IAM Analyst

Contract length: 6-Months

Position Summary

The Identity and Access Management Analyst is responsible for account life cycle management and auditing as appropriate. The Identity and Access Management Analyst participates in the development of workflows, system configuration, documentation, optimization and support related to access, while working with application teams to deploy new applications and functionality.

The Analyst effectively communicates department and organization wide policies and procedures impacting Identity and Access management to end users, leadership, and peers to ensure compliant practices. In addition, the Identity and Access Management Analyst provides guidance on optimizing security build based on appropriate minimum necessary standards. The Analyst is responsible for the on-going maintenance, testing, support and optimization of Identity Governance and Role Based Access Control (RBAC).

The Identity and Access Management Analyst works independently, holds team and organization level responsibilities and leads small to medium scale projects. The Analyst assists other team members, staff and leaders related to identity and access management and participates in continuous improvement activities.

Responsibilities

• Provide user account life cycle management, including creating, provisioning, securing, and inactivation of access.
• Participate in projects and production support operations focused on implementing Identity and Access Management (IAM) integrations and Roles Based Access Control (RBAC) strategies and integrations.
• Collaborate in the design, implementation, and support of the IAM technologies.
• Participate in projects to ensure standard processes and procedures are implemented when rolling out new provisioning and role management points.
• Plan, build, test, manage, and update security for the protection of and access to UW Health systems.
• Assist with the development, implementation, and support of RBAC.
• Ensure all evidence of authorization is documented and archived according to internal standards.
• Manage directory account permissions
• Act as the subject matter expert for Identity Governance
• For systems and software applications in scope for IAM Team, reconcile discrepancies between access rights assigned and access rights required for users to perform job duties.
• Assist IAM Engineers in troubleshooting issues with IAM tools and processes.
• Assist with application upgrades, evaluation of new technology, settings, and functionality.
• Troubleshoot security and workflow issues independently or in collaboration with other Information Systems teams and/or stakeholders, while adhering to internal service standards.
• Enforce organizational policies and procedures to ensure only authorized personnel have access to information in compliance with the Minimum Necessary Rules.
• Participate in ongoing auditing and risk assessments, and implementation of audit recommendations.
• Ensure dormant accounts/records are disabled; eliminate access for those who no longer need applicable information.
• Develop system access and security implementation plans derived from operational customer needs and requests.
• Develop and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end user support, and other IS teams as needed.
• Generate reports to perform in-depth analysis and data collection for issues associated with IAM.
• Provide Microsoft O365 Shared Resource Management and Support (Distribution Lists, Shared Calendars, Shared Mailboxes, Mail Contacts, and Resource Calendars).
• Support the enrollment of Multifactor Authentication (MFA), Single Sign-on (SSO), Electronic Prescribing of Controlled Substances (EPCS), and Mobile Device Management (MDM).
• Assist in efficiency improvements by recommending process changes as well as developing solutions to automate and orchestrate repeatable tasks for IAM.
• Staff a 24×7 on-call rotation 365 days a year to ensure ongoing operations and security for a facility that operates continuously to provide the best possible care to the patients we serve.

Requirements

• Demonstrated success using Active Directory or Identity and Access management tools
• Demonstrated success administrating Identity Management and Access
• Demonstrated success with the development of workflows and documentation related to
• identity and access management.
• 3 years relevant work experience and software experience: Active Directory, Microsoft O365, and Identity and Access management applications
• Systems Security Certified Practitioner (SSCP), Microsoft Outlook or Azure, or other IAM tools
• Leadership includes leads with integrity, maintains strategic orientation, demonstrates business & financial acumen, champions innovation, manages execution, leads & develops people
• Leading highly empowered, self-directed teams including cross-functional teams
• Technical leadership of applicable products or platforms
• Applying lean management tools