University of California - San Francisco Campus and Health
Senior Credential Administrator
University of California - San Francisco Campus and Health, San Francisco, California, United States, 94199
Overview
Senior Credential Administrator – IT Identity and Access Management (IAM) – Full Time The Identity and Access Management (IAM) Senior Credential Administrator will serve as a key strategic leader in the university's digital identity and access management initiatives. They will drive the development and implementation of advanced IAM solutions across all departments, including academic, medical, research, and administrative units. Responsibilities include overseeing the creation and maintenance of university IDs for faculty, staff, and students, ensuring IAM infrastructure supports secure, efficient, and scalable access to critical information systems and resources. The role includes designing, implementing, and optimizing badge login solutions to enhance secure authentication, single sign-on (SSO), and identity governance. This position requires high-level collaboration with university leadership and various departments to establish and enforce best practices, leveraging cutting-edge technologies for identity lifecycle management. They will work with Security Operations to address security incidents related to identity and access, mentor the IAM team, shape policies, and allocate departmental resources to align with university goals, ensuring security, efficiency, and compliance. The final salary and offer components are subject to UC policy; placement within the salary range depends on work experience and internal equity. The annual salary range is $118,300 - $268,900. For benefits information, visit: https://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html Responsibilities
The IAM Senior Credential Administrator will positively impact UCSF's operations and culture by ensuring IT infrastructure is operable, secure, efficient, and effective in service of the Universitys mission. This role delivers exceptional information technology services across customers and stakeholders and models UCSF values while executing the University's vision. Key responsibilities include: Lead strategic IAM initiatives across enterprise systems and services. Oversee creation and maintenance of faculty, staff, and student IDs; manage identity lifecycle across systems. Design, implement, and optimize badge login solutions and SSO integrations (e.g., Imprivata) with healthcare and enterprise systems. Collaborate with Security Operations to proactively address and mitigate identity- and access-related security incidents. Provide technical leadership, mentor IAM team members, and guide complex issue resolution. Develop and influence policies to enhance the universitys security posture and compliance with regulations. Work with the IAM Credential Manager to allocate resources in line with university goals. Required Qualifications
Bachelors Degree or four years of equivalent experience in computer science, information technology, cybersecurity, or a related field. Seven (7) years or more of experience in information technology, cybersecurity, computer science, management, higher education, or related field. Expert knowledge of identity management, multifactor authentication, privileged access management, identity verification and authentication methods, including password management, MFA, and SSO. Extensive knowledge of Active Directory, Azure AD, LDAP, SAML, OAuth, SSO, and MFA solutions. Experience managing user credentials across systems, ensuring secure provisioning, maintenance, and revocation. Experience integrating badge login solutions with healthcare and enterprise systems (e.g., Imprivata) and cloud IAM or similar platforms. Strong PowerShell scripting skills. Familiarity with zero-trust security models, PAM, and endpoint security. Understanding of healthcare IT regulations (HIPAA, HITRUST, NIST 800-53) and related regulatory requirements (e.g., GDPR, FERPA) governing credential management in higher education. Knowledge of data encryption technologies and their application. Expert knowledge of computer security best practices and IAM policy development. Experience shaping institution-wide IAM policies and understanding the impact of changes on operations and business objectives. Advanced experience in incident response and digital forensics including reporting. Ability to write and edit technical documentation clearly for diverse stakeholders. Experience with IAM tools, IGA platforms, directory services, and identity federation protocols. Exceptional communication and interpersonal skills with ability to lead and mentor a team. Self-motivated with strong problem-solving skills and the ability to meet deadlines independently and as part of a team. The ability to work onsite in San Francisco and to work overtime when needed. Preferred Qualifications
Ten years or more of experience in information technology, cybersecurity, computer science, management, higher education, or related field. Expert knowledge of identity standards and protocols such as OpenID Connect, SCIM, and OAuth 2.0. Experience with identity lifecycle management tools (e.g., Microsoft Identity Manager, ForgeRock Identity Platform). Experience in complex higher education environments serving academic, medical, research, and administrative functions. License/Certification
One or more of the following certifications: CIAM, CAMS, Microsoft SC-300, CCNP Security, CCIE Security, OSCP, CISSP, CEH, or equivalent certification. About UCSF
The University of California, San Francisco (UCSF) is a leading university dedicated to health, biomedical research, education, and patient care. Infrastructure Services (IS) provides 24x7 support and maintains secure, reliable IT services to enable UCSF missions. Pride Values
UCSF values professionalism, respect, integrity, diversity, and excellence (PRIDE). We are committed to equity and building a diverse community that supports culturally competent education, discovery, and patient care. Equal Employment Opportunity: The University of California is an Equal Opportunity Employer. All qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected status. Organization and Details
Organization: Campus Job Code and Payroll Title: 000521 SYS ADM 5 Job Category: Clinical Systems / IT Professionals, Professional (Non-Clinical) Bargaining Unit: 99 - Policy-Covered (No Bargaining Unit) Employee Class: Career Location: San Francisco, CA Campus: Mission Center Building (SF) Shift: Days Shift Length: 8 Hours Additional Shift Details: M-F
#J-18808-Ljbffr
Senior Credential Administrator – IT Identity and Access Management (IAM) – Full Time The Identity and Access Management (IAM) Senior Credential Administrator will serve as a key strategic leader in the university's digital identity and access management initiatives. They will drive the development and implementation of advanced IAM solutions across all departments, including academic, medical, research, and administrative units. Responsibilities include overseeing the creation and maintenance of university IDs for faculty, staff, and students, ensuring IAM infrastructure supports secure, efficient, and scalable access to critical information systems and resources. The role includes designing, implementing, and optimizing badge login solutions to enhance secure authentication, single sign-on (SSO), and identity governance. This position requires high-level collaboration with university leadership and various departments to establish and enforce best practices, leveraging cutting-edge technologies for identity lifecycle management. They will work with Security Operations to address security incidents related to identity and access, mentor the IAM team, shape policies, and allocate departmental resources to align with university goals, ensuring security, efficiency, and compliance. The final salary and offer components are subject to UC policy; placement within the salary range depends on work experience and internal equity. The annual salary range is $118,300 - $268,900. For benefits information, visit: https://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html Responsibilities
The IAM Senior Credential Administrator will positively impact UCSF's operations and culture by ensuring IT infrastructure is operable, secure, efficient, and effective in service of the Universitys mission. This role delivers exceptional information technology services across customers and stakeholders and models UCSF values while executing the University's vision. Key responsibilities include: Lead strategic IAM initiatives across enterprise systems and services. Oversee creation and maintenance of faculty, staff, and student IDs; manage identity lifecycle across systems. Design, implement, and optimize badge login solutions and SSO integrations (e.g., Imprivata) with healthcare and enterprise systems. Collaborate with Security Operations to proactively address and mitigate identity- and access-related security incidents. Provide technical leadership, mentor IAM team members, and guide complex issue resolution. Develop and influence policies to enhance the universitys security posture and compliance with regulations. Work with the IAM Credential Manager to allocate resources in line with university goals. Required Qualifications
Bachelors Degree or four years of equivalent experience in computer science, information technology, cybersecurity, or a related field. Seven (7) years or more of experience in information technology, cybersecurity, computer science, management, higher education, or related field. Expert knowledge of identity management, multifactor authentication, privileged access management, identity verification and authentication methods, including password management, MFA, and SSO. Extensive knowledge of Active Directory, Azure AD, LDAP, SAML, OAuth, SSO, and MFA solutions. Experience managing user credentials across systems, ensuring secure provisioning, maintenance, and revocation. Experience integrating badge login solutions with healthcare and enterprise systems (e.g., Imprivata) and cloud IAM or similar platforms. Strong PowerShell scripting skills. Familiarity with zero-trust security models, PAM, and endpoint security. Understanding of healthcare IT regulations (HIPAA, HITRUST, NIST 800-53) and related regulatory requirements (e.g., GDPR, FERPA) governing credential management in higher education. Knowledge of data encryption technologies and their application. Expert knowledge of computer security best practices and IAM policy development. Experience shaping institution-wide IAM policies and understanding the impact of changes on operations and business objectives. Advanced experience in incident response and digital forensics including reporting. Ability to write and edit technical documentation clearly for diverse stakeholders. Experience with IAM tools, IGA platforms, directory services, and identity federation protocols. Exceptional communication and interpersonal skills with ability to lead and mentor a team. Self-motivated with strong problem-solving skills and the ability to meet deadlines independently and as part of a team. The ability to work onsite in San Francisco and to work overtime when needed. Preferred Qualifications
Ten years or more of experience in information technology, cybersecurity, computer science, management, higher education, or related field. Expert knowledge of identity standards and protocols such as OpenID Connect, SCIM, and OAuth 2.0. Experience with identity lifecycle management tools (e.g., Microsoft Identity Manager, ForgeRock Identity Platform). Experience in complex higher education environments serving academic, medical, research, and administrative functions. License/Certification
One or more of the following certifications: CIAM, CAMS, Microsoft SC-300, CCNP Security, CCIE Security, OSCP, CISSP, CEH, or equivalent certification. About UCSF
The University of California, San Francisco (UCSF) is a leading university dedicated to health, biomedical research, education, and patient care. Infrastructure Services (IS) provides 24x7 support and maintains secure, reliable IT services to enable UCSF missions. Pride Values
UCSF values professionalism, respect, integrity, diversity, and excellence (PRIDE). We are committed to equity and building a diverse community that supports culturally competent education, discovery, and patient care. Equal Employment Opportunity: The University of California is an Equal Opportunity Employer. All qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, or other protected status. Organization and Details
Organization: Campus Job Code and Payroll Title: 000521 SYS ADM 5 Job Category: Clinical Systems / IT Professionals, Professional (Non-Clinical) Bargaining Unit: 99 - Policy-Covered (No Bargaining Unit) Employee Class: Career Location: San Francisco, CA Campus: Mission Center Building (SF) Shift: Days Shift Length: 8 Hours Additional Shift Details: M-F
#J-18808-Ljbffr