iMethods is currently seeking an Identity and Access Management Team Lead for a client hospital in Cleveland, Ohio. This is a permanent position and will require full time residence or relocation to Cleveland, Ohio.
Position(s) Summary & Essential Duties:
The Information Security Identity and Access Management (IAM) Team Lead identifies, investigates, resolves and develops processes, procedures and associated documentation relative to security of computer systems, networks and telecommunications along with addressing privacy, confidentiality and standards administration. The Team Lead focuses on identity and access management aspects of information security and serves as a leader for managing all aspects of access control tools and identity management processes and technologies. This role is responsible for the design, engineering, and ensuring that security is “built into” the organization’s application and IAM platforms
Lead day to day operations of the IAM team
Trains and develops a team of skilled Information Security analysts and IAM team members.
Design and develop access management solutions based on industry best practices.
Acts in the capacity as the most senior technical expert for all identity and access management technologies, tools, and processes.
Contributes and maintains all processes and tools for identity and access management.
Develops and manages technical processes for the provisioning and periodic review of access to systems
Develops and directs IAM technical team in the investigation and resolution of complex privacy, security, and access management problems.
Analyze performance of IAM applications and take action to correct deficiencies
Coordinate changes with members from IAM, Info Security, clinical teams and including Infrastructure teams
Interact with client hospital’s vendor and business partners to ensure the hospital’s business and financial interests are represented appropriately.
Follow the established change control processes, maintain and modify IAM web applications
Research and mitigate significant risks associated with projects.
Reviews, assesses, studies, and analyzes the procedures and documentation relative to privacy and security issues.
Prepares and maintains Information Security technology “roadmap” as it relates to identity and access management.
Acts as a member and subject matter expert for the Information Technology Incident Response Team.
Works with Information Security Senior Management and healthcare system legal counsel relative to difficult privacy and security issues
Works with Information Security Senior Management and other healthcare system personnel in conducting audits and tests of various security systems.
Recommends and coordinates the use of consultants for specialized activities relative to health information privacy and security.
Uses a systematic approach for the identification and resolution of complex privacy and security issues
Coordinates and facilitates problem resolution sessions where multiple departments and/or service areas are involved.
Effectively communicates and explains technology to non-technical people to encourage understanding and participation in technology planning.
Builds training and awareness plans around identity and access management tools and processes.
Train and share knowledge within IAM team.
Leads the staff operations of the IAM Information Security department.
Addresses special projects as assigned
Provide on call support for production and non-production issues.
Proactively keeps abreast of new technology trends and investment opportunities so that informed recommendations can be made in support of hospital’s business needs.
Conduct research into new technologies, including tools, components, and frameworks.
Attend workshops and seminars to maintain a high level of knowledge and capabilities
Experience & Knowledge:
5 to 10 years of progressive experience in information security, information management, information systems, identity management, access control and/or risk management is required.
Hands-on experience with the SailPoint IdentityIQ or similar identity Management products such as Microsoft Identity Management, Oracle
Hands-on experience working with Oracle Directories (ODSEE, OUD and/or OID), Active Directory or similar LDAP technologies.
Demonstrated experience with Linux/Unix, Windows, scripting (Bash, PowerShell, Perl), SQL, LDAP, and web services.
Knowledge of general hospital and physician clinic operations preferred.
Demonstrated experience leading and participating in troubleshooting, managing, and solving issues related to identities, systems, access, accounts, authentication, authorization, entitlements, and permissions.
Knowledge of LDAP and identity federation
Experience with MFA and Single Sign On application support and application provisioning
Excellent written, interpersonal and communication skills.
Knowledge of various health care privacy, security and associated laws, rules and regulations including HIPAA/HITECH preferred.
Extensive knowledge of access management tools, processes and best practices
Ability to effectively work with and coordinate the activities of outside consultants and auditors.
Ability and skill to influence personnel through a matrix organization as opposed to line management authority.
Ability to develop and lead teams toward stated objectives and goals.
Interpersonal communication skills for working with personnel in sometimes difficulty or tense situations.
Bachelor’s degree in Information Technology, Computer Science, or a related field.
Credentials, Licensure or Certification (i.e. RN, RRT):
Microsoft Certified Solution Expert is desirable
Certification(s) in the information security areas such as the CISSP (Certified Information Systems Security Specialist) is desirable.