Director, Identity & Access Management

About The Position

Requirements

• Bachelor’s degree from an accredited four-year program (years of experience may substitute for education).
• 10+ years of relevant work experience, with 5+ years specifically focused on identity and access management in a security role and 3+ years of people management experience.
• Strong prioritization, time management, and communication skills are essential, as this role involves managing staff, working with internal and external stakeholders, and engaging with both technical and non-technical audiences.
• Extensive experience with identity and access management concepts such as Zero Trust, identity governance, access control policies, role-based access control (RBAC), privileged access management (PAM), SSO, MFA, and IAM technologies.
• Practical experience securing identity and access in cloud environments, including public and private cloud services.
• Deep understanding of IAM frameworks and standards, including SOC II, HIPAA, NIST, HITRUST, ISO, FedRAMP, and other industry regulations.

Nice To Haves

• Experience in regulated environments (e.g., healthcare/HIPAA) is highly preferred.
• Certifications (Desirable): CISSP, CISA, CISM, or other relevant certifications in IAM are preferred but not required.

Responsibilities

• Lead the IAM function and work collaboratively to enhance and mature the organization’s IAM program while ensuring it supports business objectives and security goals.
• Develop and implement a comprehensive strategy for IAM including Privileged Access Management, Authentication and Lifecycle Management, including roadmap development and budget oversight.
• Stakeholder management across the organization to roll out capabilities.
• Partner with IT, security engineering, and business project teams to identify identity-related risks and recommend solutions to mitigate those risks through effective access controls and identity management practices.
• Establish and oversee the use of IAM tools and technologies for secure user authentication, single sign-on (SSO), multi-factor authentication (MFA), and privileged access management (PAM).
• Ensure the continuous improvement of IAM policies and practices in response to evolving threats and regulatory requirements.
• Partner with the Governance, Risk, and Compliance (GRC) team to integrate IAM controls into the broader risk management framework and assess the company’s residual risk.
• Provide IAM expertise to development teams, supporting the integration of secure identity management practices into software development lifecycles, and ensuring security by design.
• Lead initiatives such as IAM workshops and training sessions to drive awareness and knowledge of IAM across the organization.
• Measure and report on the effectiveness of IAM programs.

Benefits

• In addition to a base salary, this position is eligible for a performance bonus and benefits (subject to eligibility requirements) listed here: Teladoc Health Benefits 2026.