Overview
On Site
Depends on Experience
Full Time
Skills
Research
User experience
Authorization
Multi-factor authentication
Authentication
Auditing
Documentation
System integration
Risk management
Data integrity
Collaboration
IT management
Regulatory Compliance
Usability
Reporting
Policies and Procedures
Cyber security
Management
Leadership
CISSP
Microsoft Azure
Health care
HIPAA
HITECH
Migration
Legacy systems
FOCUS
Analytical skill
Communication
SSO
Identity management
Microsoft
Military
Law
Job Details
Description
Penn Medicine is dedicated to our tripartite mission of providing the highest level of care to patients, conducting innovative research, and educating future leaders in the field of medicine. Working for this leading academic medical center means collaboration with top clinical, technical and business professionals across all disciplines.
Today at Penn Medicine, someone will make a breakthrough. Someone will heal a heart, deliver hopeful news, and give comfort and reassurance. Our employees shape our future each day. Are you living your life's work?
The role involves on-site presence for the first 6 months with the possibility of remote work after the introductory period is complete.
Summary:
Responsibilities:
Education or Equivalent Experience:
Skills/Abilities:
We believe that the best care for our patients starts with the best care for our employees. Our employee benefits programs help our employees get healthy and stay healthy. We offer a comprehensive compensation and benefits program that includes one of the finest prepaid tuition assistance programs in the region. Penn Medicine employees are actively engaged and committed to our mission. Together we will continue to make medical advances that help people live longer, healthier lives.
Live Your Life's Work
We are an Equal Opportunity and Affirmative Action employer. Candidates are considered for employment without regard to race, ethnicity, color, sex, sexual orientation, gender identity, religion, national origin, ancestry, age, disability, marital status, familial status, genetic information, domestic or sexual violence victim status, citizenship status, military status, status as a protected veteran or any other status protected by applicable law.
Penn Medicine is dedicated to our tripartite mission of providing the highest level of care to patients, conducting innovative research, and educating future leaders in the field of medicine. Working for this leading academic medical center means collaboration with top clinical, technical and business professionals across all disciplines.
Today at Penn Medicine, someone will make a breakthrough. Someone will heal a heart, deliver hopeful news, and give comfort and reassurance. Our employees shape our future each day. Are you living your life's work?
The role involves on-site presence for the first 6 months with the possibility of remote work after the introductory period is complete.
Summary:
- The IAM Access Management Lead will oversee the modernization and ongoing management of Penn Medicine's Single Sign-On (SSO) and access management strategies, specifically focusing on Microsoft Entra ID. This role is crucial in ensuring secure, streamlined access to hospital systems while enhancing user experience and maintaining stringent security standards. The Access Management Lead will work closely with IT leadership and other stakeholders to design, implement, and optimize authentication and authorization solutions (including SSO and MFA) that align with our hospital's needs and regulatory requirements.
This role will be responsible for leading the transition to Entra ID, managing the integration of these technologies, and continuously evaluating and refining access management protocols to ensure effectiveness and compliance. This position requires a deep understanding of IAM principles, SSO/authentication technologies, and the unique challenges of access management in a healthcare environment. It plays a key role in advising on access policies and ensuring consistent enforcement across the organization.
Responsibilities:
- SSO and Access Management Design: Lead the design, implementation, and management of Single Sign-On (SSO) and access management solutions using Entra ID and Microsoft Authenticator, ensuring secure and seamless user access across hospital systems.
- Migration Experience: Oversee the migration from existing SSO systems to Entra ID and Microsoft Authenticator, ensuring a smooth transition with minimal disruption to hospital operations.
- Security Compliance: Ensure that SSO and access management practices with Entra ID and Microsoft Authenticator meet all relevant healthcare regulatory requirements (e.g., HIPAA, HITECH) and support internal audits by providing necessary documentation and expertise.
- Access Management Strategy: Develop and refine access management frameworks that align with hospital roles and responsibilities, optimizing for both security and user convenience within the Entra ID ecosystem.
- System Integration: Oversee the integration of Entra ID and Microsoft Authenticator with existing hospital systems, ensuring compatibility and security across the IT landscape.
- Risk Management: Identify, assess, and mitigate risks related to SSO and access management, implementing proactive measures to prevent unauthorized access and ensure data integrity within the new system.
- Collaboration and Support: Work closely with IT leadership, clinical teams, and compliance officers to understand access needs and develop solutions that balance security with usability for authorized users during and after the migration.
- Operationalization and Reporting: Continuously monitor SSO and access management systems, specifically within Entra ID and Microsoft Authenticator, generate reports on access patterns, and adjust configurations as needed to address emerging threats or vulnerabilities.
- Performs duties in accordance with Penn Medicine and entity values, policies, and procedures
- Other duties as assigned to support the unit, department, entity, and health system organization
Education or Equivalent Experience:
- Bachelor's degree. (Required)
- 7+ years IT experience, with 5+ years within cybersecurity. (Required)
- 3+ years of IAM cybersecurity experience. (Required)
- 1+ years of Management/leadership experience. (Preferred)
- CISSP, Identity and Access Administrator Associate, and Azure Security Engineer Associate. (Preferred)
Skills/Abilities:
- Deep understanding of Single Sign-On (SSO) technologies, with specific experience in Entra ID, Microsoft Authenticator, and Imprivata
- Proven ability to design and implement robust access management frameworks, particularly in healthcare settings and within the Entra ID ecosystem. Strong knowledge of healthcare regulations such as HIPAA and HITECH, and their application in access management.
- Ability to identify, assess, and mitigate security risks related to SSO and access management, particularly with Entra ID and Microsoft Authenticator.
- Experience leading migrations from legacy systems to Entra ID and Microsoft Authenticator, with a focus on minimizing operational disruption.
- Experience integrating Entra ID and Microsoft Authenticator with hospital systems and ensuring seamless operation.
- Strong analytical skills to troubleshoot and resolve complex access issues within the Entra ID and Microsoft Authenticator environments.
- Excellent verbal and written communication skills, with the ability to work effectively with diverse teams across the hospital.
- Ability to stay updated with the latest trends in SSO and access management, particularly related to Entra ID and Microsoft Authenticator, and adapt practices accordingly.
We believe that the best care for our patients starts with the best care for our employees. Our employee benefits programs help our employees get healthy and stay healthy. We offer a comprehensive compensation and benefits program that includes one of the finest prepaid tuition assistance programs in the region. Penn Medicine employees are actively engaged and committed to our mission. Together we will continue to make medical advances that help people live longer, healthier lives.
Live Your Life's Work
We are an Equal Opportunity and Affirmative Action employer. Candidates are considered for employment without regard to race, ethnicity, color, sex, sexual orientation, gender identity, religion, national origin, ancestry, age, disability, marital status, familial status, genetic information, domestic or sexual violence victim status, citizenship status, military status, status as a protected veteran or any other status protected by applicable law.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.