Senior IAM Engineer

You’re only human.   

It’s a strange thing to say, because us humans are capable of incredible things. And at Medibank, we know our greatest potential lies in the people who work with us.   

We strive to make real, fundamental change, driven by a simple purpose: to create the best health and wellbeing for all of Australia.  

Enterprise Digital 

We are building an expert team to deliver best in class solutions for our customers. Our mission is to “Create delightful experiences that help our customers achieve better health”. 

Want to meet the team and learn more about working with our digital and technology teams? Follow this link to learn more: https://digitalcareers.medibank.com.au 

About the role: 

We’re hiring an experienced IAM Engineer with deep, hands-on experience designing, implementing and operating enterprise-scale SailPoint Identity solutions. In this role you’ll deliver automated identity lifecycle (JML) workflows, scalable role and entitlement models, access governance, and complex IIQ customizations. Complementary experience with CyberArk PAM and Microsoft Entra ID (Azure AD) is essential to support identity security and Zero Trust alignment. You’ll work across security, cloud and infrastructure teams to deploy secure, compliant and automated IAM capabilities. 

Key responsibilities 

• Design, build and maintain end-to-end Joiner/Mover/Leaver (JML) workflows in SailPoint IdentityIQ. 
• Develop IIQ rules, workflows, connectors, lifecycle events  
• Create scalable role models and entitlement structures that enforce least privilege. 
• Plan and run access certification campaigns: scoping, scheduling, remediation, reporting. 
• Onboard applications to SailPoint: entitlement mapping, provisioning logic and reconciliation. 
• Integrate SailPoint with directories and SaaS apps via REST APIs, JDBC, AD, LDAP and custom connectors. 
• Troubleshoot and resolve complex provisioning, de-provisioning and reconciliation issues across hybrid environments. 
• Automate operational tasks, improve governance via policy/process/solution enhancements. 
• Support platform upgrades, performance tuning, health fixes and CI/CD deployment pipelines. 
• Align Entra role governance with SailPoint access structures; support SSO/federation (SAML, OAuth2, OIDC). 
• Contribute to Conditional Access policy refinement and identity risk investigations. 
• Support CyberArk PAM onboarding, credential rotation, API integrations and JML alignment with PAM governance. 
• Drive continuous improvement, stay current with IAM trends, and support ICAM leadership with reporting and risk communication. 

Required experience & skills 

• 4-5 yrs of Extensive, hands-on experience designing, implementing and operating SailPoint Identity/ISC at enterprise scale. 
• Experience with CyberArk PAM and proven PAM integrations and onboarding. 
• Strong practical experience with Microsoft Entra ID / Azure AD, Conditional Access policies, and AD. 
• Solid understanding of identity governance, PAM, SSO, MFA, LDAP and federation standards (SAML/OAuth2/OIDC). 
• Proficiency with Java / BeanShell for IIQ customizations; PowerShell or other scripting skills desirable. 
• Experience building scalable role and entitlement models and running access certification campaigns. 
• Knowledge of regulatory and compliance requirements for identity and access management. 
• Experience with Technical Change Management and Problem Management processes. 
• Strong analytical, problemsolving, communication and crossfunctional collaboration skills. 
• Able to manage multiple priorities in a fastpaced environment and deliver results. 

Qualifications 

• Degree / Diploma / Certificate / PostGraduate qualification in Computer Science, Information Security or related field preferred (or equivalent experience). 
• Relevant certifications (SailPoint, CyberArk, Microsoft) advantageous. 

Imagine working with us 

We understand that work means different things to everyone...  We know happy, healthy people make great teams, and great teams put more heart into each customer and patient interaction. And that’s why we’re reinventing work.    

Imagine a workplace that helps you and your family thrive.  Where connection, personal development and health and wellbeing are front of mind. To learn more about our benefits go to https://careers.medibank.com.au/culture/rewards-benefits/

For you, work should help you Live Better. It should bring you fulfillment and joy. And with Medibank, it could. 

Inclusion and Accessibility  

We believe in everyone's potential and strive to make Medibank inclusive for all because different perspectives make us better. We encourage applications from everyone, including Aboriginal and Torres Strait Islander peoples, neurodivergent candidates, LGBTQIA+ community including transgender and gender diverse candidates and candidates with a disability.

If you need adjustments or alternative formats at any stage of the recruitment or employment journey, we’re here to help.  You can let us know directly in the application form, or if you’d prefer to discuss before applying, please reach out to us careers@medibank.com.au or (03) 8622 5666. Learn more about our commitments and employee stories at https://careers.medibank.com.au/diversity-inclusion/(please copy and paste the URL onto your browser)