Identity and Access Management Analyst I

Location: Remote | United States

Job Type: Full Time | Category: Information Technology | Education: Master Degree

Job ID: 26964 | Posted: 2025-10-03

Salary: USD Negotiable

Vibrant Emotional Health is seeking an Analyst I, Identity and Access Management (IAM) to join our Cybersecurity team. This role will be involved in day-to-day operations of the in-place security solutions and will help protect the confidentiality, integrity, and availability of company data and systems. Projects may include implementing new IAM security solutions and participating in the creation and/or maintenance of IAM security policies, standards, baselines, guidelines, and procedures, as well as conducting vulnerability audits and assessments.

• Strategy & Planning: Participate in the planning and design of enterprise security architecture with a primary focus on Identity Access Management (IAM).
• Documentation: Participate in the creation of enterprise IAM security documents (policies, standards, baselines, guidelines, procedures).
• Continuity & Access Controls: Participate in the planning and design of business continuity and disaster recovery plans; design and implement access controls, authorization rules, and RBAC policies.
• RBAC & IAM Tools: Design and implement RBAC policies leveraging systems such as Okta, AWS, Azure, GCP, Microsoft AD, etc.

• Acquisition & Deployment: Maintain up-to-date knowledge of IAM security trends; recommend IAM security solutions or enhancements; assist in deployment, integration, and configuration of new and enhanced IAM solutions; collaborate with application owners to address deployment issues.

• Operational Management: Maintain baselines using CIS/CSA frameworks; manage and monitor in-place security solutions; review logs, respond to tickets, participate in investigations; assist in vulnerability assessments, penetration tests, and security audits; provide on-call IAM support; assist in reviewing access requests; manage user lifecycle provisioning and de-provisioning; audit IAM logs and incidents.

• Team Collaboration: Work with AppDev to remediate vulnerabilities in applications and ensure appropriate access controls.

• Security frameworks: Knowledge of NIST CSF/SP 800-53/171, CIS, CSA, ISO27000.
• Security tools: Familiarity with firewalls, WAF, SIEM, SOAR, MDR, IAM, PAM/PIM, network sniffers, IDS/IPS, SAST/DAST tools.
• IAM concepts: User provisioning, authentication, authorization, access control, identity lifecycle management; cloud/SaaS security knowledge; basic networking concepts; IAM technologies such as AWS, Azure, GCP, Microsoft AD; experience with Okta, Active Directory, LDAP; MFA, biometrics, SSO.

• Analytical and problem-solving abilities; strong prioritization and communication skills; ability to work under pressure; detail-oriented and team-focused; self-motivated with the ability to work independently or with teams.

• Experience: Minimum 2 years in an Identity Access Management role.
• Security experience: Minimum 1 year in network, server, and data storage security; Minimum 1 year with cloud-based security technologies.
• Standards: Preferred experience with HIPAA/HITECH, GDPR/HITRUST, FISMA, NIST, PCI.
• Protocols: Minimum 1 year with OAuth 2.0, OpenID Connect, SAML.
• Other: Penetration testing and malware reverse engineering experience is a plus.
• Education & Certification: College degree in Cybersecurity or related field; pursuing or achieving certifications such as CompTIA Security+, GIAC ISSF, Okta Certified, AWS Security Specialty, Microsoft Security, (ISC)2 CISSP, ISACA CISA/CISM.

• NA

Excellent comprehensive benefits, including medical, dental, vision, supplemental income insurance, pre-tax transit/parking, pre-tax FSA for medical/dependent care, and 401K. 4 weeks of vacation. Vibrant is an equal opportunity employer and considers applicants without regard to protected characteristics. We welcome candidates from diverse backgrounds.

Note: This role is listed as closed on 2025-11-02. If you are viewing this as an archived posting, it may no longer be accepting applications.