All the benefits and perks you need for you and your family:
Benefits from Day One
Paid Days Off from Day One
Student Loan Repayment Program
Career Development
Whole Person Wellbeing Resources
Mental Health Resources and Support
Our promise to you:
Joining AdventHealth is about being part of something bigger. It’s about belonging to a community that believes in the wholeness of each person, and serves to uplift others in body, mind and spirit. AdventHealth is a place where you can thrive professionally, and grow spiritually, by Extending the Healing Ministry of Christ. Where you will be valued for who you are and the unique experiences you bring to our purpose-minded team. All while understanding that together we are even better.
Schedule:Full Time
The role you’ll contribute:
Responsible for advanced level implementation and support for projects for applications, solutions, integrations and infrastructure maintained by the Privileged Account Management team, related to privileged and remote access. Maintains the service level agreements by using the tools provided, such as the IT ticketing system. Creates documentation as needed and ensures that it is accurate and up to date. Performs as a point of escalation for associate and intermediate engineers as needed. Available by phone/IM/e-mail during normal working hours and by phone after-hours for critical issues. Part of the on-call rotation for the IDM team. Provides outstanding customer service and assists co-workers and other AIT personnel as needed. Maintains the security and privacy of account information, especially PII and PHI, at all times.
The value you’ll bring to the team:
General Supervision and Leadership
Provide direct supervision, leadership, coaching, technical, procedural and process related assistance to associate, intermediate and senior Authentication Engineers. Responsible for designing and providing training for engineers.
Assist Management with staff hiring, successful planning, and performance management activities.
Assist with scheduling and coverage for all day-to-day Privileged Account Management operational activities, including on-call rotation for support, and coverage for monitoring processes, integrations, reports and applications.
Assist in annual budget development for area of responsibility.
Manage and complete projects from start to finish, including: gathering functional and technical requirements, constructing project scope, completing and/or coordinating the completion of technical tasks and deliverables, and presenting results to management.
Recommends improvements to processes to improve the effectiveness of the team.
Leads and represents team in project, department, and team meetings.
Provide high level of technical assistance and mentoring in areas of provisioning and access controls.
Perform other duties that may be assigned by IAM Management.
Customer Service/Support Supervision and Leadership
Interface with customers to communicate policies and procedures, and resolve service issues.
Collaborates with application/system owners and vendors in implementation or changes to access control for AdventHealth applications..
Assist in the definition and management of Operating Level and Service Level Agreements in area of responsibility.
Assist in management of access control monitoring to insure timely and accurate provisioning and deprovisioning of access.
Technical
Leads out management of privileged and remote access environment configuration and development, maintaining system performance and functionality, providing technical mentoring for intermediate and associate team members.
Responsible for working with internal and external customers for privileged and remote access to systems.
Leads out design, development, and implementation of privileged and remote management solutions, integrations and reports, to create a secure and consistent user experience.
Leads implementation of medium to large-scale projects with moderate complexity and mentors other engineers on projects.
Performs role of subject matter expert for privileged and remote access management implementation.
Performs troubleshooting of issues impacting various Privileged Account services.
Provides after-hours escalation support for critical Privileged Account-related issues, as part of the on-call rotation.
Performs system monitoring, alerting, reporting, and analysis/trending.
Utilizes system utilities, tools, logs, processes, and desktop technologies to properly identify root causes and then communicates findings clearly with the appropriate personnel.
Takes ownership of Privileged Account-related issues for other team members on-call and coordinates all repairs as necessary to return the server or application to its previous, normal operating condition as quickly as possible.
Reports major issues to the appropriate leader(s) and participates in the corresponding remediation plans.
Leads business continuity and disaster recover planning/testing initiatives for Privileged Account Management Team.
Maintains an effective and accurate information resource library to include system configuration, disaster recovery procedures, and other technical documentation
Effectively prepares for downtime events, provides coordination for execution, and delivers post assessment & communication.
Provides on-site support at various AdventHealth facilities as needed, which may include out-of-state travel.
Participates in system downtime processes and system upgrades.
Interfaces with vendors, auditors, and regional technical personnel to solve technical problems, prepare post incident reports, and develop best practices.
Serves as a technical escalation for associate and intermediate engineers.
Trains associate, intermediate and senior engineers and other members as needed.
Leads automation of processes when possible via scripting or coordination with other teams utilizing management tools.
Project Management
Participates in project management activities, using the appropriate software tool(s).
Works with the appropriate teams in the design and implementation of future Privileged Account Management systems and solutions.
Successfully assesses project risks, formulates mitigation plans, and delivers successful projects in a timely and cost-efficient manner as shown by project statistics.
Follows formal project methodology to develop and fully document project plans which includes defined business need, project scope, benefits/risks, technical implementation aspects, alternatives considered, assumptions, expenditures, communication plan, and project schedule (work breakdown structure).
Communicates project status and progress to project stakeholders, project managers and leadership.
Works with other teams to make scheduling decisions for system upgrades or changes required to support active projects.
Performs project reporting accurately and in a timely manner
Other
Works independently of direct supervision from manager.
Makes sound decisions in accordance with company policies and guidelines.
Adapts work activities to sudden or unexpected changes, delays and events that directly impact current work assignments, project schedules and/or timelines.
Prioritizes and plans all work activities, using time in an effective and efficient manner. Develops realistic action plans to complete goals and objectives.
Accepts accountability for own actions and always works to improve individual performance, ensuring the best job possible at all times.
Works extended hours as necessary in order to meet project deadlines or resolve critical events.
Submits suggestions for improving work processes and the work place.
Delivers high quality work, demonstrating accuracy and thoroughness in each task. Searches for methods to improve processes while promoting quality among team.
Completes assigned tasks and projects in a timely manner. Responds promptly to assignments.
Maintains an active, working mobile phone at all times in order to support team members and the organization as needed. Position requires that employee must have the ability to make and receive business-related phone calls and text messages 24 hours a day and seven days per week during on-call assignment. However, even when not on-call, employee should be reasonably available for technical support as needed.
Offers assistance and support to team members and contributes to building a positive team spirit.
Monitors ticket queue and updates tickets in a timely manner, keeping customer well-informed throughout the entire process.
Leads Privileged Account Management team at various meetings in partnering with business and IT counterparts on development of solutions for problems and implementation of new ideas.
Assists manager with technology and department roadmap planning.
Communicates changes effectively, while providing well defined implementation plans for proposed changes. Prepares and provides support to those affected by change.
Contributes to the development of skills/expertise of all team members. Collaborates with peers and includes them in planning and development work, accepting and encouraging their input.
Performs other duties as assigned or directed to ensure the smooth and efficient operation of the team/department and in order to comply with established policies and procedures.
Qualifications
KNOWLEDGE AND SKILLS REQUIRED:
Expert ability to comprehend and write technical documentation.
Ability to lead and inspire others.
Demonstrated and proven emotional intelligence.
Strong verbal and written communication skills.
Advanced knowledge of Microsoft Office and Microsoft Office 365.
Strong customer service and support skills.
Ability to work well with people of varying levels of technical abilities.
Ability to gather, analyze, report, and present information.
Advanced understanding of:
Identity Management, Identity Governance, Directories and Databases, Microsoft Active Directory, Privileged Account Management, large and complex systems having multi-layered architectures.
Communications protocols such as HTTP, TCP/IP, FTP, and Firewall.
Standard network security protocol. (eg. OAuth, OAuth2, SAML, LDAP), and Multi-Factor Authentication (MFA) and Single Sign-on (SSO) solutions using multi-layered Adaptive Authentication for identity authentication.
Core security concerns within a typical application. (password hashing, SSL/TLS, encryption at rest, XSS, XSRF)
Advanced proficiency in:
PowerShell, C#, .NET, web application development, or other scripting/coding languages
SQL
KNOWLEDGE AND SKILLS PREFERRED:
Advanced Privileged Access Management.
Ability to train and educate others.
Expert knowledge of system management and monitoring tools/utilities.
Proficient knowledge of Identity Management Directories and Databases, Microsoft Active Directory, Windows Server Operating systems, Linux
Solid understanding of ITIL principles.
Detailed understanding of Information Security frameworks, especially HITRUST.
Strong knowledge of performance tuning concepts with the ability to write efficient, highly performant code/scripts.
Systematic and disciplined with the ability to function in a fast-paced environment.
Ability to communicate effectively with all levels of the organization.
Knowledge of Agile concepts and project management tools (JIRA, etc.)
EDUCATION AND EXPERIENCE REQUIRED:
Four-year degree related to Information Technology or five years of IT experience
EDUCATION AND EXPERIENCE PREFERRED:
Masters degree related to Information Technology, Business, Management or another related field.
5+ year experience with Privileged Account Management, and Privileged Remote Access software (i.e. BeyondTrust, CyberArk or other)
Experience with access management for employees, non-employees and non-person accounts (such as service accounts)
Experience working with 3rd party software integrations
5+ year experience with C#, PowerShell, .Net, etc.
5+ year experience with IDP Software such as SecureAuth or Okta implementing standard network security protocol. (eg. OAuth, OAuth2, SAML, LDAP), and Multi-Factor Authentication (MFA) and Single Sign-on (SSO) solutions using multi-layered Adaptive Authentication for identity authentication, or use of passwordless authentication for Workforce and/or Customer IAM.
LICENSURE, CERTIFICATION OR REGISTRATION REQUIRED:
Industry-recognized technical, identity management and/or security certification. (Microsoft Operating System, Active Directory, Azure, Security +, CIMP, CIST, CISSP, CSSLP, ITIL or other applicable certifications) Extensive and proven experience may be substituted.
This facility is an equal opportunity employer and complies with federal, state and local anti-discrimination laws, regulations and ordinances.
At AdventHealth, Extending the Healing Ministry of Christ is our mission. It calls us to be His hands and feet in helping people feel whole. Our story is one of hope — one that strives to heal and restore the body, mind and spirit. Our more than 80,000 skilled and compassionate caregivers in hospitals, physician practices, outpatient clinics, urgent care centers, skilled nursing facilities, home health agencies and hospice centers are committed to providing individualized, wholistic care.