Job Title: Senior Cyber Specialist – Consumer Identity
Location: St. Paul, MN (100% Onsite)
Contract Duration: 8 Weeks
Pay Rate: $65–$70/hour
Employment Type: W-2 Contract

Position Summary:

A leading organization in the healthcare and life sciences industry is seeking a Senior Cyber Specialist – Consumer Identity to perform a focused 8-week assessment of its consumer identity and access management (CIAM) environment. This high-profile engagement involves evaluating the configuration, governance, and security posture of a modern identity platform to ensure alignment with industry best practices, compliance frameworks, and organizational standards. The role requires cross-functional collaboration and direct engagement with architects, engineers, and product teams.

Key Responsibilities:

• Assess configuration and controls related to CIAM platforms, including MFA, password policies, API authentication, and identity federation (SAML, OIDC, OAuth).
• Evaluate authorization models such as RBAC, ABAC, and PBAC, and user lifecycle processes including provisioning, deprovisioning, and account synchronization.
• Analyze compliance with data protection regulations (e.g., GDPR, CCPA, HIPAA, PCI DSS), and validate consent and preference management mechanisms.
• Review change management procedures, access review processes, and governance documentation.
• Validate identity-related event logging, monitoring, and SIEM integration.
• Conduct interviews with stakeholders, review architectural artifacts, and gather evidence.
• Deliver a gap assessment report with findings and actionable recommendations.
• Present recommendations and security posture insights to key stakeholders as needed.

Qualifications:

• 5+ years of experience in identity architecture, cybersecurity, CIAM, or technology audit.
• Strong experience assessing consumer identity platforms (Auth0 preferred).
• Deep understanding of authentication protocols, authorization controls, and identity lifecycle management.
• Familiarity with identity federation standards (SAML, OIDC, OAuth) and emerging technologies (e.g., WebAuthn, Passkeys).
• Knowledge of industry standards such as NIST SP 800-63B and compliance frameworks (GDPR, HIPAA, PCI DSS).
• Proven ability to lead assessments, develop documentation, and communicate clearly with technical and non-technical teams.
• Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or related field.
• Preferred certifications: CISSP, CISA, CIAM, or equivalent.

Engagement Details:

• Start Date: Early August
• End Date: Late September (Target)
• Hours: 40/week, standard business hours
• Work Environment: 100% Onsite (St. Paul, MN); travel flexibility may be considered
• Interview Process: Single virtual interview via Microsoft Teams