Posted:
8/4/2024, 5:00:00 PM
Location(s):
Minneapolis, Minnesota, United States ⋅ Oregon, United States ⋅ Beaverton, Oregon, United States ⋅ Minnesota, United States ⋅ Raleigh, North Carolina, United States ⋅ North Carolina, United States ⋅ Virginia, United States
Experience Level(s):
Junior ⋅ Mid Level
Field(s):
IT & Security
Surescripts serves the nation through simpler, trusted health intelligence sharing, in order to increase patient safety, lower costs and ensure quality care. We deliver insights at critical points of care for better decisions — from streamlining prior authorizations to delivering comprehensive medication histories to facilitating messages between providers.
The Identity & Access Management Analyst aligns security management strategy with business goals by managing access to resources and services and enforcing business, privacy, & security policies. The Identity & Access Management Analyst ensures full compliance and security across Surescripts resources.
The IAM Analyst has experience with IAM technologies and approaches including Privileged Identity Management, Identity Management Governance, single sign-on, multi-factor authentication, & directories. They will share their expertise with IT leadership and other stakeholder groups in the company to ensure the correct levels of security risk management, operational efficiencies, & end-user experience for IAM-related controls.
Partner with the technology teams to improve IAM toolsets to ensure they appropriately meet the risk expectations of the company.
Incorporate identity access governance support and implementation services, privileged identity management support and identity lifecycle management with respect to regulatory compliance and approved standards and policies into the overall IAM roadmap.
Engage and collaborate with key business stakeholders and customers as it relates to all supported systems and applications to verify, validate, & audit access.
Analyze and design our Role-Based Access Controls (RBAC) model to meet organizational business needs & customer expectations.
Partner with others with provisioning roles in the company to execute the RBAC model.
Document existing workflow/current business processes, and aid in prioritization of IT service requests.
Identify and deliver innovative solutions concerning cloud and mobile apps access management, access enforcement/administration implementation, access/elevated administration implementation, and segregation of duty (SOD) management & other IAM compliance related activities.
Remain current on IAM trends to determine the appropriateness for Surescripts.
Lead the process of periodic user certification campaigns (access reviews) per information security & compliance best practices.
Basic Requirements:
Bachelor’s degree or equivalent information security, identity & access management experience.
2+ years of related, progressive experience in identity and access management (IAM).
Experience optimizing key IAM tools and processes including:
SailPoint Identity Security Cloud (formerly IdentityNow) experience preferred. Other IAM software experience may include SailPoint Identity IQ, Okta, or Saviynt.
CyberArk, Secret Server or other privilege accounts lifecycle management solutions.
User identity lifecycle management solution products or role-based access control solutions.
Directory services products.
Single sign-on, multi-factor & federation solutions.
1+ years of experience in access control concepts, including access administration, directory services, SAML, LDAP, or PKI.
Ability to:
Handle multiple tasks, prioritize and meet deadlines.
Successfully interface with Surescripts technical and non-technical partners.
Document and explain technical details in a concise, understandable manner.
Manage and balance their time among multiple tasks.
Preferred Qualifications:
Certifications such as CISSP, CISA, or IAM product certification.
Experience in the healthcare industry.
Keywords: identity and access management, IAM, SailPoint IdentityNow, SailPoint Identity Cloud, privileged access management, RBAC
#LI-REMOTE
Surescripts embraces flexibility through its Flexible Hybrid Work model for most positions. This model allows employees to work virtually while still utilizing our offices as collaboration centers. With alignment and agreement from your leadership, you can come and go from the office as needed.
You’re technical. Analytical. Imaginative. Maybe you’re building your own crypto-mining rig—or not. Either way, your mind works to anticipate vulnerabilities and protect the company and its information against those vulnerabilities. You do the right thing because it’s the right thing without seeking to point fingers or brag. And of course, you’re always willing to keep learning.
We’re a team of friendly folks who do serious work. Our best work is done by rising to the occasion under stress, but we keep each other cool under pressure. We’re a tight team but we also look for ways to partner across the business. Our style is casual and laid back, but we shoulder our responsibility to protect patient data from sophisticated adversaries, which sometimes means delivering a difficult truth.
Our challenge is to protect our customers’ data and our company. This requires anomaly analysis, risk reviews, pen testing of our controls, red-teaming and tabletops, policy and procedure work, documentation, and audits. We also engineer and maintain our security products and tools. It’s not always a typical 9-to-5 gig, of course, but then again, you work in information security, so you already know that.
Why Wait? Apply Now
We’re a midsize company. This means you’re not just another employee ID number. Here, you can build real relationships and feel supported by truly awesome people with diverse backgrounds and talents in an innovative and collaborative work culture. We strive to create an environment where you can be yourself, share your ideas and work your way. We offer opportunities for employee development, as well as competitive compensation packages and extensive benefits.
Benefits include, but are not limited to, comprehensive healthcare (including infertility coverage), generous paid time off including paid childbirth and parental leave and mental health days, pet insurance, and 401(k) with company match and immediate vesting. To learn more, review the Keep You and Yours Healthy, Balancing Work and Life, and Where Talent Takes Shape links under the Better Benefits. Better Work. Better Life section of our careers site.
Physical and Mental Requirements
While performing duties of this job, an employee may be required to perform any, or all of the following: attend meetings in and out of the office, travel, communicate effectively (both orally and in writing), and be able to effectively use computers and other electronic and standard office equipment with, or without, a reasonable accommodation. Additionally, this job requires certain mental demands, including the ability to use judgement, withstand moderate amounts of stress and maintain attention to detail with, or without, a reasonable accommodation.
Surescripts is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate on the basis of race, color, religion, age, national origin, ancestry, disability, medical condition, marital status, pregnancy, genetic information, gender, sexual orientation, parental status, gender identity, gender expression, veteran status, or any other status protected under federal, state, or local law.
Website: https://surescripts.com/
Headquarter Location: Arlington, Virginia, United States
Employee Count: 251-500
Year Founded: 2001
IPO Status: Private
Industries: Information Technology ⋅ Real Time ⋅ Security ⋅ Software