CHOP is seeking to transform its end-to-end Identity and Access Management (IAM) workflow, automating identity instantiation, ongoing management, and decommissioning. The goal is to establish a robust Identity Governance & Administration (IGA) strategy that integrates with key platform solutions, enforces segregation-of-duties, and moves towards a "just in time" (JITA) approach for privileged access management, while also supporting modern authentication methods and ensuring compliance with risk frameworks like HIPAA/NIST.
Requirements
- Strong understanding of identity lifecycle, access governance, and authentication protocols. (Required proficiency)
- Experience with IAM platforms such as Microsoft Entra ID, CyberArk, or Oracle Identity Manager. (Required proficiency)
- Familiarity with Agile methodologies and tools (e.g., Jira, Azure DevOps). (Preferred proficiency)
- Reference key risk frameworks inclusive of HIPAA/NIST, along with Cloud Infrastructure Entitlement Management (CIEM).
- Evaluate and approve enhancements, patches, and upgrades to IAM platforms.
- Implement security practices and procedures. Measure compliance. Participate in audits and manage corrective action plans.
- At least five (5) years of experience in IAM, with at least 2 years in a product owner or managerial role. Preferred
Responsibilities
- Define and maintain the IAM product vision, roadmap, and backlog in alignment with enterprise security and digital transformation goals.
- Serve as the primary liaison between business stakeholders, technical teams, and vendor partners for IAM initiatives.
- Lead the transition from legacy platforms to modern solutions.
- Establish an Identity Governance & Administration (IGA) strategy at CHOP that deeply integrates with our key platform solutions for entitlement management, establishes segregation-of-duties, and moves us towards a “just in time” (JITA) approach to privileged access management.
- Collaborate with InfoSec, HRIS, and IT operations to ensure seamless identity lifecycle management and access provisioning.
- Guide the implementation and integration of IAM tools with enterprise systems.
- Support the adoption of passwordless authentication, MFA, and identity proofing technologies
Other
- This department works approximately 80% remotely, 20% on site in our Philadelphia offices on an as-needed basis.
- Bachelor's Degree Computer science, computer/software engineering, information technology or similar field of study. Required
- At least eight (8) years Experience managing and supporting infrastructure solutions, with a focus on ensuring the stability, reliability, and scalability of IT operations Required
- At least five (5) years Experience implementing best practices, and managing day-to-day operations to support organizational needs effectively Required
- At least two (2) years Experience leading Infrastructure projects. Required