Identity and Access Management Engineer

About us

LifeMD is a leader in virtual primary care, headquartered in NYC, and we're redefining how healthcare meets technology. Our vertically integrated digital care platform powers telemedicine, laboratory services, and pharmacy solutions, serving over 200 conditions across all 50 states.

At the heart of this transformation is our team of 50+ talented developers, engineers, and tech innovators building state-of-the-art systems that make healthcare smarter, faster, and more accessible. From architecting scalable backend systems to crafting intuitive user experiences, we are pushing boundaries every day.

Recognized as one of the fastest-growing healthcare tech companies (#166 on Deloitte Fast 500 in 2023), LifeMD is not just a healthcare company—it’s a tech company revolutionizing healthcare.

If you're passionate about building impactful technology, solving complex challenges, and seeing your code change lives, LifeMD is the place to grow, innovate, and make a difference.

Join us and let's build the future of healthcare—together. 🚀

About the role

We are seeking a talented and proactive Identity and Access Management (IAM) Engineer to play a pivotal role in securing our digital identity landscape. As an IAM Engineer, you will design, implement, and manage robust Identity and Access Management solutions across our cloud-native and SaaS-heavy environment. This is a critical position for someone who thrives on building secure, scalable, and automated access systems, especially within an organization that leverages Rippling (HRIS), Google Workspace, AWS, GCP, and numerous SaaS applications without a traditional Active Directory.

Core Responsibilities:

• Design, implement, and maintain comprehensive IAM solutions, covering identity lifecycle management (provisioning, de-provisioning), access governance, Single Sign-On (SSO), and Multi-Factor Authentication (MFA)
• Integrate and manage user identities and access seamlessly across Rippling, Google Workspace, AWS, GCP, and a wide array of SaaS applications
• Develop and enforce IAM policies, standards, and procedures in alignment with security best practices and regulatory requirements (e.g., HIPAA, SOX)
• Implement and manage Privileged Access Management (PAM) solutions to protect critical administrative accounts
• Automate user provisioning and de-provisioning processes, leveraging APIs and scripting, with Rippling as the authoritative source
• Perform regular access reviews and certifications to ensure the principle of least privilege is always maintained
• Monitor IAM systems for security incidents and anomalies, actively participating in incident response
• Provide expert-level technical support and troubleshooting for all IAM-related issues
• Collaborate cross-functionally with development, operations, and security teams to integrate IAM requirements into new systems and applications
• Stay abreast of the latest IAM technologies, security threats, and industry trends

Requirements

Basic Qualifications:

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field
• 3+ years of hands-on experience in Identity and Access Management (IAM) engineering or operations
• Strong experience with cloud-based IAM services in AWS (IAM, SSO, Organizations), GCP (Cloud IAM, Identity Platform) and SaaS application integrations
• Proficiency in managing user identities and access within Google Workspace
• Experience with SaaS application integrations using protocols like SAML, OIDC, OAuth, and SCIM
• Familiarity with HRIS integrations, specifically with Rippling for user lifecycle management
• Experience with Identity Providers (IdP) such as Okta, Azure AD, Ping Identity, or similar
• Knowledge of privileged access management (PAM) solutions (e.g., CyberArk, HashiCorp Vault)
• Scripting skills (e.g., Python, PowerShell, Bash) for automation and API integrations
• Understanding of network security principles and protocols (e.g., LDAP, Kerberos, DNS)
• Familiarity with security frameworks and compliance standards (e.g., NIST, ISO 27001, HIPAA, SOX)
• Proven ability to design, implement, and troubleshoot IAM solutions in a dynamic environment
• Experience with access review and certification tools

Preferred Qualifications:

• Relevant certifications such as CompTIA Security+, AWS Certified Security - Specialty, Google Cloud Professional Cloud Security Engineer, Okta Certified Professional, or similar

• Excellent analytical and problem-solving skills, especially for complex access issues
• Strong communication (written and verbal) and interpersonal skills, able to explain technical concepts to non-technical audiences
• Ability to work independently and collaboratively across different technical and business teams
• Detail-oriented with a strong commitment to accuracy and security
• Proactive and self-motivated with a continuous learning mindset
• Strong organizational skills and ability to manage multiple priorities
• Customer-service oriented approach to supporting user access

Benefits

• Salary Range: $130,000-$140,000
• Health Care Plan (Medical, Dental & Vision)
• Retirement Plan (401k, IRA)
• Life Insurance (Basic, Voluntary & AD&D)
• Unlimited PTO Policy
• Paid Holidays
• Short Term & Long Term Disability
• Training & Development