Principal IAM Engineer

About Providence Providence, one of the US’s largest not-for-profit healthcare systems, is committed to high quality, compassionate healthcare for all. Driven by the belief that health is a human right and the vision, ‘Health for a better world’, Providence and its 121,000 caregivers strive to provide everyone access to affordable quality care and services.

Providence has a network of 51 hospitals, 1,000. care clinics, senior services, supportive housing, and other health and educational services in the US.

Providence India is bringing to fruition the transformational shift of the healthcare ecosystem to Health 2.0. The India center will have focused efforts around healthcare technology and innovation, and play a vital role in driving digital transformation of health systems for improved patient outcomes and experiences, caregiver efficiency, and running the business of Providence at scale.

Why Us?

• Best In-class Benefits

• Inclusive Leadership

• Reimagining Healthcare

• Competitive Pay

• Supportive Reporting Relation

**Principal Engineer – IAM : Directory . Authentication Services Role Summary
The Principal Engineer is the technical authority and architect** for enterprise directory and authentication services. This role drives platform design, modernization, and deep technical decisions across Microsoft Entra ID and hybrid identity while partnering closely with Security Architecture and Platform Engineering. This is a hands-on, high-impact engineering role, not a people manager.
Key Responsibilities Identity Architecture . Platform Engineering

• Own end-to-end architecture for Entra ID and hybrid Active Directory environments.

• Design and evolve authentication, authorization, and identity lifecycle architectures at enterprise scale.

• Lead modernization from legacy identity patterns to cloud-native, Zero Trust–aligned identity models. Authentication . Conditional Access Strategy

• Architect Conditional Access frameworks using risk, device, user, and workload signals.

• Design and optimize passwordless, MFA, and phishing-resistant authentication strategies.

• Define standards for legacy protocol containment and deprecation.

Directory Security . Tier-0 Protection

• Define Tier‑0 identity security architecture, including admin isolation, PAWs, and break-glass models.

• Design Privileged Identity Management (PIM) and just-in-time access patterns.

• Reduce identity attack surface through architectural controls and guardrails.

Engineering Excellence . Automation

• Drive Infrastructure-as-Code for identity (Terraform/Bicep/Graph automation).

• Establish reliability patterns, failure isolation, and service resiliency models.

• Partner with SRE and SecOps on observability, metrics, and alerting strategy.

Technical Leadership

• Act as design authority for IAM initiatives across applications and platforms.

• Review designs, mentor senior engineers, and raise overall technical bar.

• Influence roadmap decisions and long-term identity strategy.

Required Skills . Experience

• 15. years in IAM with deep Microsoft Entra ID . Active Directory expertise

• Proven experience architecting large-scale hybrid identity platforms

• Deep expertise in:

+ Conditional Access . Identity Protection
+ MFA . Passwordless Authentication
+ Federation (SAML, OIDC, OAuth)
+ Privileged Access Models

• Strong automation and engineering mindset

• Ability to operate at both whiteboard and code level

What Success Looks Like

• Identity platform designs scale cleanly, securely, and predictably

• Security posture improves without harming user experience

• Clear architectural patterns adopted enterprise-wide

• Reduced dependency on vendor “defaults” through engineering control

Providence’s vision to create ‘Health for a Better World’ aids us to provide a fair and equitable workplace for all in our employment, whether temporary, part-time or full time, and to promote individuality and diversity of thought and background, and acknowledge its role in the organization’s success. This makes us committed towards equal employment opportunities, regardless of race, religion or belief, color, ancestry, disability, marital status, gender, sexual orientation, age, nationality, ethnic origin, pregnancy, or related needs, mental or sensory disability, HIV Status, or any other category protected by applicable law. In furtherance to our mission in building a more inclusive and equitable environment, we shall, from time to time, undertake programs to assist, uplift and empower underrepresented groups including but not limited to Women, PWD (Persons with Disabilities), LGTBQ. (Lesbian, Gay, Transgender, Bisexual or Queer), Veterans and others. We strive to address all forms of discrimination or harassment and provide a safe and confidential process to report any misconduct.

Contact our Integrity hotline also, read our Code of Conduct.