Help protect sensitive healthcare and pharmacy data by building and maintaining the identity systems that control who gets access to what. If you’re strong with Okta, Active Directory, SSO, and least-privilege thinking, this role sits right at the intersection of security, compliance, and real-world operations.
About Navitus
Navitus Health Solutions is a pharmacy benefits organization built as an alternative to traditional PBM models, focused on making medications more affordable by removing cost from the drug supply chain. Their culture supports diversity, creativity, growth, and strong service to customers and internal teams.
Schedule
Full-time remote role
Monday–Friday, 8am–5pm
Remote eligibility excludes residents of: AK, HI, ME, MS, NH, NM, ND, RI, SC, SD, WV, WY
What You’ll Do
- Design, implement, monitor, and evaluate IAM security controls using a least-privilege access model
- Build processes for the full user account lifecycle: create, modify, disable, and delete accounts across Okta Directory, Active Directory, O365, and downstream systems
- Configure and troubleshoot Okta SSO federations, including SAML-based SSO integrations with customer identity providers
- Build and configure Okta tenants for project teams and maintain synchronization with ADFS
- Triage and troubleshoot Okta performance issues, run platform health checks, and work with third-party support partners
- Develop and maintain IAM workflows for provisioning entitlements and managing ticket-based support requests
- Support IAM incident investigations and document security breaches to assess impact and exposure
- Install and manage IAM security tools that protect systems and infrastructure
- Maintain the IAM awareness training platform
- Assist in broader IAM strategy work, including deployment, administration, configuration, and support of IAM-related policies and procedures
- Strengthen monitoring and documentation frameworks to assess and improve IAM security posture
- Support general security engineering duties as needed
What You Need
- Bachelor’s degree OR 4+ years of equivalent experience (IAM, system administration, cybersecurity engineering)
- 2–5 years of experience in Identity and Access Management or a closely related area
- Strong Okta admin/architecture understanding, including multifactor and SSO platforms
- Experience with Active Directory and ADFS
- Familiarity with least privilege methodology, security rights, permissions, and groups
- Strong troubleshooting skills across networking and computer systems, plus comfort working fast while supporting users
- Ability to evaluate controls and analyze data, processes, policies, procedures, and systems
- Understanding of regulatory requirements and frameworks (PCI, HIPAA, GLBA, SOC; NIST, ISO 27002, etc.)
- Bonus: Office 365 and Azure provisioning experience
- Bonus: experience in regulated industries, especially healthcare (HIPAA, HITECH, PCI)
- Bonus: experience working with Agile Scrum/Kanban teams
- Certifications (preferred): CompTIA Network+, Security+, CySA+, GIAC GSec, Associate of (ISC)², CISSP, ISACA CISM, or similar
Benefits
- Health, Dental, and Vision insurance
- 20 days paid time off
- 4 weeks paid parental leave
- 9 paid holidays
- 401(k) match up to 5% (no vesting requirement)
- Adoption Assistance Program
- Flexible Spending Account
- Educational Assistance Plan and professional membership assistance
- Referral bonus program (up to $750)
Pay Range: $105,271 – $131,588/yr (plus 5% at-risk bonus eligibility).
This is one of those roles where the work is invisible when it’s done right and catastrophic when it’s not. If you’re built for precision and security discipline, apply.
Happy Hunting,
~Two Chicks…