We are more than a health system. We are a belief system. We believe wellness and sickness are both part of a lifelong partnership, and that everyone could use an expert guide. We work hard, care deeply and reach further to help people uncover their own power to be healthy. We inspire hope. We learn, grow, and achieve more – in our careers and in our communities.

Job Description Summary:

Reports to Cyber Security Functional Leader and will have no direct reports.

Senior Cyber Security Engineer serves as the primary security expert within their respective Cyber

Security specialty, with deep knowledge to apply in the implementation of applications and technology. 

Senior Cyber Security Engineer works closely with the business analysts, architects, vendor partners, and other teams across the IT organization to secure complex applications and services.

Provides technical expertise by designing and enforcing security controls for the application or service architecture which safeguards the integrity and security of the application environment in alliance with architects and other tech leads.

In addition, the incumbent will conduct design reviews, analyze results, and make a recommendation to deliver quality products.   

Minimum Qualifications:

Bachelor's Degree

• Degree, or equivalent experience

• Field of Study/Experience: Computer Science, Information Systems, Mathematics, or Engineering

• 5+ years of experience in IAM security, with a focus on the Microsoft platform.

• 3+ years of experience in IAM security, with a focus on IGA, SailPoint and healthcare industry experience.

• Knowledge of healthcare industry regulations and compliance requirements (e.g., HIPAA, HITECH).

• Strong understanding of IAM concepts, technologies, and frameworks (e.g., SAML, OAuth, OpenID Connect).

• Excellent debugging, troubleshooting, and analytical skills

• Lead code/design reviews and daily/weekly meetings.

SPECIALIZED KNOWLEDGE

• Strong understanding of IAM concepts, technologies, and frameworks (e.g., SAML, OAuth, OpenID Connect).

• Hands-on experience with IAM tools and platforms, such as SailPoint, Entra, Saviynt, Ping or Okta.

• Proficiency in SQL and PowerShell for querying and manipulating identity-related data.

• Excellent problem-solving and analytical skills, with the ability to think critically and make sound decisions.

• Strong communication and collaboration skills, with the ability to work effectively with cross-functional teams.

• Assist with vendor relationships and any evaluation or recommendations related to new vendors and technologies.

• Collaborate with cybersecurity team to investigate and mitigate IAM-related security incidents.

• Oversee the implementation and enhancement of Privileged Access Management solutions.

• Establish and enforce IAM governance policies to ensure compliance with security standards and regulatory requirements.

• Collaborate with IAM Architects, Cloud Architects, and Enterprise Architects to integrate IAM into the broader cloud and IT architecture.

• Ensure that Client's Identity & Access Management (Cloud) services are designed to be compliant with security and privacy standards and other industry standards and practices.

• Deep understanding of IAM principles, strong technical skills, and a passion for delivering high-quality security solutions.

• Strong knowledge of IAM concepts, protocols, and best practices

• Proven experience with Microsoft Entra ID and Entra Suite

• Proficiency in managing Active Directory

• Proficiency in configuring and managing SailPoint and NERM

• Experience with identity governance, SSO, SAML, MFA, and conditional access policies, MDCA policies, App registration.

• Familiarity with scripting and automation tools (e.g., PowerShell, Azure Automation)

• Excellent problem-solving and analytical skills

• Strong communication and interpersonal skills

• Ability to work independently and in a team-oriented environment.

• Assist project team for domain migration/merger initiatives.

DESIRED ATTRIBUTES

• Is adaptable to new technology
• Forward-thinking, with ability to be strategic when looking at future technology
• Possesses a continuous-learner mindset
• Ability to estimate the financial impact of technology alternatives
• Ability to quickly comprehend the functions and capabilities of existing, new, and emerging technologies that enable and drive new business designs and models
• Demonstrated ability to work well with others and be respected as a leader
• SailPoint Certified
• Certified Information Systems Security Professional (CISSP)
• Certified Cloud Security Professional (CCSP)

 

RESPONSIBILITIES AND DUTIES

• 20% Security Expertise - Serves as the deep technical expert for cyber security principles spanning network, application, system, cloud, and end point use cases.  Applies security knowledge to identify and assess risk, develop create and secure solutions to protect enterprise data and systems.  Adapts to new and emerging technologies. 
• 15% Leads Initiatives - Guides their teams through technical issues and challenges. Leads technology change to deliver security and secure business outcomes while also virtually leveraging subject matter experts from any other needed technical area.  Oversees, or consults on, technology implementation and modification activities (for example, projects and products), particularly for new or shared solutions.
• 10% Collaboration - Works with architects, Business Analysts, Product Owners, and peers providing technical expertise by integrating security controls to ensure the security and integrity of the application environment.  Reviews and provides security input into architectural designs and requirements.
• 10% Technical Documentation - Creates, reviews, and approves technical documentation for applications supported and providing specifications for vendors
• 10% Research and Analysis - Analyzes, plans, justifies, schedules, and coordinates the implementation and maintenance of the specialty area’s administrative, operational, and financial initiatives including TCO, optimization, and efficiency
• 25% Technology Strategy - Leads the development of technology strategy and roadmap within a given area of specialty including design, documentation, communication, and implementation of new or existing standards for infrastructure technologies while remaining current on industry trends
• 10% Vendor Management - Works with 3rd party vendors to negotiate contracts and develop reporting metrics, dashboards, and status reporting to drive outcomes and meet expectations for quality and performance

Work Shift:

Day

Scheduled Weekly Hours :

40

Department

Information Security

Join us!
... if your passion is to work in a caring environment
... if you believe that learning is a life-long process
... if you strive for excellence and want to be among the best in the healthcare industry

Equal Employment Opportunity

OhioHealth is an equal opportunity employer and fully supports and maintains compliance with all state, federal, and local regulations. OhioHealth does not discriminate against associates or applicants because of race, color, genetic information, religion, sex, sexual orientation, gender identity or expression, age, ancestry, national origin, veteran status, military status, pregnancy, disability, marital status, familial status, or other characteristics protected by law. Equal employment is extended to all person in all aspects of the associate-employer relationship including recruitment, hiring, training, promotion, transfer, compensation, discipline, reduction in staff, termination, assignment of benefits, and any other term or condition of employment 

Remote Work Disclaimer:

Positions marked as remote are only eligible for work from Ohio.