Manager, Identity & Access Management (IAM)

PDMI is looking for a Manager, Identity & Access Management (IAM) to lead the strategy, architecture, and delivery of enterprise IAM initiatives across on-premises and multi-cloud environments. This role blends deep technical expertise in identity security with strong program leadership to strengthen our Zero Trust posture, reduce organizational risk, and enable secure, scalable access across the enterprise. Partnering closely cross-functionally, this role owns the design and operation of identity services that support compliance, audit readiness, and measurable business outcomes.

Since 1984, PDMI has provided pharmacy data processing and other flexible, scalable solutions to help our clients meet their business objectives. We offer transparent, pass-through pharmacy processing and other services for private label Pharmacy Benefit Managers (PBMs), vertically integrated health plans and hospital systems. In addition to Pharmacy Benefit Administrative Services, we offer 340B Administration, Hospice and Long-Term Care Services.

Why Join Us:

• Best Employer: PDMI was voted Best Employer in Ohio for the 5th consecutive year in 2025!
• Meaningful Work: Contribute to improving healthcare quality and efficiency.
• Collaborative Environment: Work with passionate professionals who share your drive.
• Exciting Challenges: Every day brings new opportunities to excel.
• Flexible Work: Fully remote opportunity (from approved locations within the U.S.) with a company that cares.

What You'll Do:
As the Manager, IAM, you'll:

• Lead the architecture, design, implementation, and operation of enterprise IAM solutions across on-premises and cloud environments.
• Drive adoption of a Zero Trust, identity-centric security model, including least privilege access, continuous authentication, and adaptive access controls.
• Partner with Security Engineering teams to implement and manage Privileged Access Management (PAM) solutions, including credential vaulting, session monitoring, and just-in-time (JIT) access.
• Own and automate identity lifecycle processes (Joiner-Mover-Leaver) to ensure timely, secure, and auditable access.
• Collaborate with Product Engineering, Infrastructure, Cloud, HR, and Cybersecurity teams to deliver IAM initiatives end-to-end.
• Lead cross-functional initiatives, influence stakeholders, and translate complex IAM concepts for both technical and non-technical audiences.
• Maintain and evolve IAM standards, policies, documentation, and procedures to support operational consistency, compliance, and audits.
• Provide clear, consistent communication and reporting on IAM posture, risks, and progress to leadership and stakeholders.
• Oversee user onboarding, offboarding, access changes, and periodic access reviews to ensure compliance and audit readiness.
• Manage certificates, secrets, and cryptographic keys across applications, infrastructure, and cloud platforms.
• Implement and govern privileged identities, credential vaulting, JIT access, and privileged session management capabilities.

What You Bring:

• Bachelor's degree in Computer Science, Cybersecurity, or a related technical field preferred, or equivalent combination of education and experience.
• Hands-on experience implementing SSO and MFA using Entra ID, Okta (preferred), or similar platforms.
• Strong understanding of modern authentication and identity federation protocols, including SAML, OIDC, OAuth2, WebAuthn/FIDO2, and LDAP.
• Experience implementing and managing Privileged Access Management (PAM) solutions such as CyberArk, BeyondTrust, or similar tools.
• Experience with AWS IAM models; Azure identity model experience preferred.
• Working knowledge of mTLS, certificates, RADIUS, and Kerberos.
• Expertise with Active Directory, Entra ID, LDAP, and cloud directory services and their integration with modern IAM solutions.
• Experience scripting and automation using PowerShell, Python, Bash, or similar languages.
• CISSP, CISA, and/or CISM certifications preferred.