GENERAL SUMMARY
Leads teams through the overall enterprise security architecture, integration, implementation and delivery of system security changes and is the central point of communication, maintaining a common vision, plan, and goal across all areas of accountability. Addresses risks that may arise during cybersecurity and identity and access life cycle management and digital identity transformation. Monitors the channels through which information flows into and out of the organization’s information network. Keeps abreast of the latest technology, threats facing the organization, the state of the organizations security posture, as well as support change. Addresses the compliance requirements by ensuring the appropriate policies that support regulations are in place and enforced.
This is a managerial position relating to operational, technical and administrative duties, with responsibility for the direct supervision of staff involved in the planning, deployment, administration and support of technology systems. Collaborates with leaders to streamline, optimize and prioritize technology and related security process workflows to meet the strategic goals of the organization.
PRINCIPAL JOB FUNCTIONS
* *Commits to the mission, vision, beliefs and consistently demonstrates our core values.
* *Responsible for managing the scope, cost, schedule and quality of identity access and cybersecurity initiatives.
* *Manages human and technical security resource allocations to meet project deadlines.
* *Responsible for recruiting, hiring, onboarding, developing and performing corrective action for assigned teams.
* Monitors compliance with policies, regulations and customer requirements.
* Collaborates with other departments to ensure secure access to systems and data.
* Leads team to administer user accounts, permissions and access controls.
* Monitors activity logs to identify security incidents.
* Stays up to date with the latest industry developments and trends.
* Responds to audit findings and implements remediation measures.
* Handles escalated customer inquiries and support tickets.
* *Creates and maintains a teamwork environment conducive to productivity, successful staff advancement and a rewarding work experience.
* *Creates and distributes reports to demonstrate the effectiveness of the IAM Cybersecurity program; including, but not limited to, an annual report (to access and communicate the effectiveness of the IAM Cybersecurity program and make recommendations for improvements), quarterly report (on security incidents), and monthly report (on IAM Cybersecurity program metrics).
* *Develops, plans and implements cybersecurity education and awareness training through a variety of methods (documents, videos, communications, campaigns, in-person trainings) to both technical and non-technical audiences.
* Develops and manages IAM Cybersecurity Risk Analysis budget including operating expenses and capital project expenses.
* Documents information on IT security assaults, threats, risks and controls.
* Compares the efficacy of the incident response strategy to recommended practices in the industry.
* Tests incident response plans frequently to verify reaction times and completed processes are satisfactory.
* Works closely with the project leadership and other project managers to coordinate security activities.
* Enters restricted areas without supervision to perform assigned work.
* Maintains professional growth and development through seminars, workshops, and professional affiliations to keep abreast of latest trends in field of expertise.
* Participates in meetings, committees and department projects as assigned.
* Perform(s) other related projects and duties as assigned.
* (Essential Job functions are marked with an asterisk “*”).
REQUIRED KNOWLEDGE, SKILLS AND ABILITIES
* Knowledge of operations, workflow and processes related to specific area of technical support.
* Knowledge of computer hardware equipment and software applications relevant to work functions, especially with a focus on integration of applications, medical devices, and peripherals with Epic.
* Knowledge of the health care industry from the practice management perspective as well as from the health care delivery perspective.
* Knowledge of identity and access management concepts, such as SSO, role-based access control, and identity federation.
* Knowledge with networking firewalls, VPNs, and DNS.
* Ability to manage, direct and evaluate employee performance.
* Ability to lead teams, mentor team members, and work as a team member.
* Ability to lead technical design sessions in delivering enterprise scale and complex technical and integration solutions, as well as enhanced troubleshooting of technical issues, especially related to an Epic environment.
* Ability to communicate effectively both verbally and in writing.
* Ability to effectively interact with clients having a broad range of computer knowledge and ability.
* Ability to organize, prioritize and implement work assignments.
* Ability to adapt to and effectively perform work functions in emergency and high stress situations.
* Ability to plan for and act on changes in the business and market environment that impact current business plans and processes.
* Ability to participate in the evaluation and design of computer systems and peripherals and the integration with various systems.
* Ability to perform crucial conversations with desired outcomes.
* Ability to problem solve and engage independent critical thinking skills.
* Ability to maintain confidentiality relevant to sensitive information.
* Ability to maintain regular and punctual attendance.
EDUCATION AND EXPERIENCE
Bachelor’s Degree in Computer Science, Business Administration/Management or an equivalent combination of management and technical experience and education necessary to gain the knowledge needed to manage technical personnel and systems required. Master’s Degree in related subject preferred. Minimum of two (2) years of experience in a management role required. Previous experience with identity access management and cybersecurity required. Minimum of five (5) years of experience in the analysis, design, implementation, support and maintenance of computer systems required. Experience in leading multidisciplinary teams required.
OTHER CREDENTIALS / CERTIFICATIONS
Must have internet connectivity off-premises in order to respond to work requests when necessary.
Professional certification such as Certified Identity and Access Manager (CIAM), Certified Identity Management Professional (CIMP), COMPTIA Security+ Certification, Systems Security Certified Practitioner (SSCP), Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM) required.
PHYSICAL REQUIREMENTS
(Physical Requirements are based on federal criteria and assigned by Human Resources upon review of the Principal Job Functions.)
(DOT) – Characterized as sedentary work requiring exertion up to 10 pounds of force occasionally and/or a negligible amount of force frequently to lift, carry, push, pull, or otherwise move objects, including the human body.
#J-18808-Ljbffr