Company Introduction
Availity is one of the leading health information networks in the United States, processing more than 4 billion transactions annually and connecting more than two million healthcare providers and over two thousand technology partners to health plans nationwide. Our teams of technology, business, and customer service professionals in Bangalore, India, are working together to transform healthcare delivery in the United States through innovation and collaboration. Our technologists help develop cutting-edge revenue cycle solutions that help hospitals, health systems, and physicians maximize payments and optimize their workflows.
Availity is a diverse group of people whose talents, curiosity and passion steer the company to create innovative solutions for the US Healthcare industry. If you are a driven, creative and collaborative individual, with exceptional technology skills to drive innovation, we want to hear from you.
Job Description
• We are looking for an experienced Product Manager to join our platform team and take full ownership of the User & Organization (U&O) domain — the foundational layer that governs identity, access, and organizational lifecycle across all Availity products.
• This is a high-trust, high-visibility role. You will own a platform capability that every Availity product and partner depends on, working at the intersection of user experience, security, compliance, and backend platform engineering. The right person brings strong product management fundamentals, deep expertise in identity and access management, and the confidence to lead from day one. Familiarity with the US healthcare ecosystem is a plus, not a prerequisite.
Roles & Responsibilities
What You'll Own :
User identity and lifecycle management across a large-scale, multi-tenant SaaS platform
Organization onboarding, hierarchy, and membership management for healthcare entities
Role-based access control (RBAC), permission models, and entitlement services
Identity and Authenticator Assurance Level (IAL/AAL) compliance, aligned to NIST SP 800-63
Admin user experiences — Org Admin and User Admin workflows, delegation, and audit capabilities
API-driven provisioning surfaces used by internal product teams and external integration partners
Backlog prioritization, sprint execution, and roadmap communication for the U&O platform team
What You'll Do
Define and Drive the Roadmap:
Own the product vision and roadmap for U&O, aligned to platform strategy and organizational goals
Lead continuous product discovery, including customer interviews, data analysis, and validation, to ground roadmap decisions in real user and business outcomes
Make transparent, well-reasoned prioritization decisions balancing user needs, compliance requirements, technical health, and business impact
Lead quarterly planning with engineering, architecture, and go-to-market partners
Drive Initiatives & Execution:
Break roadmap initiatives into well-scoped epics, user stories, and acceptance criteria that account for security boundaries, error states, and downstream dependencies
Partner closely with engineering through refinement, planning, review, and retro as an engaged product leader who shapes solutions and unblocks delivery, not a passive facilitator
Define, track, and act on product health and adoption metrics for the U&O domain, using outcomes to steer the next set of initiatives
Manage Stakeholders & Communicate:
Align stakeholders across product, engineering, security, and leadership around priorities and tradeoffs, setting clear expectations and keeping everyone informed on progress and change
Serve as the primary product voice for U&O to internal platform consumers, application teams, and external partners
Partner with security, compliance, and legal to maintain HIPAA, HITRUST, and NIST 800-63 alignment across all identity flows
Engage directly with healthcare organization admins and user admins to understand real-world onboarding and access management pain points
Think Platform-First:
Ensure U&O capabilities are built as reusable platform services, not one-off product features
Engage credibly with engineers and architects on API design, data models, and system behavior — not just user-facing requirements
Own the developer-facing API experience for access provisioning used by internal and external integrators
If interested feel free to share your resume along with the below details.
Eligibility
What We're Looking For:
Experience:
8+ years in Product Management, with a proven record of owning products end to end, from discovery through delivery and iteration
Strong product management core skills: customer discovery, product strategy, roadmap definition, stakeholder alignment, and data-informed prioritization
5+ years specifically in identity, access management, user management, or organizational management platforms
Demonstrated experience delivering IAL/AAL-compliant identity flows in production systems — NIST SP 800-63 familiarity is required, not a nice-to-have
Experience designing and owning RBAC models in multi-tenant SaaS environments
Good to have: background in US healthcare, health information networks, or healthcare-adjacent regulated industries
Domain Knowledge:
Understanding of HIPAA Security Rule requirements as they relate to user access, minimum necessary standards, and audit controls
Knowledge of OAuth 2.0, OpenID Connect, SAML 2.0, and session management in the context of identity federation
Good to have - working knowledge of the US healthcare ecosystem: payer-provider relationships, org types (health systems, physician groups, billing companies, payers), and how access needs differ across them
Good to have - Familiarity with NPI, TIN/EIN, credentialing, and how these inform organizational verification and user provisioning in healthcare networks
Technical Fluency:
Ability to read API specifications and participate meaningfully in API design discussions — not just consume the output
Working understanding of directory services (LDAP, SCIM), token-based authentication, and microservices architecture patterns
Comfort working in Agile/Scrum environments with engineering teams on technical debt, platform design, and system behavior definition
Differentiators:
Experience at a health information network, clearinghouse, payer, or provider-facing digital health platform
Prior work with CIAM platforms (Okta, Ping Identity, ForgeRock, Auth0) as a product owner or solution designer
Familiarity with SCIM 2.0 provisioning, bulk user management patterns, or enterprise directory sync
HITRUST CSF awareness, particularly around access management and identity assurance controls
Who You Are:
You have genuinely owned an identity or access management product — not just contributed to one
You can explain IAL2 proofing requirements to a non-technical stakeholder and then turn around and review an API spec with an engineer
You quickly build empathy for non-technical admins, such as credentialing coordinators and IT managers, and design for their real workflows rather than for power users
You make prioritization decisions with confidence, communicate tradeoffs clearly, and don't need perfect information to move
You use AI tools as a genuine accelerant in your work — for discovery, synthesis, and analysis — and you know where to apply your own judgment over AI output
You're ready to own initiatives and drive delivery from day one.
Video Camera Usage:
Availity fosters a collaborative and open culture where communication and engagement are central to our success. As a remote first company, we are also camera-first and provide all associates with camera/video capability to simulate the office environment. If you are not able to use your camera for all virtual meetings, you should not apply for this role.
Having cameras on helps create a more connected, interactive, and productive environment, allowing teams to communicate more effectively and build stronger working relationships. The usage of cameras also enhances security and protects sensitive company information. Video participation is required to ensure that only authorized personnel are present in meetings and to prevent unauthorized access, data breaches, preventing social engineering, or the sharing of confidential information with non-participants.