About Cardinal Health

Cardinal Health, Inc. (NYSE: CAH) stands as a global powerhouse in healthcare services and products, proudly ranking among the top fifteen Fortune 500 companies. With approximately 50,000 employees worldwide, we deliver customized solutions to hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices, and patients at home. As a leading distributor of pharmaceuticals and specialty products, a global manufacturer and distributor of medical and laboratory essentials, an operator of nuclear pharmacies and manufacturing facilities, and a provider of cutting-edge performance and data solutions, Cardinal Health is healthcare's most trusted partner. Our customer-centric approach fuels continuous improvement and innovative solutions that enhance lives daily.

Role Overview

The Engineer, Information Security and Risk position within Cardinal Health's Information Technology department is a pivotal role focused on safeguarding our technology assets. This full-time, US-Nationwide-FIELD opportunity offers a disclosed salary range of $94,900 - $135,600 USD per year, with potential upside to $149,160 USD. Reporting to the Information Security and Risk team, you'll develop, implement, and enforce security controls, including system backups, disaster recovery, incident response, threat management, vulnerability scanning, virus management, intrusion detection, and risk assessments. Specializing in Identity and Access Management (IAM), particularly SailPoint IdentityIQ (IIQ), this role is crucial for M&A integrations, ensuring seamless identity governance in a dynamic healthcare environment.

Key Responsibilities

In this role, you'll drive critical IAM initiatives with a focus on M&A activities. Key responsibilities include:

• Collaborating with IAM leads and business partners to plan, design, and execute IAM integration strategies for mergers and acquisitions, assessing landscapes to identify challenges and solutions.
• Configuring and customizing SailPoint IIQ components like Lifecycle Manager and Compliance Manager, developing workflows, rules, and connectors for robust identity governance.
• Integrating SailPoint IIQ with enterprise applications, directories (Active Directory, LDAP, Azure AD), and cloud platforms, maintaining connectors for provisioning and de-provisioning.
• Writing and maintaining BeanShell scripts, Java code, and XML configurations, while developing custom SailPoint tasks and workflows.
• Managing the consolidation of disparate identity providers and user directories from acquired companies into Cardinal Health's infrastructure.
• Streamlining user lifecycle management for employees, contractors, and partners, automating onboarding, offboarding, and access reviews during M&A transitions.
• Ensuring compliance with regulations like GDPR, HIPAA, and SOX, providing auditable access records to prevent data breaches.
• Troubleshooting IAM issues and providing expert support to internal teams and end-users.
• Coordinating cross-functional teams across Information Security, IT Operations, HR, and Application Development.
• Maintaining comprehensive documentation, architecture diagrams, and staying abreast of IAM best practices and security trends.

Qualifications & Requirements

To excel in this Engineer, Information Security and Risk role at Cardinal Health, candidates must possess:

• Proven experience with SailPoint IdentityIQ (IIQ) – a must-have requirement.
• Hands-on expertise in SailPoint IIQ integrations with Workday, Active Directory/LDAP, Webservices, SCIM, JDBC, and SAP.
• Strong knowledge of implementing Lifecycle Manager (LCM) configurations, including workflows, Lifecycle Requests (Role or Entitlement), Lifecycle Events (Joiner, Mover, Leaver), and detailed LCM workflows/subprocesses.
• Solid understanding of identity governance principles, scripting (BeanShell, Java), and regulatory compliance in healthcare.

Ideal candidates bring a track record in M&A IAM projects, cross-functional collaboration, and a passion for securing healthcare data.

Benefits & Perks

Cardinal Health offers an exceptional benefits package designed for your well-being and professional success:

• Competitive base salary from $94,900 to $149,160 USD annually, reflecting market leadership.
• Comprehensive health, dental, and vision insurance with low premiums.
• 401(k) retirement savings with generous company matching.
• Flexible remote work in US-Nationwide-FIELD, promoting work-life balance.
• Paid time off, parental leave, and wellness programs.
• Professional development opportunities, including certifications in SailPoint and IAM.
• Employee stock purchase plans and performance bonuses.

Career Growth

At Cardinal Health, career advancement is a reality. This role positions you for progression into senior IAM engineering, security architecture, or leadership in IT security. With our global scale and focus on innovation, you'll gain exposure to cutting-edge technologies, M&A projects, and healthcare compliance. Internal mobility programs, mentorship, and tuition reimbursement empower your growth in a supportive environment.

Why Join Us

Joining Cardinal Health means contributing to healthcare's backbone while advancing your expertise in SailPoint IIQ and IAM. Work on high-impact M&A integrations that shape our Fortune 500 trajectory. Enjoy a collaborative culture, remote flexibility, and the pride of protecting sensitive patient data. Be part of innovative solutions that improve lives daily – apply today to elevate your career in healthcare IT security.

Role FAQs

Q: Is SailPoint IIQ experience required? A: Yes, it's a must-have qualification.

Q: What is the location flexibility? A: This is a US-Nationwide-FIELD role, fully remote within the United States.

Q: What salary can I expect? A: Disclosed range is $94,900 - $135,600 USD/year, with upside potential to $149,160 USD based on experience.

Q: Does this role involve M&A work? A: Absolutely, a core focus is IAM integration for mergers and acquisitions.

Q: What compliance standards are emphasized? A: GDPR, HIPAA, SOX, and internal security policies.