Responsibilities:  

Responsible for leading the enterprise Cybersecurity IAM strategy, ecosystem, and architecture for Banner Health Develop architectural artifacts, models, patterns, and leads the standards for identities and access, in compliance with legal, regulatory, and company requirements. Manage the lifecycle of user's accounts and identity in the IT landscape. Responsible for IAM product rationalization and design, including cloud identity, non-employee identity, consumer identity, Azure Active Directory, Privileged Access Management, Multi-Factor Authentication, Single Sign-On, among other IAM capabilities, initiatives, and strategies. Contributing member of the IAM team and center of excellence in architecture, develop identity focused roadmaps and strategy documentation, coordinate and work with other teams to support the IAM program and strategic vision, coordinate with stakeholders including Enterprise Architecture, Solutions Architecture, Cybersecurity Architecture, Infrastructure, Applications, and Business teams. Design solutions to resolve complex and highly complex technical and business issues related to Identity Governance and Administration (IGA). Help develop and drive IAM projects, strategic initiatives, budget, and goals; establish strong cross-functional relationships and partnerships with groups above. This position is expected to represent and advocate the perspectives of a principal security engineer or manager in any situation. Operates as an expert in the IGA Architecture discipline.

CORE FUNCTIONS:

1. Analyzes the business and IT environment, including Azure, Google Cloud platforms and on-premises, to detect critical deficiencies from a IAM risk perspective, recommend solutions for improvement, and implement solutions accordingly. Perform IAM architecture validation against IT and Cybersecurity Policies and Standards, applicable regulations (HIPAA, PCI, GDPR, etc.). Participates in threat modelling exercises and architecture design assessments for identity-related systems.

2. Creates and enforce IT Technical standards, and IAM policies, standards, guidelines, best practices, and requirements. Develop, maintain, improve, and enforce architectural templates, processes, and documentation.

3. In collaboration with stakeholders, develops and maintains IGA current and future states, technical requirements, aligning them with business objectives.

4. Design IAM solutions implementations in a rationalized, requirements aligned and systematic manner. Solution designs support Banner's Zero Trust strategy and architecture.

5. Incorporates IAM governance concepts in all architectural designs to include consideration of segregation of duties, provisioning and de-provisioning consistency and governance, user lifecycle workflows, authentication and authorization, master data authorities, federation, security controls, logging and monitoring, privileged access management, automation for better consistency and security governance, zero-trust concepts, and other considerations to keep IAM functions and solutions accounted for and secured.

6. Be trusted advisor by creating solution building blocks and reference architectures and providing guidance and useful designs to cybersecurity engineers. Acts as advisor and mentor to others and mai ntains in-depth knowledge of business strategies, initiatives, and goals as well as industry trends, regulatory requirements, and cybersecurity threats.

7. Advises managers and engineering teams making investments in technologies, or processes as a result of solution design, architecture development cybersecurity risk assessments, identity architectural designs, and IGA risks.

8. Be a thought leader and evaluate emerging/innovative IAM technologies for potential risks and opportunity for Banner and validate architectures for technical soundness in lab environment. Develops and fosters relationships with business stakeholders and information technolo y management.

    

Education Requirements:

Bachelor's degree in Business, Information Security, Computer Science or related field. 

Employer will accept any combination of education determined equivalent to a Bachelor's degree by a professional evaluation service.

Experience Requirements:

·         Must have 10 years' relevant experience in technical, business or health care experience.

·         One-year experience being in cyber security architecture at the enterprise scale. 

·         Advanced knowledge of IAM concepts, including identification, authentication, authorization, access control, identity federation, and digital identity lifecycle management.

·         Must also have advanced knowledge of information technology and Cybersecurity principles and practices.

·         Experience with the acquisition process, including vendor selection, define requirements, contractual documentation development.

·         Experience can be gained concurrently.

·         Knowledge can be gained via work experience or coursework.

Remote work within Salt Lake County, Utah

Qualified applicants send resumes to Yusuf.Yaqub@bannerhealth.com , Reference #VN2024.  Proof of authorization to accept permanent full-time employment in U.S. required if hired.  This company is an equal opportunity employer and fully supports affirmative action practices.