Children's Health System of Texas
IT Security IAM Architect
Children's Health System of Texas, Dallas, Texas, United States, 75215
IAM Architect
The IT Security Identity and Access Management (IAM) Architect is a critical member of the cybersecurity and IT teams, responsible for designing, implementing, and managing IAM solutions that ensure secure access to the organization's systems, applications, and data. This individual will leverage advanced IAM technologies to enhance security, streamline access management processes, and ensure compliance with regulatory requirements, particularly in the healthcare industry. Responsibilities Architecture and Implementation. Design and implement enterprise-level IAM solutions, including identity governance, authentication, and privileged access management (PAM) systems. Collaborate with stakeholders to define IAM requirements and align solutions with business and regulatory needs. Integrate IAM platforms with applications, directories, and cloud environments (e.g., Azure AD, AWS IAM). Access Control and Security Management: Manage and maintain user lifecycle processes, including provisioning, de-provisioning, and role-based access control (RBAC). Ensure secure access to critical healthcare systems in compliance with HIPAA, HITECH, and other relevant regulations. Configure and enforce multi-factor authentication (MFA), single sign-on (SSO), and other access controls. Monitoring and Optimization: Monitor IAM systems for anomalies, unauthorized access, and potential security risks. Optimize IAM processes to improve efficiency and user experience while maintaining robust security. Regularly assess the organization's IAM posture and recommend enhancements. Incident Response and Troubleshooting: Act as an escalation point for IAM-related incidents and resolve complex issues promptly. Investigate and remediate IAM-related vulnerabilities, including credential misuse or privilege escalation. Compliance and Reporting: Ensure IAM solutions and processes meet regulatory requirements and internal policies. Generate reports and metrics to demonstrate IAM system effectiveness and support audits. Assist in documenting IAM processes and maintaining accurate records for compliance. Mentorship and Leadership: Mentor junior IAM engineers and team members, providing guidance and knowledge sharing. Stay abreast of emerging IAM trends, technologies, and best practices to drive innovation within the organization. How You'll Be Successful: Work Experience At least 3 years of experience in Identity and Access Management or related cybersecurity domains - required Hands-on experience with IAM tools such as SailPoint, Okta, Ping Identity, CyberArk, Azure AD, or similar platforms - required Proven experience in directory services (e.g. Active Directory, LDAP) and cloud IAM service (e.g. AWS IAM, Google Workspace) - required Education Four-year bachelor's degree or equivalent experience Computer Science, Information Systems or related field - required Graduate or professional work or advanced degree; or equivalent experience - preferred Licenses and Certifications CIAM, Microsoft Identity and Access Administrator, Cloud based IG certification, or any related IAM certifications - preferred A Place Where You Belong We put our people first. We welcome, value, and respect the beliefs, identities and experiences of our patients and colleagues. We are committed to delivering culturally effective care, creating meaningful partnerships in the communities we serve, and equipping and developing our team members to make Children's Health a place where everyone can contribute. Holistic Benefits How We'll Care for You: Employee portion of medical plan premiums are covered after 3 years. 4%-10% employee savings plan match based on tenure Paid Parental Leave (up to 12 weeks) Caregiver Leave Adoption and surrogacy reimbursement As an equal opportunity employer, Children's Health does not discriminate against employees or applicants because of race, color, religion, sex, gender identity and expression, sexual orientation, age, national origin, veteran or military status, disability, or genetic information or any other Federal or State legally-protected status or class. This applies to all aspects of the employer-employee relationship including but not limited to recruitment, hiring, promotion, transfer pay, training, discipline, workforce adjustments, termination, employee benefits, and any other employment-related activity.
The IT Security Identity and Access Management (IAM) Architect is a critical member of the cybersecurity and IT teams, responsible for designing, implementing, and managing IAM solutions that ensure secure access to the organization's systems, applications, and data. This individual will leverage advanced IAM technologies to enhance security, streamline access management processes, and ensure compliance with regulatory requirements, particularly in the healthcare industry. Responsibilities Architecture and Implementation. Design and implement enterprise-level IAM solutions, including identity governance, authentication, and privileged access management (PAM) systems. Collaborate with stakeholders to define IAM requirements and align solutions with business and regulatory needs. Integrate IAM platforms with applications, directories, and cloud environments (e.g., Azure AD, AWS IAM). Access Control and Security Management: Manage and maintain user lifecycle processes, including provisioning, de-provisioning, and role-based access control (RBAC). Ensure secure access to critical healthcare systems in compliance with HIPAA, HITECH, and other relevant regulations. Configure and enforce multi-factor authentication (MFA), single sign-on (SSO), and other access controls. Monitoring and Optimization: Monitor IAM systems for anomalies, unauthorized access, and potential security risks. Optimize IAM processes to improve efficiency and user experience while maintaining robust security. Regularly assess the organization's IAM posture and recommend enhancements. Incident Response and Troubleshooting: Act as an escalation point for IAM-related incidents and resolve complex issues promptly. Investigate and remediate IAM-related vulnerabilities, including credential misuse or privilege escalation. Compliance and Reporting: Ensure IAM solutions and processes meet regulatory requirements and internal policies. Generate reports and metrics to demonstrate IAM system effectiveness and support audits. Assist in documenting IAM processes and maintaining accurate records for compliance. Mentorship and Leadership: Mentor junior IAM engineers and team members, providing guidance and knowledge sharing. Stay abreast of emerging IAM trends, technologies, and best practices to drive innovation within the organization. How You'll Be Successful: Work Experience At least 3 years of experience in Identity and Access Management or related cybersecurity domains - required Hands-on experience with IAM tools such as SailPoint, Okta, Ping Identity, CyberArk, Azure AD, or similar platforms - required Proven experience in directory services (e.g. Active Directory, LDAP) and cloud IAM service (e.g. AWS IAM, Google Workspace) - required Education Four-year bachelor's degree or equivalent experience Computer Science, Information Systems or related field - required Graduate or professional work or advanced degree; or equivalent experience - preferred Licenses and Certifications CIAM, Microsoft Identity and Access Administrator, Cloud based IG certification, or any related IAM certifications - preferred A Place Where You Belong We put our people first. We welcome, value, and respect the beliefs, identities and experiences of our patients and colleagues. We are committed to delivering culturally effective care, creating meaningful partnerships in the communities we serve, and equipping and developing our team members to make Children's Health a place where everyone can contribute. Holistic Benefits How We'll Care for You: Employee portion of medical plan premiums are covered after 3 years. 4%-10% employee savings plan match based on tenure Paid Parental Leave (up to 12 weeks) Caregiver Leave Adoption and surrogacy reimbursement As an equal opportunity employer, Children's Health does not discriminate against employees or applicants because of race, color, religion, sex, gender identity and expression, sexual orientation, age, national origin, veteran or military status, disability, or genetic information or any other Federal or State legally-protected status or class. This applies to all aspects of the employer-employee relationship including but not limited to recruitment, hiring, promotion, transfer pay, training, discipline, workforce adjustments, termination, employee benefits, and any other employment-related activity.