MM
Identity Engineer
Accepting applicationsMini Med · Georgia, United States
Full-Time Principal aiaterfsic
Posted
3d ago
Category
Test
Experience
Principal
Country
United States
Apply
remote type Remote
locations Virtual, Georgia, United States of America
time type Full time
posted on Posted 2 Days Ago
time left to apply End Date: June 6, 2026 (2 days left to apply)
job requisition id R-800876
We anticipate the application window for this opening will close on - 6 Jun 2026
At MiniMed, you can begin a lifelong career of exploration and innovation, while helping make a difference in the lives of people living with diabetes around the globe. You'll lead with purpose, breaking down barriers to innovation for a more connected, compassionate world.
About The Role
We are seeking an experienced Identity Engineer specializing in Microsoft Entra ID (Azure AD) and on premises Active Directory with a strong focus on hands-on engineering, operational support, and advanced troubleshooting. This role is responsible for implementing, operating, and maintaining secure, reliable identity services in hybrid environments, while partnering with architects and security teams to execute identity strategy. The ideal candidate is deeply technical, operationally focused, and comfortable owning identity platforms in production.
Responsibilities may include the following and other duties may be assigned.
Engineering & Platform Implementation (Primary Focus)
Engineer, configure, and maintain:
Microsoft Entra ID tenants and configurations
Hybrid identity integrations (Entra ID Connect, Cloud Sync)
Authentication and access controls (MFA, Conditional Access, Passwordless)
Implement and manage:
Identity Governance features (Access Reviews, Entitlement Management, PIM)
Role-based access and group strategy (dynamic groups, administrative units)
Maintain and optimize:
Active Directory domains, trusts, and replication
DNS dependencies related to authentication
Deliver identity integrations for:
Microsoft 365 and Azure workloads
SaaS and enterprise applications using SAML, OAuth, and OIDC
Execute identity-related changes, upgrades, and service improvements.
Operations & Troubleshooting (Primary Focus)
Serve as a senior escalation point for identity service incidents, including:
Authentication and MFA failures
Conditional Access misconfigurations
Sync and provisioning issues
Token, claims, and sign-in errors
Perform deep troubleshooting across:
Entra ID sign-in logs and audit logs
Azure AD Connect / Cloud Sync
Active Directory (Kerberos, LDAP, replication, FSMO roles.
Conduct root cause analysis and implement corrective and preventive actions.
Participate in on-call rotation and support business-critical identity outages.
Maintain runbooks, standard operating procedures, and troubleshooting guides.
Architecture & Design Support
Collaborate with identity architects to:
Implement approved identity standards and design
Operationalize Zero Trust and security requirements
Contribute engineering input to:
Identity roadmaps
Technology evaluations
Architectural decisions based on operational realities
Identify gaps, risks, and optimization opportunities in existing identity implementations.
Automation & Optimization
Automate identity operations using:
PowerShell
Microsoft Graph
Scripted provisioning and deprovisioning workflows
Improve operational efficiency through: Monitoring and alerting enhancements, reduction of manual identity processes, support CI/CD or IaC efforts related to identity configurations where applicable
Security & Compliance
Enforce security best practices, including:
Least privilege access
Privileged identity controls (PIM)
Support security investigations involving identity data and access logs.
Assist with audits and compliance activities related to identity services.
Required Knowledge And Experience
Requires 10+ years of experience with a bachelor’s degree or 8+ years of experience with an advanced degree or 12+ years of experience with a high school diploma or equivalent.
Preferred Qualifications
6+ years of hands-on Active Directory engineering and operations experience.
4+ years of Microsoft Entra ID (Azure AD) operational and engineering experience.
Strong troubleshooting knowledge of:
Authentication protocols (SAML, OAuth 2.0, OIDC, Kerberos)
Windows and cloud authentication flows
Experience managing hybrid identity at scale.
Advanced PowerShell skills for administration and automation.
Strong operational mindset with attention to reliability and performance.
Proven ability to troubleshoot complex, multi-system identity issues.
Comfortable working in production environments supporting critical services.
Clear technical documentation and communication skills.
Ability to work independently and prioritize under pressure.
Microsoft certifications (SC‑300, Azure Administrator, or similar).
Experience supporting: Large Microsoft 365 tenants, Zero Trust identity implementations
Exposure to non‑Microsoft IAM platforms (Okta, Ping, SailPoint) is a plus.
Experience supporting M&A or tenant-to-tenant identity transitions.
The base salary range is applicable across the United States, excluding Puerto Rico and specific locations in California. The offered rate complies with federal and local regulations and may vary based on factors such as experience, certification/education, market conditions, and location. Compensation and benefits information pertains solely to candidates hired within the United States (local market compensation and benefits will apply for others).
Physical Job Requirements
The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position.
The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. For Office Roles: While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role.
Benefits & Compensation
MiniMed offers a competitive salary and flexible benefits package
At MiniMed, we put people first. A commitment to our employees lives at the core of our values: We recognize their contributions. They share in the success they help create. We offer a wide range of benefits, resources, and competitive compensation plans designed to support you at every stage of your career and life.
Salary ranges for U.S (excl. PR) locations (USD):$136,000.00 - $230,000.00
This position is eligible for a short-term incentive called the Short Term Incentive (STI).
At MiniMed, we are committed to supporting the well-being and financial security of our employees. Regular employees working 20 or more hours per week are eligible for a robust benefits package, including health, dental, and vision insurance, as well as access to a Health Savings Account, Healthcare Flexible Spending Account, life insurance, long-term disability leave, and a dependent daycare spending account. In addition, all regular employees enjoy incentive plans, a 401(k) plan with company match, short-term disability coverage, paid time off and holidays, participation in our Employee Stock Purchase Plan, and access to our Employee Assistance Program. Eligible employees may also benefit from our Non-qualified Retirement Plan Supplement and Capital Accumulation Plan, subject to IRS minimum earnings requirements. Please note that “regular employees” refers to those who are not temporary staff, such as interns, and some benefits may not apply to employees in Puerto Rico.
For further details about our comprehensive benefits, we encourage you to visit the link below.
MiniMed Benefits Overview
About MiniMed
MiniMed is a full-stack insulin delivery company dedicated to supporting people living with diabetes through every step of their journey — when and how they need it. For more than 40 years, we’ve been committed to redefining what’s possible: intelligent dosing systems designed for real life, predictive insights that stay a step ahead, and always on support when it’s needed most. At the heart of everything we do is a simple Mission: to make every day a better day for people with diabetes.
Learn more about our business, and our mission here.
It is the policy of MiniMed to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, familial status, membership or activity in a local human rights commission, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state, or local law. In addition, MiniMed will provide reasonable accommodations for qualified individuals with disabilities.
If you are applying to perform work for MiniMed in any position which will involve performing at least two (2) hours of work on average each week within the unincorporated areas of Los Angeles County, you can find here a list of all material job duties of the specific job position which MiniMed reasonably believes that criminal history may have a direct, adverse and negative relationship potentially resulting in the withdrawal of a conditional offer of employment. MiniMed will consider for employment qualified job applicants with arrest or conviction records in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.
Show more Show less
remote type Remote
locations Virtual, Georgia, United States of America
time type Full time
posted on Posted 2 Days Ago
time left to apply End Date: June 6, 2026 (2 days left to apply)
job requisition id R-800876
We anticipate the application window for this opening will close on - 6 Jun 2026
At MiniMed, you can begin a lifelong career of exploration and innovation, while helping make a difference in the lives of people living with diabetes around the globe. You'll lead with purpose, breaking down barriers to innovation for a more connected, compassionate world.
About The Role
We are seeking an experienced Identity Engineer specializing in Microsoft Entra ID (Azure AD) and on premises Active Directory with a strong focus on hands-on engineering, operational support, and advanced troubleshooting. This role is responsible for implementing, operating, and maintaining secure, reliable identity services in hybrid environments, while partnering with architects and security teams to execute identity strategy. The ideal candidate is deeply technical, operationally focused, and comfortable owning identity platforms in production.
Responsibilities may include the following and other duties may be assigned.
Engineering & Platform Implementation (Primary Focus)
Engineer, configure, and maintain:
Microsoft Entra ID tenants and configurations
Hybrid identity integrations (Entra ID Connect, Cloud Sync)
Authentication and access controls (MFA, Conditional Access, Passwordless)
Implement and manage:
Identity Governance features (Access Reviews, Entitlement Management, PIM)
Role-based access and group strategy (dynamic groups, administrative units)
Maintain and optimize:
Active Directory domains, trusts, and replication
DNS dependencies related to authentication
Deliver identity integrations for:
Microsoft 365 and Azure workloads
SaaS and enterprise applications using SAML, OAuth, and OIDC
Execute identity-related changes, upgrades, and service improvements.
Operations & Troubleshooting (Primary Focus)
Serve as a senior escalation point for identity service incidents, including:
Authentication and MFA failures
Conditional Access misconfigurations
Sync and provisioning issues
Token, claims, and sign-in errors
Perform deep troubleshooting across:
Entra ID sign-in logs and audit logs
Azure AD Connect / Cloud Sync
Active Directory (Kerberos, LDAP, replication, FSMO roles.
Conduct root cause analysis and implement corrective and preventive actions.
Participate in on-call rotation and support business-critical identity outages.
Maintain runbooks, standard operating procedures, and troubleshooting guides.
Architecture & Design Support
Collaborate with identity architects to:
Implement approved identity standards and design
Operationalize Zero Trust and security requirements
Contribute engineering input to:
Identity roadmaps
Technology evaluations
Architectural decisions based on operational realities
Identify gaps, risks, and optimization opportunities in existing identity implementations.
Automation & Optimization
Automate identity operations using:
PowerShell
Microsoft Graph
Scripted provisioning and deprovisioning workflows
Improve operational efficiency through: Monitoring and alerting enhancements, reduction of manual identity processes, support CI/CD or IaC efforts related to identity configurations where applicable
Security & Compliance
Enforce security best practices, including:
Least privilege access
Privileged identity controls (PIM)
Support security investigations involving identity data and access logs.
Assist with audits and compliance activities related to identity services.
Required Knowledge And Experience
Requires 10+ years of experience with a bachelor’s degree or 8+ years of experience with an advanced degree or 12+ years of experience with a high school diploma or equivalent.
Preferred Qualifications
6+ years of hands-on Active Directory engineering and operations experience.
4+ years of Microsoft Entra ID (Azure AD) operational and engineering experience.
Strong troubleshooting knowledge of:
Authentication protocols (SAML, OAuth 2.0, OIDC, Kerberos)
Windows and cloud authentication flows
Experience managing hybrid identity at scale.
Advanced PowerShell skills for administration and automation.
Strong operational mindset with attention to reliability and performance.
Proven ability to troubleshoot complex, multi-system identity issues.
Comfortable working in production environments supporting critical services.
Clear technical documentation and communication skills.
Ability to work independently and prioritize under pressure.
Microsoft certifications (SC‑300, Azure Administrator, or similar).
Experience supporting: Large Microsoft 365 tenants, Zero Trust identity implementations
Exposure to non‑Microsoft IAM platforms (Okta, Ping, SailPoint) is a plus.
Experience supporting M&A or tenant-to-tenant identity transitions.
The base salary range is applicable across the United States, excluding Puerto Rico and specific locations in California. The offered rate complies with federal and local regulations and may vary based on factors such as experience, certification/education, market conditions, and location. Compensation and benefits information pertains solely to candidates hired within the United States (local market compensation and benefits will apply for others).
Physical Job Requirements
The above statements are intended to describe the general nature and level of work being performed by employees assigned to this position, but they are not an exhaustive list of all the required responsibilities and skills of this position.
The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. For Office Roles: While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role.
Benefits & Compensation
MiniMed offers a competitive salary and flexible benefits package
At MiniMed, we put people first. A commitment to our employees lives at the core of our values: We recognize their contributions. They share in the success they help create. We offer a wide range of benefits, resources, and competitive compensation plans designed to support you at every stage of your career and life.
Salary ranges for U.S (excl. PR) locations (USD):$136,000.00 - $230,000.00
This position is eligible for a short-term incentive called the Short Term Incentive (STI).
At MiniMed, we are committed to supporting the well-being and financial security of our employees. Regular employees working 20 or more hours per week are eligible for a robust benefits package, including health, dental, and vision insurance, as well as access to a Health Savings Account, Healthcare Flexible Spending Account, life insurance, long-term disability leave, and a dependent daycare spending account. In addition, all regular employees enjoy incentive plans, a 401(k) plan with company match, short-term disability coverage, paid time off and holidays, participation in our Employee Stock Purchase Plan, and access to our Employee Assistance Program. Eligible employees may also benefit from our Non-qualified Retirement Plan Supplement and Capital Accumulation Plan, subject to IRS minimum earnings requirements. Please note that “regular employees” refers to those who are not temporary staff, such as interns, and some benefits may not apply to employees in Puerto Rico.
For further details about our comprehensive benefits, we encourage you to visit the link below.
MiniMed Benefits Overview
About MiniMed
MiniMed is a full-stack insulin delivery company dedicated to supporting people living with diabetes through every step of their journey — when and how they need it. For more than 40 years, we’ve been committed to redefining what’s possible: intelligent dosing systems designed for real life, predictive insights that stay a step ahead, and always on support when it’s needed most. At the heart of everything we do is a simple Mission: to make every day a better day for people with diabetes.
Learn more about our business, and our mission here.
It is the policy of MiniMed to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, familial status, membership or activity in a local human rights commission, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state, or local law. In addition, MiniMed will provide reasonable accommodations for qualified individuals with disabilities.
If you are applying to perform work for MiniMed in any position which will involve performing at least two (2) hours of work on average each week within the unincorporated areas of Los Angeles County, you can find here a list of all material job duties of the specific job position which MiniMed reasonably believes that criminal history may have a direct, adverse and negative relationship potentially resulting in the withdrawal of a conditional offer of employment. MiniMed will consider for employment qualified job applicants with arrest or conviction records in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.
Show more Show less