Performant Financial

Senior Director, Identity Access Management & Data Security Engineering

Performant Financial$185K — $234K *
Information Technology
11 - 15 years of experience
Job Overview by Ladders

Qualifications

  • 12+ years in information security with minimum 5 years in senior leadership role.
  • Hands-on expertise in IAM technologies like Okta and Azure AD.
  • Success in delivering IAM and data security programs in regulated industries.
  • Proven ability to architect and implement Zero Trust and PAM solutions at scale.
  • Strong knowledge of identity protocols such as OAuth 2.0 and SAML 2.0.
  • Experience with data security tools like DLP and encryption key management.
  • Executive presence for communicating complex security concepts to diverse stakeholders.
  • Experience in recruiting and developing diverse engineering teams.
  • Relevant certifications (CISSP, CISM, etc.) and advanced degree preferred.

Responsibilities

  • Lead and grow a cross-disciplinary team of engineers and analysts.
  • Define team structure and career development frameworks.
  • Develop a multi-year IAM and data security roadmap.
  • Own the IAM strategy covering workforce and customer identity.
  • Architect Zero Trust access models and implement security controls.
  • Drive adoption of modern identity standards across environments.
  • Lead evaluation and implementation of IAM platforms and data security strategies.

Benefits

  • 401k plan with employer match.
  • Flexible paid time off and holidays.
  • Parental leave options.
  • Life and disability insurance.
  • Comprehensive health benefits including medical, dental, and vision.
Full Job Description
Position Overview
The Senior Director of Identity Access Management (IAM) & Data Security Engineering is a senior leadership role responsible for the strategy, architecture, engineering, and operations of enterprise-wide identity, access, and data protection programs. The role will report to the Global CISO and part of the Cyber Leadership Team. Operating at the intersection of healthcare and financial technology, this leader will ensure that our platforms meet the stringent security and compliance requirements of HIPAA, PCI-DSS, SOC 2, and other applicable frameworks while enabling a frictionless experience for internal users, partners, and patients.

This executive will build and scale a world-class engineering team, partner closely with Product, Infrastructure, Legal, and Compliance leadership, and serve as the subject-matter authority for IAM and data security across the organization.

What You'll Do:

Leadership & Team Development
  • Lead, mentor, and grow a multi-disciplinary team of engineers, architects, and analysts across IAM and data security domains both in the US and India.
  • Define team structure, hiring roadmap, and career development frameworks to attract and retain top security engineering talent.
  • Foster a culture of ownership, continuous learning, and security-first engineering.
  • Serve as a visible advocate for security engineering practices across engineering and product organizations.

Domain Responsibilities
  • Develop a multi-year IAM and data security roadmap aligned to business growth, M&A integration, and regulatory evolution.
  • Own the end-to-end IAM strategy covering workforce identity, customer identity (CIAM), privileged access management (PAM), and machine/service identity.
  • Architect and deliver Zero Trust access models, MFA enforcement, SSO, RBAC/ABAC policies, and identity federation across cloud and on-premises environments.
  • Drive adoption of modern identity standards including OAuth 2.0, OpenID Connect, SAML, SCIM, and FIDO2/WebAuthn.
  • Oversee privileged access governance and just-in-time access workflows for production healthcare and financial systems.
  • Lead the evaluation, selection, and operationalization of IAM platforms (e.g., MFA, IGA, PAM, Non Human Identity etc.).
  • Develop and execute a comprehensive data security strategy spanning data classification, data loss prevention (DLP), encryption at rest and in transit, tokenization, and secrets management.
  • Ensure robust protection of Protected Health Information (PHI) and Personally Identifiable Financial Information (PIFI) across all data stores, pipelines, and APIs.
  • Lead implementation and enforcement of data access governance, including automated discovery, tagging, and lineage for sensitive data across cloud data lakes and warehouses.
  • Partner with data engineering and ML teams to embed privacy-by-design and security-by-design principles into data platform architectures.
  • Ensure IAM and data security controls satisfy HIPAA/HITECH, PCI-DSS, SOC 2 Type II, NIST 800-53, ISO 27001, and state data privacy laws
  • Own the IAM and data security sections of audit readiness programs, regulatory examinations, and third-party assessments.
  • Define metrics, KPIs, and executive dashboards to communicate program health and risk posture to the CISO, CTO, and Board.
  • Partner with Legal and Privacy teams on data breach response, regulatory notifications, and privacy impact assessments.
  • Collaborate with Infrastructure, DevOps, and Platform Engineering to embed security controls natively into CI/CD pipelines and cloud infrastructure (IaC).
  • Evaluate and manage relationships with security technology vendors, MSSPs, and industry partners.
  • Represent the organization in industry forums, regulatory engagements, and partner/customer security reviews.

What You'll Bring:
  • 12+ years of progressive experience in information security, with at least 5 years in a senior leadership role managing security engineering teams.
  • Deep hands-on expertise in IAM technologies: Okta, Azure Active Directory / Entra ID, SailPoint, CyberArk, or equivalent enterprise platforms.
  • Demonstrated success delivering enterprise IAM and data security programs in highly regulated industries, specifically healthcare (HIPAA) and/or financial services (PCI-DSS, GLBA).
  • Proven ability to architect and implement Zero Trust, PAM, CIAM, and data governance solutions at scale in cloud-native environments (AWS, Azure, or GCP).
  • Strong working knowledge of identity protocols: OAuth 2.0, OIDC, SAML 2.0, SCIM, and FIDO2.
  • Experience with data security tooling: DLP platforms, encryption key management, tokenization, and data discovery/classification.
  • Demonstrated executive presence with the ability to communicate complex security concepts to C-suite, technical and non-technical stakeholders.
  • Experience recruiting, developing, and retaining diverse, high-performing engineering teams.
  • Relevant certifications such as CISSP, CISM, CCSP, CISA
  • Familiarity with DevSecOps practices, security automation, and Infrastructure-as-Code security controls (Terraform, CloudFormation).
  • Experience integrating acquired companies and harmonizing disparate identity environments post-M&A.
  • Advanced degree (MS or MBA) in Computer Science, Information Security, or a related field.


Please note at this time we are unable to proceed with candidates who require visa sponsorship now or in the future.

Location and Workplace Flexibility

Zelis is headquartered in the U.S., with multiple locations across the country and in Hyderabad, India. Check out our locations to learn more about our offices. All employee work locations are based on the needs of the position and are determined by the Leadership team. In-office work and activities vary based on work and team objectives in accordance with Company policies.

While location expectations vary by role, candidates within approximately 50 miles of a U.S. office are generally preferred to support collaboration when needed. Our hybrid approach is flexible, and in-office presence is guided by team and business needs rather than a fixed weekly schedule.

Base Salary Range
$185,000.00 - $234,650.00

At Zelis we are committed to providing fair and equitable compensation packages. The base salary range allows us to make an offer that considers multiple individualized factors, including experience, education, qualifications, as well as job-related and industry-related knowledge and skills, etc. Base pay is just one part of our Total Rewards package, which may also include discretionary bonus plans, commissions, or other incentives depending on the role.

Zelis' full-time associates are eligible for a highly competitive benefits package as well, which demonstrates our commitment to our employees' health, well-being, and financial protection. The US-based benefits include a 401k plan with employer match, flexible paid time off, holidays, parental leaves, life and disability insurance, and health benefits including medical, dental, vision, and prescription drug coverage.

Disclaimer

The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal responsibilities, duties, and skills from time to time.

About Performant Financial

Performant Financial Corporation is a business services company that provides technology-enabled recovery and related analytics services in the United States. The company primarily offers recovery services to the government and private clients in various markets, such as healthcare, student loans, and general collections. Performant Financial Corporation was founded in 1976 and is headquartered in Livermore, California.
Learn more about Performant Financial
Size
1,269 employees
Market Cap
$237.8 million
Industry
Net Income
-$21.5 million
Founded
1976
5 Year Trend
-2.5%
Revenue
$159.7 million
NASDAQ

Similar Jobs

More Jobs at Performant Financial

More Information Technology Jobs

Find similar Senior Director, Identity Access Management & Data Security Engineering jobs: