Senior Engineer, System

POSITION SUMMARY:

The Senior Systems Engineer designs, builds, maintains, and optimizes enterprise Identity and Access Management (IAM) platforms, services, and processes to ensure secure, reliable, and scalable access across the organization. This role is responsible for the performance, availability, security, and continual improvement of multiple identity-related systems that support Company-wide workforce, application, and infrastructure access.

Essential Functions:
- Act as subject matter expert (SME) for multiple Identity and Access Management systems, tools, and processes, providing technical leadership, standardization, and best practices across Lifepoint Health and acquired entities.
- Build, design, and optimize identity platforms and integrations (e.g., directory services, identity providers, authentication, authorization, federation, lifecycle automation) aligned to Health Information & Technology Services (HITS) strategic objectives.
- Develop, document, and maintain identity workflows and methodologies supporting user lifecycle management, privileged access, authentication, and access governance.
- Implement automation and integration solutions to improve operational efficiency, reduce manual effort, and enhance security posture.
- Serve as Level 3 escalation for complex identity-related incidents, performing root cause analysis, remediation, and preventative improvements.
- Partner closely with Security, Infrastructure, Application, and Business teams to ensure identity solutions meet operational, security, and compliance requirements.
- Serve as the primary technical point of contact for strategic IAM vendors, ensuring vendor accountability, service quality, and alignment to business objectives.

- Identify, assess, and communicate risks associated with identity systems and access models; provide guidance and recommendations to leadership

- Regular and reliable attendance.
- Perform other duties as assigned.

ADDITIONAL INFORMATION: 
- Position serves both internal co-workers and external customers, clients, patients, contractors, and vendors.
- Access to and / or works with sensitive and / or confidential information.
- Exhibit a comprehensive understanding of healthcare regulatory and compliance (e.g., HIPAA). Skilled in the application of policies and procedures. Knowledge of Business Office Standards and Recommended Practices.

KNOWLEDGE, SKILLS & ABILITIES: 
The requirements listed below are representative of the knowledge, skills and/or abilities required.

EDUCATION:
Bachelor's Degree Information Technology, Computer Science, or related field, or equivalent experience

EXPERIENCE:
Minimum 5 years of relevant experience in Identity Engineering, Directory Services, Security Engineering, or related infrastructure roles.

Experience supporting identity systems in a large, complex, multi-domain or multi-facility environment, preferably healthcare.
 

CERTIFICATIONS/LICENSURE:
- NA
 

SKILLS AND ABILITIES:

Identity & Access Management Technologies

• Hands-on experience with enterprise IAM platforms and services, such as Okta Workforce Identity, Microsoft Entra ID (Azure AD), Active Directory, and related directory and federation technologies.
• Experience designing and supporting authentication, authorization, SSO, MFA, RBAC, and identity federation (SAML, OIDC, OAuth).

Privileged Access & Security Platforms

• Experience with Privileged Access Management (PAM) solutions, such as Delinea, BeyondTrust, or similar technologies.
• Understanding of privileged identity lifecycle, credential vaulting, session management, and least-privilege access models.

Directory Services & Operating Systems

• Strong working knowledge of Windows Server, on-prem Active Directory (multi-domain and multi-forest environments), Group Policy, LDAP, and identity synchronization.
• Experience integrating on-prem directory services with cloud identity platforms.

Automation & Integration

• Proficiency in PowerShell, REST APIs, and automation techniques to support identity lifecycle management, integrations, and operational efficiency.
• Experience building or supporting automated provisioning and deprovisioning workflows.

Cloud & Hybrid Identity

• Experience supporting hybrid identity architectures, including directory synchronization, identity bridging, and cloud application integrations.
• Familiarity with identity controls in cloud environments (e.g., Azure, GCP).

Monitoring, Troubleshooting & Operations

• Ability to troubleshoot complex identity, authentication, and access issues using logs, audit data, and platform diagnostics.
• Experience serving as a Level 3 escalation point for identity-related incidents.

Security, Risk & Compliance

• Strong understanding of identity-related security risks and controls.
• Experience operating in regulated environments, with familiarity in healthcare compliance requirements (e.g., HIPAA).

Communication & Collaboration

• Ability to clearly communicate complex identity concepts to technical and non-technical stakeholders.
• Works effectively across Security, Infrastructure, Application, and Business teams.
   

PHYSICAL AND MENTAL DEMANDS: 

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential job responsibilities. 

While performing the duties of this job, the employee is occasionally required to stand; walk; sit for extended periods of time; use hands to finger, handle, or feel objects, tools or controls; reach with hands and arms; climb stairs; balance; stoop, kneel, bend, crouch or crawl; talk or hear; taste or smell. The employee must occasionally lift and/or move up to 20 pounds. Repetitive motion of upper body required for extended use of computer. Required specific vision abilities include close vision, distance vision, color vision, peripheral vision, depth perception, and the ability to adjust focus. 

WORK ENVIRONMENT AND TRAVEL REQUIREMENTS: 

Work environment characteristics described here are representative of those that an employee may encounter while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential job responsibilities.

Works in well-lit, ventilated and climate controlled office environment with routine office equipment; some equipment has moving mechanical parts.

In hospital environment, may be exposed to hazards and unusual elements, which may include but are not limited to bloodborne pathogens and / or contagious illnesses, toxic chemicals, and biohazardous materials which may require extensive safety precautions and the use of protective equipment.

Noise level in the work environment is typical for an office and/or hospital environment.

Minimum overnight travel (up to 10%) by land and/or air.

Lifepoint Health is a leader in community-based care and driven by a mission of Making Communities Healthier. Our diversified healthcare delivery network spans 29 states and includes 63 community hospital campuses, 32 rehabilitation and behavioral health hospitals, and more than 170 additional sites of care across the healthcare continuum, such as acute rehabilitation units, outpatient centers and post-acute care facilities. We believe that success is achieved through talented people. We want to create places where employees want to work, with opportunities to pursue meaningful and satisfying careers that truly make a difference in communities across the country.