Google Workspace & DLP Specialist

Lyra Health Inc

CA

JOB DETAILS
SALARY
$95,000–$131,000 Per Year
SKILLS
Artificial Intelligence (AI), Automation, Cloud Computing, Command Line, Configuration Management, Cost Effectiveness Analysis, Data Sets, Diversity, Ecosystems, GCP (Good Clinical Practices), Google Apps, Google Chrome Browser, Google Directory, Healthcare, Healthcare Providers, Help Desk, Information/Data Security (InfoSec), Intellectual Property (IP), Laptop PC, Leadership, Legal, Loss Prevention, Maintain Compliance, Malware, Manufacturing Data Management, Microsoft Windows Azure, Mobile Devices, OAuth, Phishing, Privacy Protocols, Project/Program Management, Psychiatry and Mental Health, Scripting (Scripting Languages), Security Auditing, Security Monitoring, Security Protocols, Technical Support, Training/Teaching
LOCATION
CA
POSTED
30+ days ago

Google Workspace & DLP Specialist

United States Technology - Technology Operations Full-time Remote Apply for this job

About Lyra Health

Lyra Health is the leading provider of mental health solutions for employers supporting more than 20 million people globally. The company has delivered 13 million sessions of mental health care, published more than 20 peer-reviewed studies, and delivered unmatched outcomes in terms of access, clinical effectiveness, and cost efficiency. Extensive peer-reviewed research confirms Lyras transformative care model helps people recover twice as fast and results in a 26% annual reduction in overall healthcare claims costs. Lyra is transforming access to life-changing mental health care through Lyra Empower, the only fully integrated AI-powered platform combining the highest-quality care and technology solutions.

About the Role

We are looking for a talented and tenured Google Workspace Administrator to act as the primary technical expert for our Google Workspace environment. This critical role involves advanced administration, configuration, security, and automation to ensure a secure, optimized, and compliant cloud-based operation. Along with Google Workspace expertise, this specialist will drive various DLP and security ops efforts.

Remote candidates must be physically located within the United States.

Responsibilities

  • Google Workspace Administration & Automation
  • Serve as the Tier 3 administrator and escalation point for all aspects of Google Workspace, managing complex configurations, security settings, and Organizational Units (OUs).
  • Manage the full user lifecycle, provisioning, de-provisioning, across the GWS domain.
  • Demonstrate deep hands-on expertise in the entire GWS suite, including the Security Center, Investigation Tool, Google Vault, and Audit Logs.
  • Develop and implement automation solutions using Google Apps Script, GAS, and/or Google Cloud Platform (GCP) services, such as Cloud Functions, to streamline provisioning, reporting, and administrative workflows.
  • Implement and manage advanced security controls, including Context-Aware Access, CAA, advanced phishing and malware protection, and secure data sharing policies.
  • Utilize GWS Audit Logs for security monitoring, compliance, and internal investigations.
  • Provide advanced technical support for all end-user issues related to core Google Workspace services.
  • Third-Party App Governance
  • Responsibility for vetting and managing OAuth tokens and third-party marketplace apps to prevent data exfiltration.
  • Project Management
  • Proven ability to lead complex projects, such as domain consolidations, tenant-to-tenant migrations, or global security hardening initiatives.
  • eDiscovery & Security Operations
  • Lead and execute security and HR-mandated internal investigations using the Google Workspace Investigation Tool for complex data searches across Drive, Gmail, and Chat.
  • Manage eDiscovery and Legal Hold processes using Google Vault, ensuring chain-of-custody for evidentiary purposes and exporting compliant data sets.
  • Develop and deliver security awareness training focused on safe data handling and proper use of Google Workspace tools.
  • DLP Data Loss Prevention
  • Designing and maintaining DLP rules for Drive and Gmail to protect Personal Information and Intellectual Property (PIIPHI).
  • Chrome Browser Management
  • Managing Chrome at the enterprise level, profiles, extensions, and security policies.
  • Mobile Device Management (MDM)
  • Overseeing Google Endpoint Management for mobile and laptop devices.
  • Shared Drive Governance
  • Establishing and maintaining Shared Drive governance, including naming conventions, membership lifecycle, and external sharing restrictions.
  • Long-term Storage Optimization
  • Developing long-term storage optimization strategies to balance user productivity with organizational costs.

Qualifications

  • Expert-level proficiency in administering and securing Google Workspace EnterprisePlus features.
  • Professional Google Workspace Administrator Certification preferred.
  • CLI Tools Mastery of GAMGAM7 for command-line administration.
  • Strong experience with the Google Workspace Admin Console for managing users, services, security settings, and OUs.
  • Architect-level experience with Google Cloud Identity and integrating GWS with external identity providers (IdP) via SAMLOAuth.
  • Directory Sync Experience with Google Cloud Directory Sync (GCDS) or Azure AD.
  • Proficiency in Google Apps Script, GAS, or other scripting languages for administrative automation.
  • Familiarity with general cloud computing concepts and the Google Cloud ecosystem.
  • Solid understanding of security protocols, data privacy, and the ability to maintain the security of the Google Workspace domain.
  • Experience with large-scale GWS deployments, migrations, and hybrid environments.

Salary

The anticipated annual base salary range for this full-time position is $95,000 to $131,000. The base range is determined by role and level, and placement within the range will depend on a number of job-related factors, including but not limited to your skills, qualifications, experience, and location. This role may also be eligible for discretionary bonuses.

Annual salary is only one part of an employees total compensation package at Lyra. We also offer generous benefits that include:

  • Comprehensive healthcare coverage, including medical, dental, vision, FSA, HSA, life, and disability insurances
  • Lyra for Lyrians coaching and therapy services
  • Equity in the company through discretionary restricted stock units
  • Competitive time off with pay policies, including vacation, sick days, and company holidays
  • Paid parental leave
  • 401K retirement benefits
  • Monthly tech allowance

We like to spread joy throughout the year with well-being perks and activities, surprise swag, free food, regular community celebrations, and more.

We cant wait to meet you.

We are an Equal Opportunity Employer. We do not discriminate on the basis of race, color, religion, sex, including pregnancy, national origin, age, disability, genetic information, or any other category protected by law.

By applying for this position, you acknowledge that your personal information will be processed as per the Lyra Health Workforce Privacy Notice. Through this application, to the extent permitted by law, we will collect personal information from you, including but not limited to your name, email address, gender identity, employment information, and phone number, for the purposes of recruiting and assessing suitability, aptitude, skills, qualifications, and interests for employment with Lyra.

We may also collect information about your race, ethnicity, and sexual orientation, which is considered sensitive personal information under the California Privacy Rights Act (CPRA) and special category data under the UK and EU GDPR. Providing this information is optional and completely voluntary, and if you provide it, you consent to Lyra processing it for the purposes as described at the point of collection, for example, for diversity and inclusion initiatives.

If you are a California resident and would like to limit how we use this information, please use the Limit the Use of My Sensitive Personal Information form. This information will only be retained for as long as needed to fulfill the purposes for which it was collected as described above. Please note that Lyra does not sell or share personal information as defined by the CPRA.

Outside of the United States, for example, in the EU, Switzerland, and the UK, you may have the right to request access to or a copy of your personal information, including in a portable format, request that we delete your information from our systems, object to or restrict processing of your information, or correct inaccurate or outdated personal information in our systems. These rights may be subject to legal limitations.

To exercise your data privacy rights outside of the United States, please contact us at email@lyrahealth.com.

For more information about how we use and retain your information, please see our Workforce Privacy Notice.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, summarizing interviews, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans.

If you would like more information about how your data is processed, please contact us.

About the Company

L

Lyra Health Inc