SIGN IN
SSO Technical Lead jobs in United States
cer-icon
Apply on Employer Site
company-logo

Machinify · 23 hours ago

SSO Technical Lead

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
date5+ years exp
Machinify is a leading healthcare intelligence company focused on delivering value and efficiency to health plan clients. They are seeking an SSO Technical Lead to drive the design and implementation of single sign-on across all enterprise applications, ensuring secure and seamless authentication experiences while adhering to cybersecurity standards.
AnalyticsArtificial Intelligence (AI)Business IntelligenceMachine LearningPredictive AnalyticsSaaS
check
H1B Sponsor Likelynote

Responsibilities

Lead the end-to-end implementation of SSO for all enterprise applications — including HR, Order Management, Operations, Sales, Service, Legal, and Procurement systems
Design and configure identity integrations using Entra ID (Azure AD), Okta, or similar identity providers to enable SAML, OIDC, and OAuth-based authentication
Implement layered security controls that align with the NIST and HITRUST particularly regarding protection of PHI ( Protected Health Information) and personally identifiable data
Apply least privilege access principles across all SSO-enabled applications to ensure users and service accounts have the minimal required access for their roles
Partner cross-functionally with system owners, InfoSec, and application teams to assess requirements, plan integrations, and execute go-live with secure authentication flows
Standardize and document SSO integration patterns, metadata exchange, and token policies to ensure scalability, consistency, and auditability
Collaborate with InfoSec to enforce MFA, conditional access, and continuous monitoring for privileged and non-privileged accounts
Maintain and enhance existing SSO configurations, certificates, and policies to support business continuity and compliance with company security policies
Evaluate and onboard new SaaS applications, ensuring that each integration adheres to layered security and least privilege principles
Troubleshoot and resolve SSO integration issues across multiple identity providers and environments with a focus on security and operational resilience
Provide mentorship and knowledge sharing within the IT Applications and Security teams on identity, access management, and cybersecurity best practices

Qualification

SSO implementationMicrosoft Entra IDSAML 2.0OAuth 2.0NIST Cybersecurity FrameworkOktaIdentity ManagementLayered security architectureTroubleshooting authenticationProject managementCross-functional collaborationMentorshipCommunication skillsDocumentation

Required

Bachelor's degree in Computer Science, Information Systems, or related field
5+ years of experience in IT Applications, Identity Management, or System Integration roles
Proven experience implementing SSO using Microsoft Entra ID (Azure AD), Okta, Ping, or equivalent
Strong understanding of SAML 2.0, OAuth 2.0, OIDC, and SCIM standards
Experience integrating SSO with SaaS and on-premise applications (e.g., Workday, Paycom, Salesforce, SAP, Oracle, ServiceNow, Coupa, DocuSign)
Practical knowledge of the NIST Cybersecurity Framework, and HITRUST particularly as it applies to authentication, identity, and access control
Solid understanding of layered security architecture implementing defense-in-depth controls across network, application, and identity layers
Demonstrated experience enforcing least privilege access, role-based permissions, and segregation of duties
Strong troubleshooting skills in authentication flows, certificates, and federation services
Ability to balance hands-on technical work with stakeholder communication, project management, and documentation
Proven ability to work cross-functionally and influence teams in a fast-paced environment

Preferred

Familiarity with identity governance and administration (IGA) frameworks and lifecycle automation
Exposure to API-based integrations, automation scripts (PowerShell, Python), or workflow orchestration tools
Experience in a high-tech or SaaS environment supporting enterprise business systems
Security certifications (CISSP, CISM, or Microsoft Identity and Access certifications) are a plus

Benefits

Top Medical/Dental/Vision offerings
FSA/HSA
Tuition reimbursement
Competitive salary, 401(k) with company match
Unlimited PTO
Additional health and wellness benefits and perks
Flexible and trusting environment where you’ll feel empowered to do your best work

Company

Machinify

twittertwitter
company-logo
Machinify is a SaaS platform that enables non-technical enterprises to build AI-powered products and processes.
dateFounded in 2016
location
Palo Alto, California, USA
people-size1001-5000 employees
web-link
http://www.machinify.com

H1B Sponsorship

Machinify has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (12)
2024 (6)
2023 (3)
2022 (3)
2021 (4)
2020 (5)

Funding

Current Stage
Late Stage
Total Funding
$12.79M
Key Investors
Battery Ventures
2025-01-10Acquired
2018-10-08Series A· $10M
2016-03-15Seed· $2.79M

Leadership Team

leader-logo
Edward Lichty
Strategic Operations
linkedin
leader-logo
Prasanna Ganesan
EVP & Chief Product Officer
linkedin

Recent News

MarketScreener
Holt exits New Mountain to create $30 billion health-tech venture
2025-12-19
Dallas Morning News
Machinify, a Dallas health care data company, completes $670M acquisition
2025-10-24
globallegalchronicle.com
Machinify Acquires Performant Healthcare for $670 Million
2025-10-24
Company data provided by crunchbase