IAM Epic Security Analyst III

**Hours****:****Shift Start Time:**Variable**Shift End Time:**Variable**AWS Hours Requirement:**8/40 - 8 Hour Shift**Additional Shift Information:**5 AM - 8 AM Flexible Start**Weekend Requirements:**As Needed**On-Call Required:**Yes**Hourly Pay Range (Minimum - Midpoint - Maximum):**$53.570 - $69.120 - $77.410The stated pay scale reflects the range that Sharp reasonably expects to pay for this position. The actual pay rate and pay grade for this position will be dependent on a variety of factors, including an applicant’s years of experience, unique skills and abilities, education, alignment with similar internal candidates, marketplace factors, other requirements for the position, and employer business practices. **What You Will Do** Provides leadership and guidance to the IAM Security team, organization and business partners on Sharp HealthCare's Identity and Access Management (IAM) and Epic Security strategy; ensuring policies and security standards are met. Responsible for the design, implementation, and maintenance of identity and access management systems, ensuring authorized individuals have appropriate access to systems and data. Efficiently and effectively, respond to IAM and Epic Security incidents, service requests, application access requests and audits.

Provides leadership and support to peers as well as various other departments of the organization. Responsible for coordinating activities with multiple IT teams and Sharp departments to develop, maintain, support, and enhance Epic access and security. **Required Qualifications*** 5 Years Experience in application access control including experience in information systems security administration in a multi entity health care system, experience with supporting, improving, reporting, documenting audits and compliance with internal and external audits.* 5 Years experience with IT Epic support. **Preferred Qualifications*** Experience with Active Directory Management.* Extensive operational knowledge and experience with IAM concepts, principles and best practices such as identity federation, role-based access control and access management processes.* CompTIA Security+ - CompTIA -PREFERRED* Six Sigma Yellow Belt Certification - Various-No accreditation board -PREFERRED **Other Qualification Requirements*** Bachelor's degree in Computer Science, Healthcare, or related field; or 4 years of relevant experience in Information Technology may substitute for degree. - REQUIRED. **Essential Functions** * Leadership Facilitate a multidisciplinary Epic Security Workgroup with representation from ISD Application teams, Compliance, IAM, Training, Clinical Informatics and Operations. Set and manage timelines, decision points, and outcomes for initiatives related to Epic Security structure, education, and sustainment. Demonstrate content expertise regarding application and business operations by mentoring staff.

Serve as an escalation point for issues related to Epic Security, IAM and SER. Lead and mentor staff in resolution. Promote inter-department partnerships, teamwork and cooperation to support achievement of the IT departments’ goals. Facilitate initiatives to standardize data and workflows to better utilize IAM automation tools.

Design, develop and monitor measurements of process improvements related to IAM, Epic Security, and SER. Serve as an organization advisor for policies and procedures requiring access management components. Identify high risk situations, inform Management with recommendation on next steps. Coordinate the activities to reduce the risk.

Leads evaluation of communication plans and refines processes for improvement. Lead team through demonstration of utilizing business and IT strategies to translate business requirements into system solutions that meet project requirements. Mentor and guide junior IAM Epic Security Analysts. Lead Epic Security projects and initiatives to improve the access management process.* Operational Management Coordinates project participation among team to ensure timelines and service agreements are met.

Ensure team readiness for internal and external audits, including action plan to promptly resolve issues identified and ensure Standard Operating Procedures are created and followed. Report out on agreed upon Key Performance Indicators (KPIs) related to IAM, Epic Security, SER, incident/service request management and compliance. Manage on-call rotations. Train new IT staff in system functions and operations in order to maximize user effectiveness and utilization of systems.

Lead team through demonstration of utilizing business and IT strategies to translate business requirements into system solutions that meet project requirements. Develop and maintain Standard Operating Procedures (SOPs) for IAM, Epic Security, and SER. Develop system documentation for on-call and other operational requirements. Monitor and analyze IAM and Epic system performance, make recommendations for improvements.

Oversee the daily operations of IAM systems (IGA, Active Directory and other IAM systems), ensuring efficient and secure access management. Demonstrate in depth, detailed technical knowledge of security requirements and solutions. Develop and/or follow practices/guidelines in relation to compliance with IAM Policies, Epic Security, standards, regulatory requirements and ensure the proper processes are followed when exceptions arise.* Compliance Ensure compliance and adherence with corporate security controls and standards as they relate to Identity and Access Management (IAM). Conduct assessments, on demand and routine audits to identify and mitigate compliance risks.

Prepare documentation for audits and act as the point of contact for audit related responsibilities. Perform certification of RBAC. Perform data contamination management, including coordinating clean-up efforts and reporting requirements and ensuring auditing requirements are completed. Mitigate risk by addressing security vulnerabilities and audit gaps.

Facilitate efforts regarding audit findings, adherence to compliance and organizational change. Facilitate IT investigations for legal, HR and compliance. Partner with Compliance Department to assure all internal and external customers system access and Sharp HealthCare user agreement forms are appropriate and adhered to. Develop and maintain documentation related to IAM, Epic Security and Provider SER compliance activities.* Department Support Provide operational support including, but not limited to: account provisioning, de-provisioning, periodic access reviews, emergency access, and privileged access management.

Provide advanced support for IAM-related issues, troubleshooting and resolving complex problems. Support the implementation of IAM tools and technologies to enhance security and user experience. Partner closely with the Identity and Access Management (IAM) Development team to align role-based access models (RBAC) with Epic security templates and coordinate downstream provisioning through tools like SailPoint. Serve as the bridge between Epic application teams and provisioning stakeholders, ensuring that design decisions reflect operational needs and compliance expectations.

Build and maintain Epic security templates, shared security classes, and application-level role structures in collaboration with analysts and business partners. Build and maintain Epic SER records and Blueprints. Create and Maintain guidelines for appropriate access in Epic, including compliance with regulatory limitations. Establish and document standards for naming conventions, template usage, ownership definitions, and cross-application alignment.

Establish a repeatable, auditable process for security updates—including testing,#J-18808-Ljbffr