Manager Identity and Access Management
Minneapolis, MN  / Virginia Beach, VA 
Posted 3 days ago
Job Description

Our purpose is to serve the nation with the single most trusted and capable health information network, built to increase patient safety,lower costs and ensure quality care.

Job Summary

The Manager Identity and Access Management aligns security management strategy with business goals by managing access to resources and services and enforcing business, privacy, and security policies; to ensure full compliance and security across Surescripts resources. This position will lead cross-functional teams as it sets the identity and access management (IAM) security strategy for the company and partners with the rest of the Information Security leadership team and the Network Technology and Operations team to operationalize the strategy.

This role is accountable for taking our multi-year IAM improvement roadmap and driving execution and successful risk management. The Manager Identity and Access Management will be an expert at many IAM technologies and approaches including Privileged Identity Management, Identity Management Governance, single sign-on, multi-factor authentication, directories, etc. The Manager IAM will share that expertise with IT leadership and other stakeholder groups in the company to ensure the correct levels of security risk management, operational efficiencies, and end-user experience for IAM-related controls.

  • Take the Surescripts multi-year IAM roadmap and create technical and operational controls across the enterprise.
  • Communicate the roadmap to key stakeholders including technology leadership, HR, and the executive team.
  • Partner with the technology leadership team to architect, engineer, and implement and improve IAM toolsets to ensure they appropriately meet the risk expectations of the company.
  • Helps lead future state planning, implementation and design of Identity Access Management technologies and automation of manual tasks.
  • Incorporates identity access governance support and implementation services, privilege identity management support and identity lifecycle management with respect to regulatory compliance and approved standards and policies into the overall IAM roadmap.
  • Engage and collaborate with key business stakeholders and customers as it relates to all supported systems and applications to verify, validate and audit access.
  • Analyze and design our Role-Based Access Controls (RBAC) model to meet organizational business needs and customer expectations.
  • Document existing workflow/current business processes, and aid in prioritization of IT service requests.
  • Partner with others with provisioning roles in the company to execute the RBAC model.
  • Partner with Product Innovation, our Strategy group, and IT, design the security controls necessary for improved risk management associated with our customer identities
  • Deliver innovative solutions concerning cloud and mobile apps access management, access enforcement/administration implementation, access/elevated administration implementation, and segregation of duty (SOD) management and other IAM compliance related activities.
  • Remain current on IAM trends to determine the appropriateness for Surescripts.
  • Facilitate the process of periodic user access reviews per information security and compliance best practices.


Basic Requirements:

  • Bachelor degree or equivalent information security and/or IAM experience
  • 5-7 years of experience in Information Security, specifically in IAM
  • Must have varied experience architecting, designing, and optimizing key IAM tools and processes including:
    • User identity lifecycle management solution products or role-based access control solutions
    • Directory services products
    • Single sign-on, multi-factor and federation solutions
    • CyberArk or other privilege accounts lifecycle management solutions
  • Must have 2+ years of experience in access control concepts, including access administration, directory services, SAML, LDAP, or PKI.
  • Demonstrated ability to show initiative to drive progress and improvement
  • Ability to handle multiple tasks, prioritize and meet deadlines

Preferred Qualifications:

  • Certifications such as CISSP, CISA, or IAM product certification
  • Experience in the health care industry
  • Networks with key contacts outside own area of expertise, organization and industry
  • 2+ years managing teams or cross-functional groups
  • Master's degree in IT or Business
  • 10 years IAM experience

Additional Qualifications:

  • Ability to periodically travel (but estimated < 10%)
  • Ability to successfully interface with Surescripts technical and non-technical partners
  • Ability to document and explain technical details in a concise, understandable manner
  • Ability to manage and balance own time among multiple tasks

Physical and Mental Requirements

While performing duties of this job, an employee may be required to perform any, or all of the following: attend meetings in and out of the office, travel (sometimes extensively), communicate effectively (both orally and in writing), and be able to effectively use computers and other electronic and standard office equipment with, or without, a reasonable accommodation. Additionally, this job requires certain mental demands, including the ability to use judgement, withstand moderate amounts of stress and maintain attention to detail with, or without, a reasonable accommodation.

Surescripts is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate on the basis of race, color, religion, age, national origin, ancestry, disability, medical condition, marital status, pregnancy, genetic information, gender, sexual orientation, parental status, gender identity, gender expression, veteran status, or any other status protected under federal, state, or local law.

Surescripts participates in E-Verify.

Equal Employment Opportunity/Affirmative Action Employer - Disabled/Vets


Job Summary
Start Date
As soon as possible
Employment Term and Type
Regular, Full Time
Required Education
Bachelor's Degree
Required Experience
5 to 7 years
Email this Job to Yourself or a Friend
Indicates required fields