Senior System Engineer

“Lifepoint Health is an Equal Opportunity Employer. Lifepoint Health is committed to Equal Employment Opportunity for all applicants and employees and complies with all applicable laws prohibiting discrimination and harassment in employment.”

You must be authorized to work in the United States without employer sponsorship or in the future.

POSITION SUMMARY:

The Senior Systems Engineer designs, builds, maintains, and optimizes enterprise Identity and Access Management (IAM) platforms, services, and processes to ensure secure, reliable, and scalable access across the organization. This role is responsible for the performance, availability, security, and continual improvement of multiple identity-related systems that support Company-wide workforce, application, and infrastructure access.

Essential Functions:

• Act as subject matter expert (SME) for multiple Identity and Access Management systems, tools, and processes, providing technical leadership, standardization, and best practices across Lifepoint Health and acquired entities.
• Build, design, and optimize identity platforms and integrations (e.g., directory services, identity providers, authentication, authorization, federation, lifecycle automation) aligned to Health Information & Technology Services (HITS) strategic objectives.
• Develop, document, and maintain identity workflows and methodologies supporting user lifecycle management, privileged access, authentication, and access governance.
• Implement automation and integration solutions to improve operational efficiency, reduce manual effort, and enhance security posture.
• Serve as Level 3 escalation for complex identity-related incidents, performing root cause analysis, remediation, and preventative improvements.
• Partner closely with Security, Infrastructure, Application, and Business teams to ensure identity solutions meet operational, security, and compliance requirements.
• Serve as the primary technical point of contact for strategic IAM vendors, ensuring vendor accountability, service quality, and alignment to business objectives.
• Identify, assess, and communicate risks associated with identity systems and access models; provide guidance and recommendations to leadership
• Regular and reliable attendance.
• Perform other duties as assigned.

ADDITIONAL INFORMATION:

• Position serves both internal co-workers and external customers, clients, patients, contractors, and vendors.
• Access to and / or works with sensitive and / or confidential information.
• Exhibit a comprehensive understanding of healthcare regulatory and compliance (e.g., HIPAA). Skilled in the application of policies and procedures. Knowledge of Business Office Standards and Recommended Practices.

KNOWLEDGE, SKILLS & ABILITIES:

The requirements listed below are representative of the knowledge, skills and/or abilities required.

EDUCATION:

Bachelor's Degree Information Technology, Computer Science, or related field, or equivalent experience

EXPERIENCE:

• Minimum 5 years of relevant experience in Identity Engineering, Directory Services, Security Engineering, or related infrastructure roles.
• Experience supporting identity systems in a large, complex, multi-domain or multi-facility environment, preferably healthcare.

SKILLS AND ABILITIES:

Identity & Access Management Technologies

• Hands-on experience with enterprise IAM platforms and services, such as Okta Workforce Identity, Microsoft Entra  (Azure AD), Active Directory, and related directory and federation technologies.
• Experience designing and supporting authentication, authorization, SSO, MFA, RBAC, and identity federation (SAML, OIDC, OAuth).

Privileged Access & Security Platforms

• Experience with Privileged Access Management (PAM) solutions, such as Delinea, Beyond Trust, or similar technologies.
• Understanding of privileged identity lifecycle, credential vaulting, session management, and least-privilege access models.

Directory Services & Operating Systems

• Strong working knowledge of Windows Server, on-prem Active Directory (multi-domain and multi-forest environments), Group Policy, LDAP, and identity synchronization.
• Experience integrating on-prem directory services with cloud identity platforms.

Automation & Integration

• Proficiency in Power Shell, REST APIs, and automation techniques to support identity lifecycle management, integrations, and operational efficiency.
• Experience building or supporting automated provisioning and deprovisioning workflows.

Cloud & Hybrid Identity

• Experience supporting hybrid identity architectures, including directory synchronization, identity bridging, and cloud application integrations.
• Familiarity with identity controls in cloud environments (e.g., Azure, GCP).

Monitoring, Troubleshooting & Operations

• Ability to troubleshoot complex identity, authentication, and access issues using logs, audit data, and platform diagnostics.
• Experience serving as a Level 3 escalation point for identity-related incidents.
• Strong understanding of identity-related security risks and controls.
• Experience operating in regulated…