What are the responsibilities and job description for the Identity and Access Management, Consultant position at Blue Shield of California?
Your Role
We are seeking a dedicated and detail-oriented Identity and Access Management (IAM) Operations and Assurance Team Member to join our dynamic Information Security team. The ideal candidate will be responsible for managing and maintaining our IAM systems, ensuring secure and efficient access to our digital resources. This role is critical to the continued evolution of our IAM operating and governance model. The IAM Operation and Assurance Analyst will help ensure consistent, secure, and compliant delivery of identity services by defining, maintaining, and monitoring governance frameworks, control processes, and assurance mechanisms across our IAM capabilities, including Identity Shield, Identity Suite, and Identity Managed Services. The candidate should possess strong skills in automation and scripting. Additionally, experience with DevOps practices and tools, including CI/CD pipelines and version control systems, is essential to integrate IAM solutions seamlessly into our development workflows.
About the Team
Our IAM team is a critical cornerstone of our cybersecurity capabilities. We are focused on supporting our primary customer, Blue Shield of California, by managing its 5 million members and other external identities across all its digital portals. Our flagship product, Identity Shield, provides comprehensive identity and access management solutions and managed services, featuring two sub-products: Identity Suite and Identity Managed Services. As we look to the future, we are committed to evolving our product model to deliver cutting-edge identity capabilities that meet the growing needs of our customers.
Your Work
In this role, you will:
Access Management: Manage user access and permissions across various systems and applications, ensuring compliance with security policies and procedures.
Identity Governance: Implement and maintain identity governance processes, including role-based access control (RBAC), user provisioning, and de-provisioning.
Incident Response: Respond to and resolve IAM-related incidents and service requests in a timely manner.
Compliance and Audit: Ensure compliance with industry standards and regulatory requirements (e.g., ISO, NIST, HIPAA) by conducting regular audits and reviews of IAM processes and controls.
Collaboration: Work closely with cross-functional teams, including IT, HR, and business units, to support IAM initiatives and projects.
Documentation: Maintain accurate and up-to-date documentation of IAM processes, procedures, and configurations.
Quality Assurance: Conduct quality assurance of IAM procedures and automation scripts to ensure they meet security and operational standards.
- Developing Automation: Identify opportunities for process improvements and automation within the IAM domain to enhance efficiency and security.
Your Knowledge and Experience
- Bachelor's degree in Information Technology, Computer Science, or a related field or equivalent experience
- Minimum of 7 years of progressive experience in identity and access management or a related field, including senior-level responsibility. Proficiency in the following protocols: NIST, PCI, HIPPA, SOC 1 and 2 and SOX is required.
Technical Skills:
- Proficiency in IAM technologies and tools (e.g., SailPoint, Active Directory, Azure AD, CyberArk).
- Knowledge of cloud environments and IAM within cloud platforms is a plus.
- Experience in developing IAM automation capabilities.
- Hands-on experience with automation tools and frameworks (e.g., Ansible).
- Familiarity with DevOps practices and tools, including CI/CD pipelines and version control systems (e.g., Git).
- Certifications: Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Identity and Access Manager (CIAM), or similar are preferred.
- Soft Skills: Strong analytical and problem-solving skills, excellent communication and collaboration abilities, and a proactive approach to security and compliance.
Hybrid
This role requires employees to be in - office based on our hybrid workplace model, balancing purposeful in - person collaboration with flexibility. For most teams, this means coming into the office two days each week.
Employees living more than 50 miles from an office location will work with their manager to determine in-office time based on business need.
ABOUT THE TEAM
About Stellarus and the Ascendiun Family of Companies
Stellarus, launched in January 2025, is designed to scale innovative healthcare solutions that support customers in creating a health care experience deserving of their family, friends, and neighbors.
Stellarus is part of a family of organizations that is overseen by a nonprofit corporate entity named Ascendiun. The Ascendiun Family of Companies also includes Blue Shield of California and its subsidiary, Blue Shield of California Promise Health Plan and Altais, a clinical services company.
Stellarus’ vision is to empower its customers to create a healthcare experience that is worthy of their family, friends, and neighbors. Stellarus’ objective is to offer innovative, modern, scalable solutions that challenge the health care status quo. This very closely aligns with Blue Shield of California’s vision by using innovation to improve quality, affordability, and experience for members.
To achieve our mission, we foster an environment where all employees can thrive and contribute fully to address the needs of the various communities we serve. We are committed to creating and maintaining a supportive workplace that upholds our values and advances our goals.
Our Values:
At Stellarus, our core values of agility, trust, drive, courage and service shape our approach to developing innovative product offerings.
Our Workplace Model:
We believe in fostering a workplace environment that balances purposeful in-person collaboration with flexibility - providing clear expectations while respecting the diverse needs of our workforce. Our workplace model is designed around intentional in-person interaction, collaboration, connection, creativity and flexibility:
For most teams, this means coming into the office two days per week.
Employees living more than 50 miles from an office location, out of state employees, and employees in certain member-facing roles should work with their manager to determine in-office time based on business need.
For employees with medical conditions that may impact their ability to work in-office, we are committed to engaging in an interactive process and providing reasonable accommodations to ensure their work environment is conducive to their success and well-being.
The Company reserves the right to require more presence in the office based on business needs, and requirements are subject to change with periodic reviews.
Physical Requirements:
Office Environment - roles involving part to full time schedule in Office Environment. Based in our physical offices and work from home office/deskwork - Activity level: Sedentary, frequency most of work day.
Equal Employment Opportunity:
External hires must pass a background check/drug screen. Qualified applicants with arrest records and/or conviction records will be considered for employment in a manner consistent with Federal, State and local laws, including but not limited to the San Francisco Fair Chance Ordinance. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, national origin, sexual orientation, gender identity, protected veteran status or disability status and any other classification protected by Federal, State and local laws.