The Security Engineer is accountable for assisting in designing, building, testing and implementing security systems and solutions within Medica. As a Security Engineer, you need to oversee our IAM initiatives, drive best practices, and ensure robust security measures are in place. The Security Engineer position requires experience in IAM technologies, and a passion for enhancing security protocols while improving user experience. Key Accountabilities Collaborate with architects, engineers, and security leaders to develop and execute the IAM strategy

Work with Product Owners, Scrum Masters, and Project Managers to break down and manage IAM tasks

Design and manage RBAC models to enforce least privilege and segregation of duties

Enhance the SailPoint Governance program and streamline user lifecycle processes

Automate provisioning and de-provisioning workflows for onboarding, role changes, and offboarding

Maintain IAM policies and controls to ensure compliance with standards like HITRUST and HIPAA

Monitor IAM systems for incidents and respond to potential threats or breaches

Generate reports on IAM performance, access trends, and compliance status

Train business stakeholders on RBAC and provide support for IAM-related issues

Other duties as assigned As a trusted member of the cybersecurity team, the engineer works closely with other engineers, analysts, and administrators across the security team. The Engineer will have a strong background in SailPoint administration, with expertise in roles-based access control (RBAC), certifications, and lifecycle management. This role offers an exciting opportunity to mature our IAM program, optimize identity governance processes, and ensure compliance across our enterprise.

Required Qualifications Bachelor's degree or equivalent experience in related field

3 or more years of related technical experience beyond degree Strongly Preferred Qualifications 3+ years of experience in Identity and Access Management, with a focus on administration and engineering

Proven experience in designing, testing, and implementing IAM processes – specifically Role Based Access Control (RBAC), Identify Governance, and Lifecycle Management utilizing Sailpoint Skills and Abilities Strong knowledge of IAM tools including SailPoint, Active Directory, and Azure

Hands-on experience with RBAC, identity governance, and lifecycle management using SailPoint

Skilled in automating workflows and customizing policies within IAM platforms

Excellent problem-solving, communication, and collaboration skills

Customer-focused with a positive, service-oriented approach This position is an Office role, which requires an employee to work onsite at our Minnetonka, MN office, on average, 3 days per week.

The full salary range for this position is $88,700 - $152,000. Annual salary range placement will depend on a variety of factors including, but not limited to, education, work experience, applicable certifications and/or licensure, the position's scope and responsibility, internal pay equity and external market salary data. In addition to base compensation, this position may be eligible for incentive plan compensation in addition to base salary. Medica offers a generous total rewards package that includes competitive medical, dental, vision, PTO, Holidays, paid volunteer time off, 401K contributions, caregiver services and many other benefits to support our employees.

The compensation and benefits information is provided as of the date of this posting. Medica’s compensation and benefits are subject to change at any time, with or without notice, subject to applicable law.

We are an Equal Opportunity employer, where all qualified candidates receive consideration for employment indiscriminate of race, religion, ethnicity, national origin, citizenship, gender, gender identity, sexual orientation, age, veteran status, disability, genetic information, or any other protected characteristic.