Boston Medical Center (BMC)
Director Identity Governance and Administration
Boston Medical Center (BMC), Quincy, Massachusetts, us, 02171
Overview
Director Identity Governance and Administration at Boston Medical Center Health System (BMCHS). Under the direction of the VP of Information Security, the Director will provide strategic leadership for BMCHS’s Identity and Access Management (IGA) program. This role designs, implements, and optimizes secure, scalable IAM solutions that align with organizational objectives, regulatory requirements, and industry best practices. The Director will partner with cybersecurity, infrastructure, operations, and clinical leadership teams to ensure identity governance processes are efficient, compliant, and user-friendly across the enterprise. This is a high-impact leadership position that shapes BMCHS’s IAM roadmap, strengthens cybersecurity capabilities, and drives operational efficiency.
Responsibilities
Develop and execute a comprehensive Identity Governance and Administration (IGA) strategy and roadmap aligned with organizational goals, security requirements, and regulatory standards.
Establish IAM architecture standards, policies, and procedures to ensure consistency and compliance across BMCHS.
Oversee the full identity lifecycle, including onboarding, offboarding, access provisioning, certification campaigns, and role/entitlement management.
Lead the implementation, integration, and optimization of IGA platforms.
Collaborate with HR, IT, and business leaders to ensure timely and accurate identity provisioning and deprovisioning.
Drive initiatives for role-based access control (RBAC), separation of duties (SoD), privileged account management, and least-privilege enforcement.
Conduct risk assessments and security audits related to account administration, recommending and implementing mitigation strategies.
Ensure IAM processes meet HIPAA, NIST, and other applicable regulatory and industry frameworks.
Lead enterprise access review programs, track compliance metrics, and address identified gaps.
Maintain awareness of emerging IAM technologies, threat landscapes, and regulatory changes.
Lead a team of IAM professionals, providing mentorship, coaching, and performance management.
Build cross-functional relationships to integrate IAM best practices into enterprise applications, infrastructure, and workflows.
Partner with organizational leadership to promote a security-first culture in identity management.
Qualifications
Required Education and Experience: Bachelor’s degree in Computer Science, Cybersecurity, or related field and eight+ years of experience in cybersecurity, information security, designing and implementing enterprise identity solutions; or an equivalent combination of education and experience.
Experience with auditing, risk management, and contract/vendor negotiation.
Experience with automation in IAM processes.
Hands-on experience with federation protocols (SAML, OAuth, OpenID Connect).
Preferred Education and Experience: Master’s degree.
Certificates, Licenses, Registrations (Preferred): Certified Security Systems Professional (CISSP).
Knowledge, Skills & Abilities: Ability to manage complexity in dynamic environments; stay current with industry trends; solid understanding of IT and cybersecurity; ability to translate technical concepts into business impact and vice versa; familiarity with cybersecurity management frameworks; familiarity with Identity Governance and Administration technologies; knowledge of regulatory requirements (e.g., HIPAA).
About BMCHS Boston Medical Center Health System (BMCHS) is a ~$6 billion integrated academic health care system serving Massachusetts and New Hampshire. BMCHS comprises six entities and is committed to value-based care and addressing health inequities. Equal Opportunity Employer/Disabled/Veterans.
Notify and Availability We encourage applicants and do not solicit purchases of equipment or entries via text or social media. This posting does not include any offer related to apps or downloads.
#J-18808-Ljbffr
Director Identity Governance and Administration at Boston Medical Center Health System (BMCHS). Under the direction of the VP of Information Security, the Director will provide strategic leadership for BMCHS’s Identity and Access Management (IGA) program. This role designs, implements, and optimizes secure, scalable IAM solutions that align with organizational objectives, regulatory requirements, and industry best practices. The Director will partner with cybersecurity, infrastructure, operations, and clinical leadership teams to ensure identity governance processes are efficient, compliant, and user-friendly across the enterprise. This is a high-impact leadership position that shapes BMCHS’s IAM roadmap, strengthens cybersecurity capabilities, and drives operational efficiency.
Responsibilities
Develop and execute a comprehensive Identity Governance and Administration (IGA) strategy and roadmap aligned with organizational goals, security requirements, and regulatory standards.
Establish IAM architecture standards, policies, and procedures to ensure consistency and compliance across BMCHS.
Oversee the full identity lifecycle, including onboarding, offboarding, access provisioning, certification campaigns, and role/entitlement management.
Lead the implementation, integration, and optimization of IGA platforms.
Collaborate with HR, IT, and business leaders to ensure timely and accurate identity provisioning and deprovisioning.
Drive initiatives for role-based access control (RBAC), separation of duties (SoD), privileged account management, and least-privilege enforcement.
Conduct risk assessments and security audits related to account administration, recommending and implementing mitigation strategies.
Ensure IAM processes meet HIPAA, NIST, and other applicable regulatory and industry frameworks.
Lead enterprise access review programs, track compliance metrics, and address identified gaps.
Maintain awareness of emerging IAM technologies, threat landscapes, and regulatory changes.
Lead a team of IAM professionals, providing mentorship, coaching, and performance management.
Build cross-functional relationships to integrate IAM best practices into enterprise applications, infrastructure, and workflows.
Partner with organizational leadership to promote a security-first culture in identity management.
Qualifications
Required Education and Experience: Bachelor’s degree in Computer Science, Cybersecurity, or related field and eight+ years of experience in cybersecurity, information security, designing and implementing enterprise identity solutions; or an equivalent combination of education and experience.
Experience with auditing, risk management, and contract/vendor negotiation.
Experience with automation in IAM processes.
Hands-on experience with federation protocols (SAML, OAuth, OpenID Connect).
Preferred Education and Experience: Master’s degree.
Certificates, Licenses, Registrations (Preferred): Certified Security Systems Professional (CISSP).
Knowledge, Skills & Abilities: Ability to manage complexity in dynamic environments; stay current with industry trends; solid understanding of IT and cybersecurity; ability to translate technical concepts into business impact and vice versa; familiarity with cybersecurity management frameworks; familiarity with Identity Governance and Administration technologies; knowledge of regulatory requirements (e.g., HIPAA).
About BMCHS Boston Medical Center Health System (BMCHS) is a ~$6 billion integrated academic health care system serving Massachusetts and New Hampshire. BMCHS comprises six entities and is committed to value-based care and addressing health inequities. Equal Opportunity Employer/Disabled/Veterans.
Notify and Availability We encourage applicants and do not solicit purchases of equipment or entries via text or social media. This posting does not include any offer related to apps or downloads.
#J-18808-Ljbffr