Cloud Identity Security Engineer III

Title: Cloud Identity Security Engineer III  

Location: Midtown  

Org Unit: IT Security 

Work Days:  

Weekly Hours: 35.00 

Exemption Status: Exempt

Salary Range: $146,500.00 - $166,400.00  

*As required under NYC Human Rights Law Int 1208-2018 - Salary range for this role when Hired for NYC Offices 

Position Summary

The Senior Cloud Identity Security Engineer is responsible for designing, building, and implementing identity programs in a dynamic and global environment. This role supports Weill Cornell’s missions in education, clinical care, and research by integrating diverse solutions across campuses and partner institutions including Cornell’s Ithaca and Qatar campuses. The engineer will work closely with identity and security analysts, engineers, and architects to drive innovative projects and ensure compliance with industry and regulatory standards.

Job Responsibilities

• Serves as the subject matter expert in identity engineering with a focus on cloud-based identity technologies. 1. Leads gap analyses, defines required steps to remediate deficiencies, and leads efforts to close relevant gaps.
• Collaborates with cross-functional teams to research, validate through proof-of-concept, select, and engineer identity technologies and processes. Acts as the main security liaison for teams integrating with identity-related products.
• Ensures compliance with established identity best practices and organizational policies. Conducts disaster recovery (DR) testing, performance testing, and tabletop exercises to maintain system resilience.
• Supports continuity across identity technologies and processes in collaboration with various Cornell campuses and partner institutions
• Produces comprehensive documentation, technical reports, and presentations for both technical and non-technical stakeholders.
• Provides timely support during escalated identity-related incidents, including occasional off-hours emergency response. Regularly reviews and assists in maintaining identity policies, standards, and procedures.
• Promotes and maintains a favorable and positive work environment to assist in Weill Cornell Medicine’s overall mission
• Performs other related duties as assigned

Education

• Bachelor's Degree or experience commensurate with job requirement.

Experience

• Extensive experience working proactively and under minimal supervision or guidance. Knowledge of identity-related technologies and processes
• Extensive experience working with cloud-based identity technologies and processes and identity protocols, such as SAML, OAuth, FIDO, or OpenID Connect
• Experience with single sign-on (SSO) and multifactor authentication (MFA) technologies and processes and programming or scripting languages, such as PHP, Python, PowerShell, Go, or JavaScript
• Experience with organizational and cross-functional communication, focusing on identity strategy, roadmaps, leadership presentations, and design and execution of proposed solutions
• Excellent written and verbal communication skills, on both technical and non-technical topics

Knowledge, Skills and Abilities

• Knowledge of Zero Trust/Passwordless technologies and processes.
• Knowledge of large healthcare and/or educational environments, especially as it pertains to identity management.
• Knowledge of DevOps/DevSecOps and Agile practices.
• Knowledge of information security best practices and technologies.
• Knowledge of IT infrastructure technologies and protocols.
• Strong business acumen combined with hands-on technical expertise in an enterprise-wide identity team
• Ability to think critically and make decisions independently.
• Ability to produce professional-level documentation and reports
• Ability to conceptualize and develop creative system designs and solutions.
• Ability to deliver under tight deadlines.
• Must be able to work proactively and collaboratively in a very demanding and high-pressure environment

Licenses and Certifications

Working Conditions/Physical Demands

Weill Cornell Medicine is a comprehensive academic medical center that is committed to excellence in patient care, scientific discovery, and the education of future physicians and scientists in New York City and around the world. Our doctors and scientists - faculty from Weill Cornell Medical College, Weill Cornell Graduate School of Medical Sciences, and the Weill Cornell Physician Organization - are engaged in world-class clinical care and cutting-edge research that connect patients to the latest treatment innovations and prevention strategies. Located in the heart of the Upper East Side's scientific corridor, Weill Cornell Medicine's powerful network of collaborators extends to its parent university Cornell University; to Qatar, where an international campus offers a U.S. medical degree; and to programs in Tanzania, Haiti, Brazil, Austria and Turkey. Our medical practices serve communities throughout New York City, and our faculty provide comprehensive care at NewYork-Presbyterian Hospital/Weill Cornell Medical Center, NewYork-Presbyterian/Lower Manhattan Hospital, NewYork-Presbyterian Hospital/Brooklyn Methodist Hospital, NewYork-Presbyterian Hospital/Westchester Behavioral Health Center, and NewYork-Presbyterian/Queens. At Weill Cornell Medicine, we work together to treat each individual, not just their conditions or illnesses, as we strive to deliver the finest possible care for our patients - the center of everything we do. Weill Cornell Medicine is an Equal Employment Opportunity Employer. Weill Cornell Medicine provides equal employment opportunities to all qualified applicants without regard to protected status, including race, sex, sexual orientation, gender identity, national origin, color, age, religion, protected veteran or disability status, or genetic information.