Senior Director, Identity Access Management & Data Security Engineering
ExternalPrepare for this interview
EliteAI-generated questions, company research, and talking points tailored to this role
Responsibilities
- Leadership & Team Development
- Lead, mentor, and grow a multi-disciplinary team of engineers, architects, and analysts across IAM and data security domains both in the US and India.
- Define team structure, hiring roadmap, and career development frameworks to attract and retain top security engineering talent.
- Foster a culture of ownership, continuous learning, and security-first engineering.
- Serve as a visible advocate for security engineering practices across engineering and product organizations.
- Domain Responsibilities
- Develop a multi-year IAM and data security roadmap aligned to business growth, M&A integration, and regulatory evolution.
- Own the end-to-end IAM strategy covering workforce identity, customer identity (CIAM), privileged access management (PAM), and machine/service identity.
- Architect and deliver Zero Trust access models, MFA enforcement, SSO, RBAC/ABAC policies, and identity federation across cloud and on-premises environments.
- Drive adoption of modern identity standards including OAuth 2.0, OpenID Connect, SAML, SCIM, and FIDO2/WebAuthn.
- Oversee privileged access governance and just-in-time access workflows for production healthcare and financial systems.
- Lead the evaluation, selection, and operationalization of IAM platforms (e.g., MFA, IGA, PAM, Non Human Identity etc.).
- Develop and execute a comprehensive data security strategy spanning data classification, data loss prevention (DLP), encryption at rest and in transit, tokenization, and secrets management.
- Ensure robust protection of Protected Health Information (PHI) and Personally Identifiable Financial Information (PIFI) across all data stores, pipelines, and APIs.
- Lead implementation and enforcement of data access governance, including automated discovery, tagging, and lineage for sensitive data across cloud data lakes and warehouses.
- Partner with data engineering and ML teams to embed privacy-by-design and security-by-design principles into data platform architectures.
- Ensure IAM and data security controls satisfy HIPAA/HITECH, PCI-DSS, SOC 2 Type II, NIST 800-53, ISO 27001, and state data privacy laws
- Own the IAM and data security sections of audit readiness programs, regulatory examinations, and third-party assessments.
- Define metrics, KPIs, and executive dashboards to communicate program health and risk posture to the CISO, CTO, and Board.
- Partner with Legal and Privacy teams on data breach response, regulatory notifications, and privacy impact assessments.
- Collaborate with Infrastructure, DevOps, and Platform Engineering to embed security controls natively into CI/CD pipelines and cloud infrastructure (IaC).
- Evaluate and ma
Benefits
Additional Information
At Zelis, we Get Stuff Done. So, let's get to it! A Little About Us Zelis is modernizing the healthcare financial experience across payers, providers, and healthcare consumers. We serve more than 750 payers, including the top five national health plans, regional health plans, TPAs and millions of healthcare providers and consumers across our platform of solutions. Zelis sees across the system to identify, optimize, and solve problems holistically with technology built by healthcare experts - driving real, measurable results for clients. At Zelis, AI is woven into the fabric of how we work. Every associate is expected - and empowered - to partner with AI to challenge the status quo, accelerate innovation, and amplify their impact. This is a place for builders with a growth mindset who act with agility, embrace change, and use modern technology to shape smarter solutions, exceptional experiences, and the future of our industry for our clients, customers, and our culture. A Little About You You bring a unique blend of personality and professional expertise to your work, inspiring others with your passion and dedication. Your career is a testament to your diverse experiences, community involvement, and the valuable lessons you've learned along the way. You are more than just your resume; you are a reflection of your achievements, the knowledge you've gained, and the personal interests that shape who you are. Position Overview The Senior Director of Identity Access Management (IAM) & Data Security Engineering is a senior leadership role responsible for the strategy, architecture, engineering, and operations of enterprise-wide identity, access, and data protection programs. The role will report to the Global CISO and part of the Cyber Leadership Team. Operating at the intersection of healthcare and financial technology, this leader will ensure that our platforms meet the stringent security and compliance requirements of HIPAA, PCI-DSS, SOC 2, and other applicable frameworks while enabling a frictionless experience for internal users, partners, and patients. This executive will build and scale a world-class engineering team, partner closely with Product, Infrastructure, Legal, and Compliance leadership, and serve as the subject-matter authority for IAM and data security across the organization.
Your Match
How well this role fits your profile.
Company Intel
What employees say
Worked at zelis? Share your experience