Sr. Security Analyst (Remote - U.S. only)

Responsibilities

• Provide users with appropriate, role-based access and services in accordance with industry standard Identity and Access Management (IAM) principles
• Control permissions for who can access what information, working on a default basis of least-privilege and zero-trust
• Process system access requests for a variety of business and technology applications, per internal procedure/policy and SLAs, furthering Lyra’s identity lifecycle management
• Leverage various IAM technologies (such as Okta, other ID/SaaS management tools) to verify necessity and scope of individual or group access
• Act as a leader within the Security organization to support fellow members and actively contribute to the growth and development of the security team
• Develop and drive IAM strategy
• Analyze and improve operational effectiveness as well as defining and upholding program objectives and access control standards
• Active identification and management of internal and external IAM risks and opportunities for improvement
• Serve as SME for IAM related controls and activities, including audit support

Qualifications

• At least 6+ years of relevant professional experience working within an organization in the areas of security, privacy, data protection and/or data governance
• Knowledge of the principles, practices and techniques of security and access control
• Proficiency in IAM technologies/solutions, such as identity governance, privileged access management, single sign-on, multi-factor authentication and how they integrate with other IT functions
• Functional abilities in SQL and database level access
• Excellent, effective communication skills (both written and oral)
• Bachelor's degree in a related field, or equivalent experience with relevant industry certification (CISSP, Sec+, GSEC, or other comparable certificates)
• Strong understanding of security domains outside of access control, such as Incident Response, BC/DR, network security design and architecture, endpoint protection, SSO, vulnerability management, intrusion detection, risk management, data loss prevention, and forensics.
• Experience leading and mentoring teams

Preferred Qualifications

• Working knowledge of Amazon Web Services and knowledge of cloud security concepts
• Past contributions to developing Information Technology and Information Security policies and controls in a regulated environment – Health Information Trust Alliance (HiTrust), SOC 2, ISO, SOX, and experience with other frameworks
• Managing and supervising a team, ensuring performance goals and objectives are met

Diversity & Inclusion at Lyra

• Diversity, equity, inclusion, and belonging (DEIB) at Lyra is essential to the way we deliver culturally responsive care, build and manage our provider network, and support holistic efforts to strengthen DEIB in workplaces around the world—including our own.
• People come to Lyra with a range of needs, backgrounds, and abilities that influence their response to mental health support. Our diverse network of providers delivers comprehensive mental health treatment and support rooted in culturally responsive care, a multicultural approach that accounts for the impact of cultural backgrounds on each person’s care experience. Learn more at https://www.lyrahealth.com/diversity-equity-inclusion-belonging/

• Comprehensive healthcare coverage (including medical, dental, vision, FSA/HSA, life and disability insurances)
• Lyra for Lyrians; coaching and therapy services
• Equity in the company through discretionary restricted stock units
• Competitive time off with pay policies including vacation, sick days, and company holidays
• Paid parental leave
• 401K retirement benefits
• Monthly tech stipend
• We like to spread joy throughout the year with well-being perks and activities, surprise swag, free food and snack deliveries each month, regular community celebration…and more!