Cybersecurity Access Engineer IIIFull-time / Benefits eligibleRemote Opportunity Summary:Responsible for engineering and managing the organization's identity and access management capabilities to ensure secure, reliable access to systems, services, and critical resources.
Manages the organization's access security capabilities including Identity and Access Management platforms, integrations, and supporting controls. Installs, configures, tests, maintains, and troubleshoots IAM capabilities; integrates IAM services into the enterprise architecture and supported systems; supports automation of identity lifecycle and access provisioning/deprovisioning; and supports secure access patterns such as least privilege, strong authentication, and Conditional Access. Works in close partnership with peers and other subject matter experts across the organization to achieve desired outcomes. In addition, provides thought leadership and guidance to level I and level II Engineers.
Minimum Qualifications: 1. Formal Education Required:
a. Bachelor's Degree or equivalent in Computer Science, Cybersecurity, IT, or Engineering or equivalent combination of education and/or experience.
2. Experience & Training Required:
a. Five (5) years of IT related experience
b. Preferred experience in a healthcare environment with exposure to HIPAA, PCI DSS, or other relevant regulations.
c. Certifications required:
i. (CompTIA Security+ or CompTIA Healthcare IT Technician or SSCP or CCNA-Security or Microsoft Technology Associate - Security Fundamentals) and (CSSLP or GSEC or vendor certificate in specific security tool).
d. Certifications preferred:
i. ITIL Foundation (or equivalent)
ii. ISC2 CCSP, SSCP, CISSP (or equivalent)
iii. GIAC Certifications
iv. CompTIA CASP
3. Other Skills, Competencies and Qualifications:
Advanced knowledge of information assurance (IA) principles and organizational requirements to protect confidentiality, integrity, availability, authenticity, and non-repudiation of information and data.
Advanced knowledge of the systems engineering process; user authentication methods and factors; secure configuration management techniques.
Advanced knowledge of directory services, identity platforms, and identity security architecture (e.g., authentication/authorization flows, token/assertion use, access enforcement paths, and Zero Trust/conditional access design).
Advanced knowledge of modern authentication capabilities and practices (e.g., phishing-resistant MFA, passwordless authentication, credential lifecycle management, and identity proofing concepts).
Advanced knowledge of identity governance and entitlement risk (e.g., access creep, excessive privilege, orphaned accounts, toxic access) and the supporting engineering controls (e.g., access reviews/certification and identity attestation).
Advanced knowledge of IAM platform operations and resilience (e.g., high availability, patching/upgrades, backup and recovery, and performance tuning for identity services and integrations).
Advanced knowledge of identity governance administration (IGA) integration patterns (e.g., connector-based provisioning, attribute mapping, reconciliation, and integration troubleshooting across identity platforms and source systems).
Advanced knowledge of Conditional Access and privileged access control enforcement (e.g., policy rollout, exception handling, and privileged access monitoring requirements).
Intermediate knowledge of access control mechanisms, systems testing/evaluation, and operational tooling (e.g., fault tolerance, backup/recovery, systems management, and traffic analysis) as they relate to identity services and access pathways.
Intermediate knowledge of identity automation (e.g., provisioning/deprovisioning workflows, APIs/connectors, and policy-driven access enforcement).
Intermediate knowledge of IAM monitoring, telemetry, and alerting (e.g., authentication, privileged access, lifecycle, and access decision events), including SIEM integration and escalation thresholds.
Basic knowledge of risk management processes; incident response and handling methodologies; cyber defense policies, procedures, and regulations.
Basic knowledge of information technology (IT) supply chain security/risk management; laws, regulations, policies, and ethics as they relate to cybersecurity (e.g., Personally Identifiable Information (PII) and Personal Health Information (PHI)).
Advanced analysis and critical thinking skills.
Intermediate interpersonal communication skill, both written and oral, with the ability to communicate effectively to technical and non-technical audiences.
Intermediate technical writing skill; MS Office suite of tools and SharePoint.
Ability to optimize identity and access management systems to meet organizational cybersecurity requirements.
Ability to think strategically and creatively to solve complex access security problems.
Ability to stay up to date on emerging identity-related threats and access security technologies.
Ability to communicate effectively with technical and non-technical audiences.
Ability to mentor junior engineers by providing guidance and knowledge-sharing.
Ability to take direction and operate independently in highly ambiguous situations.
Ability to effectively interact with populations of patients/customers with an understanding of their needs for self-respect and dignity.
4. Level of Physical Demands:
a. Sedentary: Exerts up to ten pounds of force occasionally and/or a negligible amount of force frequently.
b. Minimal, may occasionally move computer equipment (desktop, laptop, monitor, printer, and peripherals) when necessary.
$54.76/hr - $82.14/hr
The salary range on this job posting/advertising is base salary exclusive of any bonuses or differentials. Many factors, such as years of relevant experience and geographical location are considered when determining the starting rate of pay. We believe in the importance of pay equity and consider internal equity of our current team members when determining offers. Please keep in mind that the range that is listed is the full base salary range. Hiring at the maximum of the range would not be typical.
Summa Health offers a competitive and comprehensive benefits program to include medical, dental, vision, life, paid time off as well as many other benefits.
- Basic Life and Accidental Death & Dismemberment (AD&D)
- Supplemental Life and AD&D
- Dependent Life Insurance
- Short-Term and Long-Term Disability
- Accident Insurance, Hospital Indemnity, and Critical Illness
- Retirement Savings Plan
- Flexible Spending Accounts - Healthcare and Dependent Care
- Employee Assistance Program (EAP)
- Identity Theft Protection
- Pet Insurance
- Education Assistance
- Daily Pay
