IAM Engineer at Mass General Brigham(PHS) in Somerville, Massachusetts

Job Description:

At Mass General Brigham Digital, we pride ourselves on our ability to create maximum strategic, clinical, and operational value from established and emergent technologies for our patients, care teams, researchers, and employees. Digital health will not only enhance the equity and efficiency of healthcare delivery, but it will also help make medicine more personalized and precise.


We recognize that increasing value and continually improving quality while maintaining an inclusive focus are essential to organizational excellence, and we invite you to join us on this journey. The work we do in Digital is a strategic imperative, and there is a strong and growing understanding of how together we will transform Mass General Brigham in innovative and impactful ways.


Reporting directly to the VP Infrastructure Technology Services (ITS), the Information Security Engineering Specialist is an integral member of team that is responsible for the design, implementation, provisioning, maintenance and support of the Mass General Brigham (MGB) Identity and Access Management (IAM) platforms and systems. The Information Security Engineering Specialist II designs, plans, implements the productive, effective, and secure delivery of IAM systems that are supported on a 24/7/365 basis.



Principal Duties and Responsibilities:

• Works on a team responsible for identity and access management from a services and operational perspective. Services include Privileged Access Management (PAM) that focuses exclusively on protecting privileged accounts, requiring unique restrictions, and limiting the number of users allowed access to sensitive data or environments.
  
  


• Works on a team responsible for identity and access provisioning, automation of provisioning when possible, and integration of the IAM platform and tools with all Digital services and applications.
  
  


• Participates in continual improvement of services and to proactively develop IAM solutions that meet the demands of new technologies and technical environments.
  
  


• Active member of an IAM team working collaboratively and partnering with other MGB groups to design and implement the tools and processes that maintain identity and access management.
  
  


• Supports best practices and creating an environment that fosters continuous IAM service delivery, optimization, and improvement.
  
  


• Supports a strategy and roadmap for organizational excellence in delivery of IAM services, procedures and tools and ensure that all service management processes enable ITS service agility.
  
  


• Provides support for daily requests.
  
  


• When assigned, monitors the IAM work request and incident queue through Service Now and assumes responsibility for incoming requests
  
  


• Suports the migration from a home build IAM platform to Saviynt
  
  


• Support the design, plan and execution of the integration of Workday at MGB
  
  


• Support all Cloud IAM efforts in support of MGBs multi-cloud strategy
  
  


• Helps lead the IAM modernization project (3-year) and excecutes on all assigned tasks
  
  


• Occasional after hours and weekend work may be required in order to perform tasks that cannot be done during normal business hours
  
  


• Will participate in the IAM on call rotations, and carries a cell phone 24x7
  
  

• Use/s the Mass General Brigham values to govern decisions, actions, and behaviors. These values guide how we get our work done: Patients, Affordability, Accountability & Service Commitment, Decisiveness, Innovation & Thoughtful Risk; and how we treat each other: Diversity & Inclusion, Integrity & Respect, Learning, Continuous Improvement & Personal Growth, Teamwork & Collaboration
  
  


• Other duties and responsibilities as assigned
  
  

Qualifications

Qualifications:

• Bachelor's degree (B.A./B.S.) in a technical discipline from an accredited college or university required.
  
  


• 7+ years of experience in IT required.
  
  


• 2-5 years of experience in an Identity and Access Management role preferred.
  
  


• Healthcare experience desired
  
  

Skills/Abilities/Competencies:

• Hands-on experience designing, implementing, and deploying IAM solutions in an enterprise environment
  
  


• Experience with Microsoft Windows and other operating systems such as Linux and Apple (e.g., MacOS and Linux) is desired.
  
  


• Experience with Saviynt to enable secure applications, data and infrastructure for Cloud (Office 365, AWS, Azure, GCP, Salesforce, Workday) and Enterprise solutions required.
  
  


• Working knowledge on administration integration and tickets processing in Service Now highly desired
  
  


• Knowledge of Workday desired
  
  


• Knowledge of information security technologies is required.
  
  


• Knowledge of Java, JQuery, AJAX, Spring and REST technologies
  
  


• Experience with handling and resolving customer issues or problems.
  
  


• Must have good communication skills, the ability to learn and be self-directed, independent, diligent in completing tasks
  
  


• Knowledge and experience of Cloud IAM features, functionalities, technologies, and techniques desired
  
  


• Knowledge of HIPAA, Mass ID Theft regulation 201 CMR 17, PCI-DSS, and other appropriate information security regulatory requirements for healhcare entities.
  
  


• Ability to lead other team members
  
  


• Ability to cross-train less experienced Engineers
  
  


• Ability to lead meeting discussions
  
  

EEO Statement

Mass General Brigham is an Equal Opportunity Employer & by embracing diverse skills, perspectives and ideas, we choose to lead. All qualified applicants will receive consideration for employment without regard to race, color, religious creed, national origin, sex, age, gender identity, disability, sexual orientation, military service, genetic information, and/or other status protected under law. Apply Now