Identity and Access Management Engineer - LifeMD : Job Details

About usLifeMD is a leader in virtual primary care, headquartered in NYC, and we're redefining how healthcare meets technology. Our vertically integrated digital care platform powers telemedicine, laboratory services, and pharmacy solutions, serving over 200 conditions across all 50 states.At the heart of this transformation is our team of 50+ talented developers, engineers, and tech innovators building state-of-the-art systems that make healthcare smarter, faster, and more accessible. From architecting scalable backend systems to crafting intuitive user experiences, we are pushing boundaries every day.Recognized as one of the fastest-growing healthcare tech companies (#166 on Deloitte Fast 500 in 2023), LifeMD is not just a healthcare company—it's a tech company revolutionizing healthcare.If you're passionate about building impactful technology, solving complex challenges, and seeing your code change lives, LifeMD is the place to grow, innovate, and make a difference.Join us and let's build the future of healthcare—together.About the roleWe are seeking a talented and proactive Identity and Access Management (IAM) Engineer to play a pivotal role in securing our digital identity landscape. As an IAM Engineer, you will design, implement, and manage robust Identity and Access Management solutions across our cloud-native and SaaS-heavy environment. This is a critical position for someone who thrives on building secure, scalable, and automated access systems, especially within an organization that leverages Rippling (HRIS), Google Workspace, AWS, GCP, and numerous SaaS applications without a traditional Active Directory.Core Responsibilities:Design, implement, and maintain comprehensive IAM solutions, covering identity lifecycle management (provisioning, de-provisioning), access governance, Single Sign-On (SSO), and Multi-Factor Authentication (MFA)Integrate and manage user identities and access seamlessly across Rippling, Google Workspace, AWS, GCP, and a wide array of SaaS applicationsDevelop and enforce IAM policies, standards, and procedures in alignment with security best practices and regulatory requirements (e.g., HIPAA, SOX)Implement and manage Privileged Access Management (PAM) solutions to protect critical administrative accountsAutomate user provisioning and de-provisioning processes, leveraging APIs and scripting, with Rippling as the authoritative sourcePerform regular access reviews and certifications to ensure the principle of least privilege is always maintainedMonitor IAM systems for security incidents and anomalies, actively participating in incident responseProvide expert-level technical support and troubleshooting for all IAM-related issuesCollaborate cross-functionally with development, operations, and security teams to integrate IAM requirements into new systems and applicationsStay abreast of the latest IAM technologies, security threats, and industry trendsBasic Qualifications:Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field3+ years of hands-on experience in Identity and Access Management (IAM) engineering or operationsStrong experience with cloud-based IAM services in AWS (IAM, SSO, Organizations), GCP (Cloud IAM, Identity Platform) and SaaS application integrationsProficiency in managing user identities and access within Google WorkspaceExperience with SaaS application integrations using protocols like SAML, OIDC, OAuth, and SCIMFamiliarity with HRIS integrations, specifically with Rippling for user lifecycle managementExperience with Identity Providers (IdP) such as Okta, Azure AD, Ping Identity, or similarKnowledge of privileged access management (PAM) solutions (e.g., CyberArk, HashiCorp Vault)Scripting skills (e.g., Python, PowerShell, Bash) for automation and API integrationsUnderstanding of network security principles and protocols (e.g., LDAP, Kerberos, DNS)Familiarity with security frameworks and compliance standards (e.g., NIST, ISO 27001, HIPAA, SOX)Proven ability to design, implement, and troubleshoot IAM solutions in a dynamic environmentExperience with access review and certification toolsPreferred Qualifications:Relevant certifications such as CompTIA Security+, AWS Certified Security - Specialty, Google Cloud Professional Cloud Security Engineer, Okta Certified Professional, or similarExcellent analytical and problem-solving skills, especially for complex access issuesStrong communication (written and verbal) and interpersonal skills, able to explain technical concepts to non-technical audiencesAbility to work independently and collaboratively across different technical and business teamsDetail-oriented with a strong commitment to accuracy and securityProactive and self-motivated with a continuous learning mindsetStrong organizational skills and ability to manage multiple prioritiesCustomer-service oriented approach to supporting user accessSalary Range: $130,000-$140,000Health Care Plan (Medical, Dental & Vision)Retirement Plan (401k, IRA)Life Insurance (Basic, Voluntary & AD&D)Unlimited PTO PolicyPaid HolidaysShort Term & Long Term DisabilityTraining & Development#J-18808-Ljbffr