All the benefits and perks you need for you and your family:
Benefits from Day One
Paid Days Off from Day One
Student Loan Repayment Program
Whole Person Wellbeing Resources
Mental Health Resources and Support
Our promise to you:
Joining AdventHealth is about being part of something bigger. It’s about belonging to a community that believes in the wholeness of each person, and serves to uplift others in body, mind and spirit. AdventHealth is a place where you can thrive professionally, and grow spiritually, by Extending the Healing Ministry of Christ. Where you will be valued for who you are and the unique experiences you bring to our purpose-minded team. All while understanding that together we are even better.
The role you’ll contribute:
Responsible for advanced level design, configuration, implementation and support for applications, solutions, and integrations maintained by the Identity Management team, including requirements documentation and configuration in both internally developed and vendor developed applications, using GUI and back-end tools. Maintains the service level agreements by using the tools provided, such as the IT ticketing system. Creates documentation as needed and ensures that it is accurate and up to date. Performs as a primary support for the Identity related applications. Available by phone/IM/e-mail during normal working hours and by phone after-hours for critical issues. Part of the on-call rotation for the IDM team. Provides outstanding customer service and assists co-workers and other AIT personnel as needed. Maintains the security and privacy of account information, especially PII and PHI, at all times.
The value you’ll bring to the team:
Leads out analysis of identity management solutions, integrations and reports, to create a secure and consistent user experience, including understanding and articulating customer needs using independent judgement, documenting functional requirements, and interfacing with architects, engineers, analysts for issues discovered or enhancements needed based on customer feedback.
Leads out analysis of personnel and position management for all personnel types in accordance with AdventHealth policies for concurrent employment of employees and non-employees, interfacing with HR, Medical Staff Services, Contingent Workforce Stakeholders, and Vendor Partners, maintaining the integrity of personnel identities and associated positions.
Develops complex reports, leading team in investigating and remediating any discrepancies, and works with engineers or other technical resources on reporting automation.
Leads out coordinated cross-functional team efforts for updates to personnel accounts including merging of identities to maintain the integrity of workforce member identities.
Performs troubleshooting of issues impacting various Identity services.
Provides after-hours support for critical Identity-related issues, as part of the on-call rotation.
Creates formal communication and training plans and conducts enterprise-wide training for internal and external stakeholders.
Continually analyzes processes to recommend improvements for increasing efficiency, quality, and compliance
Expert in knowledge of employee and non-employee onboarding and off boarding processes.
Takes ownership of Identity-related issues when on-call and coordinates all repairs as necessary to return the server or application to its previous, normal operating condition as quickly as possible.
Reports major issues to the appropriate leader(s) and participates in the corresponding remediation plans.
Documents business continuity and disaster recover planning/testing initiatives for Identity Management Team in coordination with team members.
Maintains an effective and accurate information resource library to include system configuration, disaster recovery procedures, and other technical and end-user facing documentation
Provides on-site support at various AdventHealth facilities as needed, which may include out-of-state travel.
Participates in system downtime processes and system upgrades.
Interfaces with vendors, auditors, and regional technical personnel to solve technical problems, prepare post incident reports, and develop best practices.
Serves as an scalation for associate and intermediate analysts.
Trains associate, intermediate analysts and other members as needed.
Leads out medium to large-scale projects with moderate complexity and mentors other analysts on projects.
Leads team project management activities, using the appropriate software tool(s).
Works with the appropriate teams in the design and implementation of future Identity Management systems and solutions.
Successfully assesses project risks, formulates mitigation plans, and delivers successful projects in a timely and cost-efficient manner as shown by project statistics.
Follows formal project methodology to develop and fully document project plans which includes defined business need, project scope, benefits/risks, technical implementation aspects, alternatives considered, assumptions, expenditures, communication plan, and project schedule (work breakdown structure).
Communicates project status and progress to project stakeholders, project managers and leadership.
Works with other teams to make scheduling decisions for system upgrades or changes required to support active projects.
Accepts accountability for own actions and always works to improve individual performance, ensuring the best job possible at all times.
Works extended hours as necessary in order to meet project deadlines or resolve critical events.
Submits suggestions for improving work processes and the work place.
Delivers high quality work, demonstrating accuracy and thoroughness in each task. Searches for methods to improve processes while promoting quality among team.
Completes assigned tasks and projects in a timely manner. Responds promptly to assignments.
Maintains an active, working mobile phone at all times in order to support team members and the organization as needed. Position requires that employee must have the ability to make and receive business-related phone calls and text messages 24 hours a day and seven days per week during on-call assignment. However, even when not on-call, employee should be reasonably available for technical support as needed.
Acknowledges receipt of all service alerts or pages within 30 minutes of receiving a service call or text when on-call. Must engage in problem diagnostics of the system or application within one hour of receiving a service call or text when on-call.
Offers assistance and support to team members and contributes to building a positive team spirit.
Monitors ticket queue and updates tickets in a timely manner, keeping customer well-informed throughout the entire process.
Leads Identity Management team at various meetings in partnering with business and IT counterparts on development of solutions for problems and implementation of new ideas.
Assists manager with roadmap and budget planning.
Communicates changes effectively, while providing well defined implementation plans for proposed changes. Prepares and provides support to those affected by change.
Contributes to the development of skills/expertise of all team members. Collaborates with peers and includes them in planning and development work, accepting and encouraging their input.
Performs other duties as assigned or directed to ensure the smooth and efficient operation of the team/department and in order to comply with established policies and procedures.
The expertise and experiences you’ll need to succeed:
KNOWLEDGE AND SKILLS REQUIRED:
Expert ability to comprehend and write technical documentation.
Strong verbal and written communication skills.
Advanced knowledge of Microsoft Office and Microsoft Office 365.
Strong customer service and support skills, using emotional intelligence to be able to lead out conversations which may include conflict, while maintaining composure and respectful dialogue.
Ability to train and educate others.
Ability to work well with people of varying levels of technical abilities.
Ability to gather, analyze, report, and present information.
Aptitude to quickly learn new systems with little or no documentation. Continuous learning of new systems, business processes and concepts.
Systematic and disciplined with the ability to function in a fast-paced environment
Advanced understanding of:
Identity Management, Identity Governance, Directories and Databases, Microsoft Active Directory, Privileged Account Management, large and complex systems having multi-layered architectures and use of Software Development Lifecycle methodology.
Advanced proficiency in:
Methods of access control to applications/systems, including role-based, rule-based, attribute-based, and management of exceptions.
Writing and analyzing complex PL/SQL, SQL (MSSQL, MySQL)
Application design and configuration in at least five or more platforms.
KNOWLEDGE AND SKILLS PREFERRED:
Expert knowledge of system management and monitoring tools/utilities.
Proficient knowledge of Identity Management Directories and Databases, Microsoft Active Directory.
Solid understanding of ITIL principles.
Detailed understanding of Information Security frameworks, especially HITRUST.
Strong knowledge of performance tuning concepts with the ability to write efficient, highly performant code.
Ability to communicate effectively with all levels of the organization.
Knowledge of Agile concepts and project management tools (JIRA, etc.)
Relational data modeling, data warehousing standards and schema, communications protocols such as HTTP, TCP/IP, FTP, and Firewall.
Standard network security protocol. (eg. OAuth, OAuth2, SAML, LDAP), and Multi-Factor Authentication (MFA) and Single Sign-on (SSO) solutions using multi-layered Adaptive Authentication for identity authentication.
Core security concerns within a typical application. (password hashing, SSL/TLS, encryption at rest, XSS, XSRF)
EDUCATION AND EXPERIENCE REQUIRED:
Four-year degree related to Information Technology or five years of IT experience
5+ years experience with configuration and design for roles and exceptions in multiple software applications and directories.
5+ years experience provisioning and deprovisioning accounts in multiple platforms and directories, including Active Directory.
5+ years experience with Identity Management and/or Identity Governance software (i.e. Microfocus/NetIQ, Sailpoint, or other)
5+ years with experience working with ServiceNow, or other customer service platform
5+ years Experience with identity lifecycle management for employees, non-employees and non-person accounts (such as service accounts)
EDUCATION AND EXPERIENCE PREFERRED:
Experience with Microsoft Project, and planning/managing execution of project-related tasks.
3+ years of project management experience.
3+ years of experience in healthcare information systems.
3+ years of Change management experience.
5+ years experience implementing solutions for enterprise systems of record (e.g., HR, Credentialing, Non/Employee)
5+ years experience supporting 3rd party software integrations
5+ years experience in writing and analyzing complex PL/SQL, SQL (MSSQL, MySQL).
Experience with Non-Employee Identity Management Systems, (i.e. SecZetta Third Party Identity Risk applications)
Experience with Privileged Account Management, and Privileged Remote Access software (i.e. BeyondTrust, CyberArk or other)
Experience with IDP Software such as SecureAuth or Okta implementing standard network security protocol. (eg. OAuth, OAuth2, SAML, LDAP), and Multi-Factor Authentication (MFA) and Single Sign-on (SSO) solutions using multi-layered Adaptive Authentication for identity authentication, or use of passwordless authentication for Workforce and/or Customer IAM.
LICENSURE, CERTIFICATION OR REGISTRATION REQUIRED:
Industry-recognized technical, identity management and/or security certification. (Microsoft Operating System, Active Directory, Azure, Security +, CIMP, CIST, CISSP, CSSLP, ITIL or other applicable certifications) Extensive and proven experience may be substituted.
LICENSURE, CERTIFICATION OR REGISTRATION PREFERRED:
Two or more industry-recognized technical, identity management and/or security certification. (Microsoft Operating System, Active Directory, Azure, Security +, CIMP, CIST, CISSP, CSSLP, ITIL or other applicable certifications) Extensive and proven experience may be substituted.
At AdventHealth, Extending the Healing Ministry of Christ is our mission. It calls us to be His hands and feet in helping people feel whole. Our story is one of hope — one that strives to heal and restore the body, mind and spirit. Our more than 80,000 skilled and compassionate caregivers in hospitals, physician practices, outpatient clinics, urgent care centers, skilled nursing facilities, home health agencies and hospice centers are committed to providing individualized, wholistic care.