IAM Security Engineer

Identity and Access Management (IAM) is a foundational security domain, sitting at the perimeter of everything we do, ensuring that only authorised entities can appropriately access company systems and user data is an essential protection, compliance and assurance cornerstone. 

We are seeking a skilled Identity and Access Management Specialist (Identity and Access Management Security Engineer to join the IT Engineering Infrastructure team at FloHealth. You will work on designing, developing, and integrating IAM solutions using scripting and automation to achieve scalable and efficient IAM practices . Infrastructure as a code will be your bread and butter. Your role will involve managing and enhancing the IT experience within our application landscape. At Flo Health, we are committed to delivering the best solutions possible.

Your Experience

Must have:

• 
  
• Extensive knowledge of Identity and Access Management, including RBAC/ABAC concepts and  operating policies.
  
• Customer-first mindset with an ownership mentality.
  
• System Administrator or Enterprise Applications Engineer with 5+ years of experience.
  
• Advanced skills in managing systems via Google Workspace, Okta Workflow, Jira Automation, Slack, and other industry-leading SaaS solutions.
  
• Experience with implementing and maintaining Zero-Trust concepts and policy enforcement.
  
• Experience using Terraform for  Infrastructure as Code (IaC) automation in CD/CI and VCS environments.
  
• Understanding and experience using or deploying device-based trust applications (Okta Verify, Google Beyondcorp, Cloudflare Zero Trust, etc).
  
• Impeccable technical documentation and KB writing skills.
  
• Work independently and organised, with the ability to prioritise a busy workload.
  
• Ability to collaborate with cross-functional team members that are dependencies to meet the customer's needs.
  
• Advanced level of thorough technical troubleshooting experience.
  

Nice to have:

• 
  
• Network and firewall knowledge
  
• Familiarity with identity governance administration concepts (IGA).
  
• Deep understanding of Information Technology and Security-related best practices to ensure integrity and protection.
  
• Working in a security-certified environment (e.g.SO 27001, SOC2, PCI DSS). 
  
• Ability to help with automation tasks where APIs or workflows need to be created to help increase efficiency in an existing process.
  
• You'll manage security dashboards (Google Workspace, Okta, CrowdStrike) and manage tasks to remediate tasks.
  
• Promote technology innovation by identifying and researching existing/available or new and relevant technologies.
  

What you'll be doing

You'll be responsible for:

• 
  
• Work with key stakeholders, including the VP Security, Director Cloud Engineering and Director IT to define Flo’s IAM strategy and policy 
  
• Lead identity holistically, you will have a complete picture view across enterprise and cloud service environments 
  
• Work with the Security Team to establish an Identity and Access Governance Model, performing regular posture assessments, Privileged / User Access Reviews (PUAR/UARs) and managing remediation
  
• You will have a deep understanding of IDP / SSO / Authentication tools, and will manage integrations between systems and environments 
  
• Manage the full identity lifecycle 
  
• Manage and maintain documented access rules 
  
• Ensure that segregation of duties and least privilege principles are embedded within access rules 
  
• Establish IAM programme KPIs and reporting 
  
• Document IAM processes and procedures  
  
• Engage in the planning, designing, development, and testing of systems or applications, both for software enhancements and new products, which may include cloud-based or internet-related tools.
  
• Facilitate the creation of enterprise IT solutions considering crucial aspects such as APIs, security, scalability, manageability, and usability, resulting in comprehensive and effective solutions.
  
• Identify opportunities to minimise technology expenses and complexity, seeking ways to optimise resources.
  
• Act as an escalation point and mentor for IT Engineers, adept at resolving technical issues pertaining to user identities and access management.
  
• Drive continuous improvements, actively participating in projects and service enhancements.
  
• Provide expert insights into the design of strategic initiatives, ensuring efficiency and reliability at a large scale.
  
• Ensure the reliability, resilience, security, and compliance of all business process automation.
  
• Collaborate with vendors throughout the development, installation, and troubleshooting of application systems and software to enhance the performance of supported applications.
  
• Fulfil the role of a technical point of contact, delivering IT solutions and applications based on defined architecture and requirements.
  
• Analyse requirements, conduct tests, and facilitate the seamless integration of application components.
  
• Ensure successful implementation of system improvements.
  
• Streamline processes and policies through automation.
  

#LI-Hybrid #LI-LM12