Sr. Security Analyst, Identity Access Management
Remote, USA
Lyra Health
Protecting our users' privacy and securing our data is critical to us at Lyra Health. This role will drive identity lifecycle management, identity governance and administration, and own the IAM strategy. The ideal candidate will be able to self-organize and work cross-functionally (with legal, product, engineering, data, clinical, and other business teams) to lead business efforts while enabling appropriate access levels. This role reports to the Head of Security.
This role can be carried out from our Burlingame, CA headquarters, hybrid, or fully remote/virtually. Remote candidates must be physically located within the United States.
Responsibilities
- Design and Implementation of Role Based Access Controls, Multi-Factor authentication, conditional access policies, and adaptive IAM based on organization requirements using risk based approach
- Leverage various IAM technologies (such as Okta, other ID/SaaS management tools) to verify or audit necessity and scope of individual or group access
- Process system access requests for a variety of business and technology applications, per internal procedure/policy and SLAs, furthering Lyra’s identity lifecycle management
- Participate in team discussions to offer additional perspectives and knowledge
- Active identification and management of internal and external IAM risks and opportunities for improvement
- Analyze and improve operational effectiveness as well as defining and upholding program objectives and access control standards
- Serve as SME for IAM related controls and activities
Qualifications
- 8+ years of relevant professional experience working within an organization in the areas of security, privacy, data protection and/or data governance
- Knowledge of the principles, practices and techniques of security and access control
- Proficiency in IAM technologies/solutions, such as identity governance, privileged access management, single sign-on, multi-factor authentication and how they integrate with other IT functions
- Functional abilities in SQL and database level access
- Excellent, effective communication skills (both written and oral)
- Bachelor's degree in a related field, or equivalent experience with relevant industry certification (CISSP, Sec+, GSEC, or other comparable certificates)
- Strong understanding of security domains outside of access control, such as Incident Response, BC/DR, network security design and architecture, endpoint protection, SSO, vulnerability management, intrusion detection, risk management, data loss prevention, and forensics.
Preferred Qualifications
- Working knowledge of Amazon Web Services and knowledge of cloud security concepts
- Past contributions to developing Information Technology and Information Security policies and controls in a regulated environment – Health Information Trust Alliance (HiTrust), SOC 2, ISO, SOX, and experience with other frameworks
Diversity & Inclusion at Lyra
- Diversity, equity, inclusion, and belonging (DEIB) at Lyra is essential to the way we deliver culturally responsive care, build and manage our provider network, and support holistic efforts to strengthen DEIB in workplaces around the world—including our own.
- People come to Lyra with a range of needs, backgrounds, and abilities that influence their response to mental health support. Our diverse network of providers delivers comprehensive mental health treatment and support rooted in culturally responsive care, a multicultural approach that accounts for the impact of cultural backgrounds on each person’s care experience.
- Learn more at https://www.lyrahealth.com/diversity-equity-inclusion-belonging/
By applying for this position, your data will be processed as per Lyra Health Workforce Privacy Notice. Through this application, we will collect personal information from you including your name, email address, gender identity, employment information, and phone number for the purposes of recruiting and assessing suitability, aptitude, skills, qualifications, and interests for employment with Lyra. We may also collect information about your race, ethnicity, and sexual orientation, which is considered sensitive personal information under the California Privacy Rights Act (CPRA). Providing this information is optional and completely voluntary. If you are a California resident and would like to limit how we use this information, please use the Limit the Use of My Sensitive Personal Information form. This information will only be retained for as long as needed to fulfill the purposes for which it was collected, as described above. Please note that Lyra does not “sell” or “share” personal information as defined by the CPRA. For more information about how we use and retain your information, please see our Workforce Privacy Notice.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISSP Cloud Forensics Governance GSEC HITRUST IAM Incident response Intrusion detection Network security Okta Privacy Risk management SaaS SLAs SOC SOC 2 SOX SQL SSO Strategy Vulnerability management
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs