The Identity and Access Management (IAM) Analyst will be part of a team of security professionals that ensure Premise Healthcare team members and contractors identities are secured, and that access management follows our IAM policies and industry best practices.
As our Identity and Access Management (IAM) Analyst, you will be partnering with Security Engineers, Security Analysts and Systems Administrators to execute enterprise termination data pull daily, triage and disposition such termination data, and resolve any found gaps in termination status in supporting provisioning systems.
Partnering with InfoSec team members and systems administrators, execute daily process of pulling active identity and access data, identification of access anomalies, and the dispositioning of such anomalies with appropriate actions.
Identifying anomalies and classifying them into known issues, and if not known, partnering with InfoSec team members and systems administrators to determine failure signature.
Partnering with Governance and Compliance team members, to ensure data collection is traceable and complete to comply with compliance frameworks such as SOX, PCI and HIPAA.
Define and manage identities and access controls based on identities (password management, single sign on, two-factor authentication, PIN management, Active Directory, etc.)
Conduct User Access Reviews for the logical access controls as part of compliance routines.
Perform Identity and Access Management user provisioning and de-provisioning for enterprise applications and IT infrastructure.
Partner with Technology team members in implementing Single Sign On via ADFS and Azure AD
Guide application teams through all aspects of IAM as implemented at Premise Healthcare
Provide thought leadership in terms of best practices within the IAM space
Create and enforce processes for automated access provisioning and deprovisioning using IAM tools
Provide feedback to governance team members and security engineers regarding guidelines and policies around IAM program.
Implement processes for privileged account and access management (PAM) using tools like Thycotic Secret Server
Provide training to application owners around IAM processes
Provides direct support to the business and IT staff for IAM security-related issues.
Educates team members about security policies and consults on security issues regarding user built/managed systems.
Represents the security needs of the organization by providing expertise and assistance in all Technology projects with regard to IAM security issues.
Implement a secure IAM cloud process for all IAM users based on Premise policies, MFA solution, audit and incident response plans. Manage the lifecycle of the cloud user
Manage the successful technical delivery of IAM in cloud hosted systems and related services
Become the support staff across all IAM topics
Participate in Identity and Access Management enterprise governance processes and provide feedback on IAM standards adoption
Develop effective solutions that not only satisfy immediate project requirements but also deliver a coherent, reusable, reliable and phased architecture to help grow and change while aligning to strategic vision.
Represent Information Security on organizational project teams and ensure adherence to existing security IAM policies and standards.
Review of technical security roadmaps related to cloud security and IAM within a cloud and SAAS security context
Performs other related duties as assigned.
BS or MS in Computer Science, Information Systems or demonstrated industry hands-on experience
2+ years of experience focused on IAM tools
3+ years of experience performing user access reviews
Minimum 2 years of hands on information security space
Exposure to cloud computing (AWS, Azure, OpenStack), storage technologies (SAN, NAS, iSCSI, FC, RAID) and Security concepts / best practices
Experience with programming / scripting (VB, PowerShell)
Experience with Windows troubleshooting tools (WinDbg, Windows Sysinternals) and cloud security and governance tools, cloud access security brokers (CASBs) and server virtualization technologies
Exposure in web based IAM related protocols such as SAML, SPML, XACML, SCIM, OpenID and OAuth, Federation concepts and technology such as ADFS and Oracle IAM products. Basic experience with Directories, SSO, Federation, Delegated administration, API gateways, SOA services
Ability to work on multiple tasks, prioritizing and organizing these tasks to maximize productivity
Self-starter with strong communication skills
Knowledge of common information security management frameworks
Experience working with a diverse range of data sources/streams and managing these effectively
Background in security operations, processes, solutions and technologies
Ability to work independently as well as in a team. Eagerness to tackle problems outside your core competencies and learn new technologies as required