IAM Engineer

• Participate in IAM projects and initiatives, and collaborate with other engineers, analysts, and managers to deliver high-quality IAM solutions
• Assist in the resolution of project issues and recording time against tasks accurately and timely
• Assist in work plan development and management
• Ensure successful completion of assigned projects on schedule, within budget, and in accordance with Advocate Health standards
• Design, implement, and maintain IAM solutions using various tools and technologies, such as Active Directory, Azure AD, SSO, MFA, SAML, OAuth, etc
• Participate in testing, validation, and quality assurance of IAM solutions, ensuring functionality, performance, and security, and monitor and audit IAM systems, activities, and processes
• Generate reports and dashboards to track and measure IAM performance and compliance
• Perform initial evaluation and response to alarms and incidents
• Evaluate and implement improvements to monitoring protocols
• Perform initial troubleshooting, analysis and remediation of access and permissions issues
• Manage the identity lifecycle and access policies for users, groups, roles, and applications across the organization
• Perform access reviews and audits to ensure compliance with IAM policies and standards, and provide audit, privacy, legal and compliance support for IAM security/access related issues
• Adhere to all procedures necessary to protect information systems from intentional or inadvertent modification, disclosure, or destruction
• Provide technical support and guidance to clients and internal teams on IAM-related matters, such as user provisioning, access management, identity governance, etc
• Responsible for developing and reporting on overall metrics of assigned areas of responsibility
• Document and update IAM policies, procedures, and configurations, and ensure they align with the best practices and industry standards
• Analyze and resolve IAM issues and incidents and provide root cause analysis and recommendations for improvement
• Evaluate issues/tickets and assign tickets to junior team members
• Recommend and implement solutions for problems within the team
• Collaborate with the IAM team, application owners, and business stakeholders to understand and document IAM requirements and issues, and act as customer liaison, working with end-users or business contacts to communicate the requirements and timelines
• Analyze data based on the end-user requirements and information gathering
• Demonstrate ability to identify and understand business impact of decisions made to fulfill customer expectations
• Identify and remediate any IAM vulnerabilities, risks, or gaps, and implement corrective actions and preventive measures
• Support security/access related records in all phases including build, configuration, testing, implementation, go-live support, and optimization, and perform process improvement and security optimization tasks
• Serve as escalation for the application teams for security/access issues, and as IAM point of contact for assigned audits and security related activities with other departments
• Document all responses
• Maintain knowledge of applicable technologies, job/system related forums, roadmaps and/or related documentation
• Research and evaluate new IAM technologies and best practices and recommend improvements and enhancements to the IAM architecture and processes
• Contribute to team effort by sharing of knowledge, aiding, and demonstrating initiative
• Train and mentor other IAM team members

• Bachelor's Degree (or equivalent knowledge) in Information Systems, Computer Science or related field
• IAM certification (SailPoint, Okta, or other IAM engineering related certification) within one year
• Typically requires at least two to four years of experience in IAM Engineering, administration, or support, preferably in a large and complex environment and experience in IT fields such as Cyber Security, Epic Security, or other technical areas
• or an equivalent combination of education and experience
• Strong knowledge and skills in IAM concepts, principles, and standards, such as identity lifecycle management, access management, authentication, authorization, and identity federation
• Proficient in IAM tools and technologies, such as Active Directory, Azure AD, SSO, MFA, SAML, OAuth, and SCIM
• Experience in scripting and automation using PowerShell, Python, or other languages
• Experience in cloud computing platforms and services, such as Azure, AWS, or Google Cloud
• Requires an understanding of IAM technology, process and procedures and the ability to apply that understanding to supporting existing systems and/or implementing new systems that directly benefit the patient-care, education, and research and/or business functions of Advocate Health
• Strong knowledge of user provisioning procedures and role-based access control
• Broad understanding of tools and technologies from end user devices through the database management system
• Detailed knowledge of security as it relates to application support
• Understanding of security mechanisms with clinical and hospital information systems
• Strong data analytical, critical thinking, reasoning, deduction, inference, and problem-solving skills
• Ability to learn new technologies and skills quickly
• Proficiency in the Microsoft Suite (Word, PowerPoint, Excel, Access) or similar products
• Ability to maintain a high level of confidentiality
• Excellent verbal and written communication skills and the demonstrated ability to communicate well with all levels of the organization
• Proven experience working in a team oriented, collaborative environment
• Foster a cooperative work environment by using communication skills, interpersonal relationships and team building
• Demonstrates experience in developing processes and documents to ensure quality delivery of services
• Clear and strong understanding of customer service requirements and skills
• Ability to work in fast-paced, dynamic team environment
• Highly organized with the ability to work on numerous simultaneous activities while paying attention to detail and quality
• Self-motivated, able to work independently to complete tasks and respond to department requests and to collaborate with others to utilize their resources and knowledge to identify high quality solutions

Certifications in IAM, security or Epic are a plus

• Paid Time Off programs
• Health and welfare benefits such as medical, dental, vision, life, and Short- and Long-Term Disability
• Flexible Spending Accounts for eligible health care and dependent care expenses
• Family benefits such as adoption assistance and paid parental leave
• Defined contribution retirement plans with employer match and other financial wellness programs
• Educational Assistance Program