This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

OpenLoop’s mission is to bring care anywhere by powering telehealth solutions at scale. We are seeking a Staff IAM Engineer to lead and evolve our Identity & Access Management program in a fast-paced, high-growth environment. This role combines deep technical expertise with people leadership.

• Lead, mentor, and develop a small team of IAM analysts; serve as a hands-on technical leader.
• Define and execute IAM strategy aligned with business growth and regulatory requirements.
• Establish and maintain IAM governance, policies, standards, and procedures.
• Partner with Security, Compliance, Engineering, IT, and Product teams to ensure secure access controls across platforms.
• Design, implement, and manage IAM solutions across cloud and SaaS environments.
• Oversee identity lifecycle management (joiner/mover/leaver processes).
• Implement RBAC/ABAC models aligned with least privilege principles.
• Manage SSO, MFA, PAM, and directory services integrations.
• Conduct access reviews and certifications to meet compliance requirements.
• Support audit readiness (HIPAA, SOC 2, HITRUST, etc.).
• Monitor IAM metrics and continuously improve automation and controls.
• Ensure IAM controls align with HIPAA requirements and PHI protection standards.
• Maintain documentation and evidence for audits and regulatory reviews.
• Partner with Compliance and Legal to interpret regulatory requirements, towards identifying and remediating access-related risks and vulnerabilities.

Qualifications

• 7+ years of experience in Identity & Access Management, with 2+ years in a senior or lead capacity.
• Experience leading or mentoring a small team.
• Strong experience with SSO, MFA, identity lifecycle management, and privileged access management.
• Deep knowledge of IAM best practices in regulated healthcare environments.
• Strong understanding of HIPAA, PHI safeguards, and related healthcare security standards.
• Experience in cloud-native environments (AWS, Azure, or GCP).
• Ability to thrive in a fast-paced startup environment with evolving priorities.
• Excellent communication skills and a collaborative, positive mindset.

Requirements

• Experience supporting SOC 2, HITRUST, or similar compliance frameworks.
• Familiarity with Zero Trust principles.
• Relevant certifications (CISSP, CISM, CIAM, Azure/AWS Security certs, etc.).
• Experience with IAM automation and infrastructure-as-code practices.

Benefits

• Medical, Dental, and Vision plans
• Flexible Spending/Health Savings Accounts
• Flexible PTO
• 401(k) + Company Match
• Life Insurance, Pet insurance, and more

Company Description

We have a relatively flat organizational structure here at OpenLoop. Everyone is encouraged to bring ideas to the table and make things happen. This fits in well with our core values of Autonomy, Competence and Belonging, as we want everyone to feel empowered and supported to do their best work.