Senior Identity Engineer
Quick Summary
Who We Are: SmithRx is a rapidly growing, venture-backed Health-Tech company.
SmithRx is a rapidly growing, venture-backed Health-Tech company. Our mission is to disrupt the expensive and inefficient Pharmacy Benefit Management (PBM) sector by building a next-generation drug acquisition platform driven by cutting edge technology, innovative cost saving tools, and best-in-class customer service. With hundreds of thousands of members onboarded since 2016, SmithRx has a solution that is resonating with clients all across the country.
We pride ourselves for our mission-driven and collaborative culture that inspires our employees to do their best work. We believe that the U.S healthcare system is in need of transformation, and we come to work each day dedicated to making that change a reality. At our core, we are guided by our company values:
- Integrity: Our purpose guides our actions and gives us confidence in the path ahead. With unwavering honesty and dependability, we embrace the pressure of challenging the old and exemplify ethical leadership to create the new.
- Courage: We face continuous challenges with grit and resilience. We embrace the discomfort of the unknown by balancing autonomy with empathy, and ownership with vulnerability. We boldly challenge the status quo to keep moving forward—always.
- Together: The success of SmithRx reflects the strength of our partnerships and the commitment of our team. Our shared values bind us together and make us one. When one falls, we all fall; when one rises, we all rise.
Responsibilities
~2 min read- →Core IAM & Lifecycle Automation: Architect and manage HR-driven provisioning by integrating Okta with Workday (Workday-as-a-Master) to automate complex attribute mapping and secure JML (Joiner/Mover/Leaver) lifecycles.
- →SaaS Ecosystem Security: Engineer and deploy robust SSO (SAML 2.0, OIDC, OAuth 2.0) and SCIM provisioning for major enterprise applications, particularly Salesforce and Google Workspace.
- →Cloud Identity Architecture: Design least-privilege policies and manage AWS Identity Security, including cross-account role assumption, identity federation via Okta, and AWS SSO (Identity Center).
- →Policy-Based Access Control (PBAC): Implement decoupled authorization for cloud-native applications utilizing Open Policy Agent (OPA) and authoring strict access policies in Rego.
- →AI Agent Governance: Secure autonomous AI workflows by assigning distinct identities to AI models, governing their API access, and applying strict sandboxing to prevent unauthorized data retrieval.
- →Machine Identity Management: Own the lifecycle for traditional non-human identities (service accounts, OAuth tokens, API keys, X.509 certificates) to actively prevent secret sprawl across our cloud environment.
- →Contextual Access & Device Trust: Implement zero-trust device posture checks by integrating MDM telemetry and device certificates with Okta to enforce contextual, frictionless access for a mixed fleet of macOS and Windows endpoints.
- →Engineering Culture & Leadership: Mentor junior engineers, conduct rigorous architecture reviews, write clear documentation/runbooks, and elevate the overall identity security maturity of the team.
- →Experience: 5+ years of hands-on experience engineering, deploying, and managing enterprise IAM environments with deep Okta expertise.
- →Cloud Proficiency: Strong hands-on background in AWS IAM, OPA, Rego, and designing zero-trust cloud architectures.
- →NHI & Automation Expertise: Proven track record discovering, managing, and rotating machine identities, combined with a forward-looking approach to securing programmatic AI workflows.
- →Platform Integration Skills: Advanced experience integrating core HRIS platforms (Workday) with Identity Providers, alongside managing complex fleet authentication (macOS/Windows).
- →Regulated Environment Acumen: Solid understanding of access control principles required in highly regulated sectors (e.g., PBM, Healthcare, HIPAA, Privacy), including continuous access reviews and audit logging capabilities.
- →Operational Excellence: A demonstrated passion for maintaining detailed documentation and translating complex identity concepts into scalable, automated solutions.
Nice to Have
~1 min read- Certifications: Okta, AWS or SANS relevant Identity certifications.
- Advanced Compliance: Deep experience mapping identity controls directly to ISO, SOC2, HITRUST, and specific privacy regulation frameworks.
- Highly competitive wellness benefits including Medical, Pharmacy, Dental, Vision, and Life Insurance and AD&D Insurance
- Flexible Spending Benefits
- 401(k) Retirement Savings Program
- Short-term and long-term disability
- Discretionary Paid Time Off
- Paid Company Holidays
- Wellness Benefits
- Commuter Benefits
- Paid Parental Leave benefits
- Employee Assistance Program (EAP)
- Well-stocked kitchen in office locations
- Professional development and training opportunities
Location: US - Remote
Location & Eligibility
Listing Details
- Posted
- July 3, 2026
- First seen
- July 3, 2026
- Last seen
- July 3, 2026
Posting Health
- Days active
- 0
- Repost count
- 0
- Trust Level
- 75%
- Scored at
- July 3, 2026
Signal breakdown

SmithRx is on a mission to reduce the the complexity and costs of pharmacy benefits with radical transparency and cutting-edge technology.
View company profilePlease let Smithrx know you found this job on Jobera.
3 other jobs at Smithrx
View all →Explore open roles at Smithrx.
Similar Identity Engineer jobs
View all →Browse Similar Jobs
Stay ahead of the market
Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.
No spam. Unsubscribe at any time.