Senior IAM Engineer

Kyruus' mission is to connect people to the right care, in pursuit of our vision: a better healthcare system- one that's transparent and accessible- where everyone gets the care they need. At Kyruus, our values are at the heart of everything we do:
We care deeply – We do the right thing even if it’s the harder thing. We are fiercely driven – We harness our curiosity to pursue continuous improvement and create simple solutions to complex problems.We lead with respect – We celebrate the individual traits that make each of us unique and seek out diverse voices to listen and learn.We are accountable – We do what we promise for each other and our customers.
Here’s what that would mean for you in the Senior IAM Engineer role.●      Care:  Work across multiple team settings and collaborate in the deployment of IAM technologies and processes.●      Driven:  Resolving technical issues in the IAM Platform through problem tracking, diagnosis and root-cause analysis, replication, troubleshooting, and resolution for moderately complex issues.●      Respect:  Serve as a key technical resource for any IAM efforts, projects, and applications with an understanding of Identity & Access Management concepts and the implementation and auditing of IAM compliance.●      Accountable: Manage our current IAM environment across the enterprise and the integrations and automation with other systems including HRIS, G Suite, O365, development tools and other enterprise platforms.

What you will do in a Senior IAM Engineer role at Kyruus:

• Identify and address issues and vulnerabilities in the current design, and troubleshoot and resolve operational issues.
• Consolidate IAM environments and where necessary, retire IAM components that are no longer in use.
• Monitor and maintain IAM systems.
• Advise on IAM solutions and best practices.
• Analyze, design, implement, and maintain all layers of IAM applications, including Authorization/Authentication and Account Creation/Management/Provisioning in data repositories.
• Enable SSO integration with other application platforms and environments. This includes integration with endpoint desktop and mobile platforms for authentication.
• Ensure that our IAM design and implementation is in compliance with legal regulatory requirements (SOC2, HITRUST, etc.)
• Provide operational support for our IAM environment and IAM-related integrations / automation with other enterprise applications.
• You’ll report to the Director, Corporate IT in the R+D Engineering Department within the Corporate IT/Engineering Division.

How You Can Grow
• Kyruus will bring you through an onboarding process that is both structured and self-guided,  designed to enable connection and productivity as you learn more about our company, functions and products.  Additionally, we have a culture of feedback, inclusive of our performance review process that provides you with the coaching, resources and opportunities to help you learn and grow with us.
• Kyruuvians in the Senior IAM Engineer role can move in a more linear career path to a Senior IAM Engineer II position.  From there, you could move into a Principal level role or explore a management position within the Corporate IT vertical.
• Kyruus also loves to see an internal transfer. If a linear career path is not what you’re looking for, you can work with your manager and HR to explore lateral moves to other parts of the organization as you continue to grow with us.

What you will bring:

• 5+ years of experience in Identity and Access management.
• 5+ years of experience managing, architecting, and maintaining an Okta IAM platform.
• 3+ years of experience with directory services, Active Directory, Azure AD, LDAP.
• 3+ years of experience with IAM concepts including CIAM, Privilege IAM, Identity governance, provisioning, user lifecycle operations, federation, MFA, directory Integration (AD/LDAP).
• Demonstrated knowledge of modern identity and access management concepts and best practices, such as privileged user accounts, least-privileged access model, segregation of duties, etc.
• Knowledge of other IAM platforms Okta, PingFederate, RSA Adaptive Auth & RSA Secure ID preferred.
• Understanding and experience with Cloud Identity as a Service such as AWS IAM, Microsoft Azure Active Directory, and Identity Federation protocols such as SAML2, WS-Federation, OAuth2, OIDC is preferred.
• Working experience with SCIM and knowledge of modern authentication standards such as WebAuth & FIDO2.
• Strong problem-solving and troubleshooting skills.
• Clear and accurate written and verbal communication, can follow directions and provides useful feedback.
• Ability to manage tasks independently and take ownership of responsibilities.
• Strong customer focus with ability to manage customer expectations and experience.
• Strong team-oriented interpersonal skills with the ability to interface with a broad range of people and roles.
• Critical thinking skills to evaluate alternatives and present solutions that are consistent with business objectives and strategy.
• Experience analyzing business requirements and translating them into technical solutions.

Equal Opportunity Employer
Kyruus is dedicated to providing equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, gender, national origin, citizenship, age, disability, sexual orientation, genetic information. We will not discriminate, in any employment decision, against any individual or group on the basis of race, color, religion, sex, gender, national origin, citizenship, age, disability, sexual orientation, genetic information, or veterans/national guard/military reserve status. This shall be done in compliance with all applicable federal, state, and local laws in every location in which Kyruus has facilities.