Rush
Sr. Security IAM Architect Job at Rush in Schiller Park
Rush, Schiller Park, IL, US
Location: Chicago, IL Hospital: RUSH University Medical Center Department: Cybersecurity Operations Work Type: Full Time (Total FTE between 0.9 and 1.0) Shift: Shift 1 Work Schedule: 8 Hr (8:00:00 AM - 5:00:00 PM) Summary: The Senior Identity and Access Management (IAM) Architect will be responsible for defining and architecting Rush University System for Health's (RUSH) IAM program & security strategy. Provide appropriate oversight and controls to ensure compliance with the IAM program including operational processes, procedures and defined regulatory standards. The Senior IAM Architect will work under the direction of the Business Information Security Officer, supporting the execution and coordination of the IAM program with leaders across the enterprise. The Senior IAM Architect will also acquire a deep understanding of RUSH's internal administrative systems and existing capabilities, in order to support the IAM and Cybersecurity teams in efforts to drive operational effectiveness, efficiencies and provide solutions to a variety of business challenges. Exemplifies the RUSH mission, vision and values and acts in accordance with RUSH policies and procedures. Responsibilities: • Leads the development of the overall approach and strategy for the RUSH IAM program and environment. • Provide subject-matter expertise across all IAM topics as it relates to both cloud and on-premise enterprise technologies and the relationship between the architecture patterns. • Provide architectural and best practices leadership related to the implementation of controls in AppSec, DevSecOps, and IAM domains. • Research information on new and emerging technologies and methods in the cybersecurity space. Develop comprehensive security strategies for APIs, CI/CD platforms, and IAM domains. • Develop strategies and roadmaps for addressing complex business challenges including authentication, authorization, integration, and automation. • Develop plans for integrating the identity management authentication and authorization frameworks into new and existing applications. • Provide advisory guidance and consultation to system development projects around IAM requirements and controls. • Develop IAM methodologies and assist with implementing policies and procedures to control access security at RUSH including controlling information workflows for the addition, modification and removal of user access across in-scope platforms and applications. • Partners with executive sponsors to communicate program goals, objectives and outcomes. • Provide guidance, consultation, and assistance with achievement of department productivity, quality, and customer satisfaction goals. • Leads regular interactions with executive sponsors to inform, alert, negotiate and maintain successful relationships and shared visions for the program outcome. • Establishes and ensures appropriate governance functions are implemented for the program in accordance with enterprise policies, practices and on behalf of the executive sponsors and/or senior leadership responsible for the program. • Leads reviews with the executive sponsor and stakeholders to identify organic or specific program requirements. Directs the development of strategy to address program needs. • Acts as an advisor and builds and maintains relationships across the wider stakeholder community to support adoption of the IAM program and identify and resolve business issues. • Leads the oversight of the program's direction including development of an IAM roadmap, reports on progress compared with the plan and the production of agreed-upon deliverables. • Collaborate with all relevant stakeholders to define requirements and use cases for future IAM solution deployments, configurations, and customizations. • Participate in audits and other compliance assessment activities as needed to assist with meeting RUSH compliance requirements and deadlines. Required Job Qualifications: • Bachelor's Degree in information technology, Engineering or a similar field • 7 years IT experience • 5 years of experience Cybersecurity/IAM engineering and architecture • 3 years of experience in core Cloud technologies with experience in AWS, GCP or Azure • Good experience in development of architectural principles and design patterns • A strong working knowledge interfacing with REST & JSON APIs as well as SCIM for user collection, provisioning, and deprovisioning • Experience in organizing and working in a DevOps and agile environment (SCRUM, SAFe) • Experience with SSO, directories, API gateways, Delegated Administration, and SOC services • Application security experience including OAuth, FIDO, multi-factor authentication, OIDC, and securing web apps in mobile platforms • Able to work in project teams, under pressure, facilitate discussion, decision-making, and conflict resolution • Strong organizational, analytical and communication skills required • Must have ability to troubleshoot system failures, identify root causes, ensure availability and integrity of IAM systems • Build and maintain effective working relationships with various internal and external teams and vendors • Experience architecting large-scale IAM solutions and operations for complex environments • Experience developing large-scale IAM programs and IAM governance • Experience managing or supporting an IAM solution (SailPoint, Microsoft, CyberArk, Okta, etc.) • Excellent understanding of IT security and IAM risk management, strategic planning, and related tactical initiatives • Thorough understanding of Information Security frameworks and best practices (e.g. HIPPA, PCI, SOX, ISO, NIST) Preferred Job Qualifications: • At least 3 years of healthcare and/or academic medical center IAM, information technology and/or information security experience Rush is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics.