Identity and Access Management (IAM) Engineer

The Identity and Access Management (IAM) Engineer III will be responsible for architecting, implementing, and maintaining IAM solutions at OU Health. This role involves advanced use of identity governance tools, managing tickets, and ensuring robust and secure IAM processes while providing subject matter expertise to the IAM function. The Engineer III will drive technological advancements and ensure the highest standards of access control and security. The IAM Engineer III will also be responsible for integration of critical IAM functions such as SSO, MFA and PAM. This position actively participates in strategic planning and provides 24x7 on-call support with other members of the IAM staff.

Essential Responsibilities

Responsibilities listed in this section are core to the position. Inability to perform these responsibilities with or without an accommodation may result in disqualification from the position.

• Architect, implement, and maintain IAM solutions to manage user lifecycle management, access, and entitlements.

• Design and deploy privileged access management solutions

• Ensure secure management of privileged accounts and credentials.

• Conduct regular reviews and audits of privileged access.

• Oversee and resolve complex IAM-related tickets in ticketing queues, ensuring timely resolution and adherence to SLAs.

• Develop and maintain comprehensive process documentation.

• Lead and support IAM-related projects and initiatives from a technical perspective.

• Identify and implement opportunities for process improvement and automation within the IAM framework.

• Drive the building of technology operational models and workflows for the business.

• Collaborate with IT teams and business units to ensure proper access controls and integration with other systems.

• Proactively identify and bridge knowledge gaps in emerging technologies, ensuring the team stays at the forefront of industry advancements.

• Lead the development and enforcement of IAM security policies, ensuring alignment with regulatory requirements and industry best practices.

• Provide vendor management, service level definition, and management for IAM technologies.

• Create business case proposals, analyze technologies, financials, and project plans.

• Perform contract reviews and ensure risks are mitigated.

• Conduct security awareness training related to IAM.

• Lead strategic contingency planning from an IAM perspective.

• Mentor junior engineers and analysts, providing guidance on complex IAM issues.

• Leads regular business meetings and workshops to ensure knowledge transfer.

• Provide 24x7 on-call support based on IAM staff rotation.

• Adhere to and support OU Health IT standards, policies, and procedures.

• Maintain and protect confidentiality regarding all aspects of patient care and employee information.

• Adhere to Code of Conduct and Mission & Value Statement.

General Responsibilities

• Performs other duties as assigned.

Minimum Qualifications

Education Requirements: Bachelor's degree required.

Experience Requirements: 5 or more years of experience in IAM or a related IT security role required.

License/Certification/Registration Requirements:

• One or more advanced security or IAM certifications are required or must be obtained within 36 months from the hire date. Desired certifications include CISSP, CyberArk CDE, SailPoint Certified IdentityNow Engineer/Architect, and Microsoft SC-300.

• Other industry certifications in IAM or IT are highly desirable, including CompTIA Security+, IDPro CIAM, Microsoft Certified.

Knowledge/Skills/Abilities Required:

• Expert knowledge of IAM technologies, protocols, and best practices, including SSO, MFA, and PAM.

• Proven engineering experience with IAM services.

• Experience with implementing SSO and MFA technologies within IAM frameworks.

• Experience in managing multiple high-risk projects, including those involving external vendors.

• Strong experience in applicable programming languages, and scripting.

• Expert level technical problem-solving skills with strong attention to detail.

• Excellent communication, leadership, and teamwork skills.

• Demonstrated ability to lead technical projects and mentor junior team members.

• Experience in identifying and leading the implementation of process improvements and automation solutions within IAM.

• Expert knowledge of security regulations and frameworks (HIPAA, HITECH, HITRUST, NIST, ISO, COBIT).

• Leadership skills to establish and maintain business relations with technical resources, customers, business partners, vendors, and other IT personnel.

#cb