, standards and protocols such as Single Sign On SAML, Oauth, OpenID, Kerberos, LDAP, FIDO2, PIV, and other relevant mechanisms
Requires proficiency with technologies relating to the management of identities and certificates such as ADFS, Ping Identity (and other Federation technologies), PKI, and Identity and Access management products such as SailPoint, Okta, or other relevant systems
Basic familiarity with the principles of design thinking, and lean and agile software delivery is preferred
Knowledge of healthcare industry and industry related technology is preferred but not required
Excellent communication skills (written and verbal)
Strong problem-solving ability and analytical skills
Strong business acumen and a commitment to integrity, process improvement and customer satisfaction
Fundamental working knowledge of industry-standard security frameworks (e.g. NIST CSF, HIPAA, PCI-DSS, etc.)
Our Values

Honest. We hold ourselves to the highest ethical and integrity standards. We build trust by doing what we say we’re going to do and by acknowledging and correcting where we fall short
Human. We strive to be our authentic selves, listening and communicating effectively, and showing empathy towards others by walking in their shoes
Courageous. We stand up for what we believe in and are committed to the hard work necessary to achieve our ambitious goals