×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Identity & Access Management Engineer

Job in Waltham, Middlesex County, Massachusetts, 02254, USA
Listing for: Imprivata
Full Time position
Listed on 2026-01-10
Job specializations:
  • Engineering
    Cybersecurity, Systems Engineer
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 125000 - 150000 USD Yearly USD 125000.00 150000.00 YEAR
Job Description & How to Apply Below

Overview

Ready to join a team that's all in? At Imprivata, we deliver unified access and security management programs that eliminate friction, empowering healthcare and mission-critical organizations to work smarter, faster, and more securely.

We believe work can be more than a job or task — it's a collective spirit that embraces creativity, challenges, and collaboration. We are committed to an inclusive workplace where everyone feels valued and supported, and where your ideas matter and your work drives real results for your career, teammates, and customers.

We are seeking an Identity & Access Management Engineer to join our team. This is a hybrid opportunity based out of our Waltham, MA office.

Job Summary

The Identity & Access Management (IAM) Engineer will mature our enterprise identity program, strengthen access governance, and reduce privilege risk and sprawl across a hybrid environment. This role will build scalable access controls, automate lifecycle workflows, and integrate modern authentication technologies. Partnering with Security Engineering, IT, and Compliance, this role will ensure our identity stack is resilient, auditable, and aligned with Zero Trust principles.

The IAM Engineer focuses on solving complex access challenges, reducing identity and access complexity, and proactively closing privilege gaps.

Duties and Responsibilities
  • Design, implement, and maintain enterprise identity governance controls, including RBAC/ABAC models, SoD policies, and classification-based access.
  • Deploy and operate IAM platforms (e.g., AD360, Azure AD) to automate provisioning, deprovisioning, access requests, and lifecycle management.
  • Lead remediation of identity-based risk by reducing privilege paths and hardening AD/Azure AD and connected systems.
  • Implement and manage MFA, conditional access, and contextual access controls (device, location, time-based) for privileged and high-risk users.
  • Integrate and oversee privileged access management (PAM), including vaulting, session monitoring, and elevation workflows.
  • Automate access reviews, entitlement validations, and user lifecycle processes in collaboration with cross-functional stakeholders.
  • Partner with Detection Engineering and Sec Ops to enrich SIEM/SOAR with identity context, behavioral signals, and threat intelligence.
  • Support compliance and incident response through robust access logging, audit evidence, documentation, and response to identity-related threats.
  • Other duties as assigned and required.
Required Qualifications
  • Bachelor's degree in Computer Science, Information Technology, Engineering, or a related field, or equivalent combination of technical education and relevant hands-on experience.
  • 3+ years of experience in a similar engineering role.
  • Experience with IAM and identity governance platforms (Azure AD, AD DS, AD360, Okta) across cloud and hybrid environments.
  • Hands-on expertise with modern authentication and access controls, including MFA, FIDO2, certificates, conditional access, and GPO.
  • Strong grasp of identity governance and Zero Trust concepts such as RBAC, ABAC, SoD, and least privilege.
  • Experience with PAM solutions and identity threat detection using tools like Cyber Ark, Blood Hound, and SIEM/SOAR.
  • Ability to automate IAM processes with Power Shell or Python, supported by solid troubleshooting, documentation, compliance, and basic Linux knowledge.

This position offers a total compensation range of $ to $ (inclusive of base salary and variable compensation, such as bonuses and incentives). In addition, more information about Imprivata's benefit offerings can be found here. This range represents the high and low end of Imprivata's compensation range for this position. Actual compensation will vary and may be above or below the range based on various factors, such as a candidate's location, skills, experience, and qualifications.

At Imprivata, we have a top-notch work environment, developmental opportunities, a competitive total rewards package, and the desire to have fun. If you have the skills and qualifications as we have described above, we want to hear from you!

Imprivata provides equal employment opportunities, regardless of race, religion, age, sex, national origin, disability status, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

#LI-Hybrid #LI-SF1

#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search