Apply Now Clicking "Apply Now" opens the link in a new window.

How to Apply

A cover letter is required for consideration for this position and should be attached as the first page of your resume. The cover letter should address your specific interest in the position and outline skills and experience that directly relate to this position.

Job Summary

The University of Michigan's Information Assurance team at Michigan Medicine (IA:MM) is looking for a candidate to fulfill the role of Identity and Access Management Engineer. Identity and Access Management (IAM) Engineers at Michigan Medicine fill several roles, Subject Matter Expert, Architect, Developer, and Support person. In these roles you would be expected to have broad technical knowledge, programming, and scripting skills, be able to understand and develop clear workflow documentation, and have strong problem-solving skills.

The Michigan Medicine IAM environment is complex, integrating multiple appointment and user certification authoritative sources. We currently support approximately 45k users with 1/3 turnover per year. This includes managing rich user profiles and protecting identity information with business partners. To support this, we maintain a highly reliable service infrastructure which is used to authenticate, authorize, and move data around. The team is involved with most application and service deployments to some level and has strong ties to Compliance, Human Resources, and other trusted IT service providers.

We understand that no one person has the depth of knowledge to meet all of our needs. Our goal is to find a person with some of the skills, who is a continuous learner, has the desire to share what you know, and has the willingness to be a positive team member.

Core technologies in scope for this position include: Suse Linux, Windows, Micro Focus, Microsoft Azure & Active Directory, CyberArk, Oracle, Splunk, Ansible.


Mission Statement

Michigan Medicine improves the health of patients, populations and communities through excellence in education, patient care, community service, research and technology development, and through leadership activities in Michigan, nationally and internationally.  Our mission is guided by our Strategic Principles and has three critical components; patient care, education and research that together enhance our contribution to society.

Who We Are


We are a team that focuses on how we can together help protect Michigan Medicine; it’s patients, students, workforce, data, systems, and identities from cybersecurity threats. We champion our staff, their backgrounds, interests, and abilities with opportunities for training career growth in an increasing critical field.  In addition to the benefits of working at one of the best learning and research institutions in the world, we also promote the development of our talented staff’s cybersecurity career within an equitable balance of work and home priorities. This position is being made available as a 100% remote-enabled role, meaning you can work from your home or anywhere in the US as well as negotiate alternative work schedules. Apply to be part of a strong team that partners with our institution, community, and each other.  

Our Division’s Mission

We serve as a trusted partner, and provide a best in class security program to uphold and protect the mission of Michigan Medicine.

Our Division’s Vision

We believe in cultivating a shared responsibility of security to enhance how we provide care, deliver education and create innovation to protect the quality of healthcare.

Our Division’s Principles

  • Prioritize your self-care, family-care, team-care, then the work
  • Implement balanced assurance solutions
  • Strengthen our department’s capabilities
  • Develop an assurance-minded workforce
  • Focus on practical information assurance


  • Work with business customers and other technical engineers, analyze, design, script, implement, test, debug and maintain the Identity management environment, with a focus on Microsoft 365. Evaluate, select and implement software tools required to provide Identity Management services. Provide documentation of; design, technical specifications, and supply support materials.
  • Provide support including deployments, upgrades, implementation and troubleshooting of Identity and Access Management service changes in a high availability environment as well as pre-production and development environment
  • Provide support to the service desk and departmental staff in identifying and resolving identity management related issues
  • Provide 24-hour support on a rotating schedule

Required Qualifications*


  • Experience in application support, troubleshooting, and resolving user-based application problems
  • Experience with the Microsoft 365 Identity environment               
  • Excellent collaboration, interpersonal, written, and verbal communication skills
  • Ability to work in a dynamic development environment and adjust to frequently changing priorities and project plans
  • Knowledge of networking design and protocol routing

Senior level

  • At least 6-8 years of hands-on experience in design, architecture, and administration of Identity and Access Management solutions using Micro Focus Identity and Access Management suite or similar technologies
  • At least 6-8 years of hands-on experience with Windows, Linux, web apps, databases, strong authentication protocols, operating systems and network security protocols and procedures
  • Proficiency in scripting languages (Python, YAML, Powershell)
  • Knowledge of system containerization technologies (Docker, Kubernetes, etc)
  • Knowledge in Federation, SAML, OpenID, OAuth, and other industry standard authentication/authorization solution


Intermediate level

  • At least 3 to 5 years of systems analysis/programming activities in a business environment
  • Exposure with scripting languages (Python, YAML, Powershell)
  • Exposure with containerization technologies (Docker, Kubernetes, etc)
  • Exposure with Federation, SAML, OpenID, OAuth, and other industry standard authentication/authorization solutions

Desired Qualifications*

  • Knowledge / experience with; NetIQ Identity Management, Splunk,
  • Knowledge or working experience with ITIL concepts.
  • Working knowledge of SuSE Linux.
  • Familiarity with Lean Methodologies
  • Experience in a Healthcare or higher education organization
  • Knowledge of relevant sector regulations (e.g. HIPAA, HITECH, FERPA, FISMA, PCI)

Underfill Statement

This position may be underfilled at a lower classification depending on the qualifications of the selected candidate.

Background Screening

Michigan Medicine conducts background screening and pre-employment drug testing on job candidates upon acceptance of a contingent job offer and may use a third party administrator to conduct background screenings.  Background screenings are performed in compliance with the Fair Credit Report Act. Pre-employment drug testing applies to all selected candidates, including new or additional faculty and staff appointments, as well as transfers from other U-M campuses.

Application Deadline

Job openings are posted for a minimum of seven calendar days.  The review and selection process may begin as early as the eighth day after posting. This opening may be removed from posting boards and filled anytime after the minimum posting period has ended.

U-M EEO/AA Statement

The University of Michigan is an equal opportunity/affirmative action employer.