You Make Us Grow. You Make Us Sharp.

Hours:

Shift Start Time:

Variable

Shift End Time:

Variable

AWS Hours Requirement:

8/40 - 8 Hour Shift

Additional Shift Information:

5 AM - 8 AM Flexible Start

Weekend Requirements:

As Needed

On-Call Required:

Yes

Hourly Pay Range (Minimum - Midpoint - Maximum):

$53.570 - $69.120 - $77.410

The stated pay scale reflects the range that Sharp reasonably expects to pay for this position.  The actual pay rate and pay grade for this position will be dependent on a variety of factors, including an applicant’s years of experience, unique skills and abilities, education, alignment with similar internal candidates, marketplace factors, other requirements for the position, and employer business practices.

What You Will Do
Provides leadership and guidance to the IAM Security team, organization and business partners on Sharp HealthCare's Identity and Access Management (IAM) and Epic Security strategy; ensuring policies and security standards are met. Responsible for the design, implementation, and maintenance of identity and access management systems, ensuring authorized individuals have appropriate access to systems and data. Efficiently and effectively, respond to IAM and Epic Security incidents, service requests, application access requests and audits. Provides leadership and support to peers as well as various other departments of the organization. Responsible for coordinating activities with multiple IT teams and Sharp departments to develop, maintain, support, and enhance Epic access and security.

Required Qualifications

• 5 Years Experience in application access control including experience in information systems security administration in a multi entity health care system, experience with supporting, improving, reporting, documenting audits and compliance with internal and external audits.
• 5 Years experience with IT Epic support.

Preferred Qualifications

• Experience with Active Directory Management.
• Extensive operational knowledge and experience with IAM concepts, principles and best practices such as identity federation, role-based access control and access management processes.
• CompTIA Security+ - CompTIA -PREFERRED
• Six Sigma Yellow Belt Certification - Various-No accreditation board -PREFERRED

Other Qualification Requirements

• Bachelor's degree in Computer Science, Healthcare, or related field; or 4 years of relevant experience in Information Technology may substitute for degree. - REQUIRED.

Essential Functions

• Leadership
  Facilitate a multidisciplinary Epic Security Workgroup with representation from ISD Application teams, Compliance, IAM, Training, Clinical Informatics and Operations.
  Set and manage timelines, decision points, and outcomes for initiatives related to Epic Security structure, education, and sustainment.
  Demonstrate content expertise regarding application and business operations by mentoring staff.
  Serve as an escalation point for issues related to Epic Security, IAM and SER. Lead and mentor staff in resolution.
  Promote inter-department partnerships, teamwork and cooperation to support achievement of the IT departments’ goals.
  Facilitate initiatives to standardize data and workflows to better utilize IAM automation tools.
  Design, develop and monitor measurements of process improvements related to IAM, Epic Security, and SER.
  Serve as an organization advisor for policies and procedures requiring access management components.
  Identify high risk situations, inform Management with recommendation on next steps. Coordinate the activities to reduce the risk.
  Leads evaluation of communication plans and refines processes for improvement.
  Lead team through demonstration of utilizing business and IT strategies to translate business requirements into system solutions that meet project requirements.
  Mentor and guide junior IAM Epic Security Analysts.
  Lead Epic Security projects and initiatives to improve the access management process.
• Operational Management
  Coordinates project participation among team to ensure timelines and service agreements are met.
  Ensure team readiness for internal and external audits, including action plan to promptly resolve issues identified and ensure Standard Operating Procedures are created and followed.
  Report out on agreed upon Key Performance Indicators (KPIs) related to IAM, Epic Security, SER, incident/service request management and compliance.
  Manage on-call rotations.
  Train new IT staff in system functions and operations in order to maximize user effectiveness and utilization of systems.
  Lead team through demonstration of utilizing business and IT strategies to translate business requirements into system solutions that meet project requirements.
  Develop and maintain Standard Operating Procedures (SOPs) for IAM, Epic Security, and SER.
  Develop system documentation for on-call and other operational requirements.
  Monitor and analyze IAM and Epic system performance, make recommendations for improvements.
  Oversee the daily operations of IAM systems (IGA, Active Directory and other IAM systems), ensuring efficient and secure access management.
  Demonstrate in depth, detailed technical knowledge of security requirements and solutions.
  Develop and/or follow practices/guidelines in relation to compliance with IAM Policies, Epic Security, standards, regulatory requirements and ensure the proper processes are followed when exceptions arise.
• Compliance
  Ensure compliance and adherence with corporate security controls and standards as they relate to Identity and Access Management (IAM).
  Conduct assessments, on demand and routine audits to identify and mitigate compliance risks.
  Prepare documentation for audits and act as the point of contact for audit related responsibilities.
  Perform certification of RBAC.
  Perform data contamination management, including coordinating clean-up efforts and reporting requirements and ensuring auditing requirements are completed.
  Mitigate risk by addressing security vulnerabilities and audit gaps.
  Facilitate efforts regarding audit findings, adherence to compliance and organizational change.
  Facilitate IT investigations for legal, HR and compliance.
  Partner with Compliance Department to assure all internal and external customers system access and Sharp HealthCare user agreement forms are appropriate and adhered to.
  Develop and maintain documentation related to IAM, Epic Security and Provider SER compliance activities.
• Department Support
  
  Provide operational support including, but not limited to: account provisioning, de-provisioning, periodic access reviews, emergency access, and privileged access management.
  Provide advanced support for IAM-related issues, troubleshooting and resolving complex problems.
  Support the implementation of IAM tools and technologies to enhance security and user experience.
  Partner closely with the Identity and Access Management (IAM) Development team to align role-based access models (RBAC) with Epic security templates and coordinate downstream provisioning through tools like SailPoint.
  Serve as the bridge between Epic application teams and provisioning stakeholders, ensuring that design decisions reflect operational needs and compliance expectations.
  Build and maintain Epic security templates, shared security classes, and application-level role structures in collaboration with analysts and business partners.
  Build and maintain Epic SER records and Blueprints.
  Create and Maintain guidelines for appropriate access in Epic, including compliance with regulatory limitations.
  Establish and document standards for naming conventions, template usage, ownership definitions, and cross-application alignment.
  Establish a repeatable, auditable process for security updates—including testing, approval, and communication plans for template changes.
  Maintain version control and history for Epic security structures and changes across environments.
  Contribute to risk mitigation strategies related to role structure, over-permissions, or shared access issues.
  Design, build and maintain the provider HL7 interface or API.
  Participate in on call support for the IAM and Epic Security group.
  Ensure operational procedures are created and followed.
  Ensure that all accounts are configured to support the access control policy of Sharp HealthCare.
  Correctly configure accounts based on the completion of a standardized access request form.
  Adjust work schedule as needed for department coverage.
• Customer Service
  
  Maintain active relationships with all customers by continuously assessing needs, preferences and level of satisfaction with tasks.
  Work effectively with physicians, management, staff, auditors, investigators, consultants and vendors.
  Provide continuing support of remote connections, including VPN and Citrix.
  Accept escalation messages and calls from customers.
  Develop knowledge base articles for the Technical Assistance Center.
  Provide in-service or knowledge transfer sessions to Technical Assistance Center staff and other departments, as needed.
  Train and mentor new members in the department to appropriate customer service skills.
  Monitor Change Management tickets for timeliness, quality, and documented processes are followed.
  Monitor Service Desk tickets for timeliness.
  Provider Incident/Service Request support and quality customer service.
  Respond to IAM/Epic incidents in a timely manner.
• Professional Competency
  
  Epic Security Certification - REQUIRED
  Epic Provider Administration Badge - REQUIRED
  Epic Data Courier Badge - REQUIRED
  Epic Security Post Live Badge is required within 90 days of hire.
  Epic Cogito Certification is required within 1 year of hire.
  Epic Bridges Certification- PREFERRED
  Maintains required certifications.
  Obtains other certifications and attends seminars or training as required by the department.
  Maintains knowledge of systems and applications.

Knowledge, Skills, and Abilities

• Knowledge of clinical and business operations in a healthcare environment.
• Ability to interpret functional requirements into applications design.
• Ability to communicate technical issues to technical staff and nontechnical users/clients.
• Must have strong leadership and communication skills.
• Knowledge of hospital and clinic culture, business practices, regulatory requirements (e.g., JCAHO), and health care requirements as it relates to information security and privacy (e.g., HIPAA).
• Knowledge and understanding of RBAC.
• Knowledge of Identity and Access Management structures/processes such as provisioning, entitlement certification, access removal and privileged access.
• Knowledge of IT security, compliance and Identity Management.
• Ability to work on-call.
• Ability to cross cover shifts as needed.

Sharp HealthCare is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, gender identity, sexual orientation, age, status as a protected veteran, among other things, or status as a qualified individual with disability or any other protected class

Six Sigma Yellow Belt Certification - Various-No accreditation board; CompTIA Security+ - CompTIA