Identity and Access Management Security Engineer (IAM)Flo Health

Identity and Access Management (IAM) is a foundational security domain, sitting at the perimeter of everything we do, ensuring that only authorised entities can appropriately access company systems and user data is an essential protection, compliance and assurance cornerstone. 

We are seeking a skilled Identity and Access Management Engineer to join the IT Engineering team at Flo Health. You will work on implementing improvements to our IAM programme,  integrating IAM solutions using scripting and automation to achieve scalable and efficient IAM practices and running and maintaining the programme from a technical standpoint . You will be familiar with Infrastructure as a Code and have strong experience of working with Okta. Your role will involve managing and enhancing the IT experience within our application landscape. At Flo Health, we are committed to delivering the best solutions possible.

What you'll be doing

You'll be responsible for:

• Work with key stakeholders, including the VP Security, Director Cloud Engineering and Director IT to support the ongoing improvement of Flo’s IAM strategy and policy, looking holistically at IAM, you will have a complete picture view across enterprise, development and cloud service environments. 
• Work with the Security Team to execute the IAM Governance Model, Privileged / User Access Reviews (PUAR/UARs). 
• You will have a deep understanding of IDP / SSO / Authentication tools, and will manage integrations between systems and environments. 
• Manage the full identity lifecycle. 
• Manage and maintain documented access rules, ensuring that segregation of duties and least privilege principles are embedded within access rules. 
• Maintain documented IAM processes and procedures.  
• Engage in the planning, designing, development, and testing of systems or applications, both for software enhancements and new products, which may include cloud-based or internet-related tools.
• Act as an escalation point and mentor for IT Engineers, adept at resolving technical issues pertaining to user identities and access management.
• Drive continuous improvements, actively participating in projects and service enhancements.
• Provide expert insights into the design of strategic initiatives, ensuring efficiency and reliability at a large scale.
• Ensure the reliability, resilience, security, and compliance of all business process automation.
• Collaborate with vendors throughout the development, installation, and troubleshooting of application systems and software to enhance the performance of supported applications.
• Fulfil the role of a technical point of contact, delivering IT solutions and applications based on defined architecture and requirements.
• Analyse requirements, conduct tests, and facilitate the seamless integration of application components.
• Ensure successful implementation of system improvements.
• Streamline processes and policies through automation.

Your Experience

Must have:

• Extensive knowledge of Identity and Access Management, including RBAC/ABAC concepts and  operating policies.
• Customer-first mindset with an ownership mentality.
• System Administrator or Enterprise Applications Engineer with 5+ years of experience.
• Advanced skills in managing systems via Google Workspace, Okta Workflow, Jira Automation, Slack, and other industry-leading SaaS solutions.
• Experience with implementing and maintaining Zero-Trust concepts and policy enforcement.
• Understanding Terraform for Infrastructure as Code (IaC) automation in CD/CI and VCS environments.
• Understanding and experience using or deploying device-based trust applications (Okta Verify, Google Beyondcorp, Cloudflare Zero Trust, etc).
• Impeccable technical documentation and KB writing skills.
• Work independently and organised, with the ability to prioritise a busy workload.
• Skilled in collaborating effectively with cross-functional team members to address dependencies and ensure customer needs are met.
• Advanced level of thorough technical troubleshooting experience.

Nice to have:

• Network and firewall knowledge.
• Familiarity with identity governance administration concepts (IGA).
• Deep understanding of Information Technology and Security-related best practices to ensure integrity and protection.
• Working in a security-certified environment (e.g.SO 27001, SOC2, PCI DSS). 
• Promote technology innovation by identifying and researching existing/available or new and relevant technologies.

#LI-Hybrid #LI-LM12