The University of Texas MD Anderson Cancer Center is seeking a highly skilled Senior Cybersecurity Analyst to support the Cybersecurity department, which is responsible for protecting institutional systems, data, and identities across complex digital environments. The Senior Cybersecurity Analyst plays a critical role in advancing identity security capabilities, strengthening access controls, and enabling secure operations across cloud, on-premises, and third-party platforms.
The Senior Cybersecurity Analyst will serve as a senior-level technical leader within the Identity and Access Management (IAM) program, driving modernization initiatives, improving audit outcomes, and supporting secure digital transformation. The Senior Cybersecurity Analyst will also help establish identity as a foundational security control aligned with zero-trust and least-privilege principles.
The
ideal candidate holds a bachelor's degree in a related field, with a preference for a master's degree in information security or computer science, and brings strong experience across multiple cybersecurity domains, particularly hands-on IAM work. Preferred candidates possess deep expertise with enterprise identity platforms, identity governance and lifecycle processes, and integration using protocols such as SAML, OAuth 2.0, OIDC, or SCIM, along with industry-recognized certifications such as CISSP, CISA, Microsoft SC-300, or Okta certification.
Minimum $106,500- Midpoint $133,000 - Maximum $159,500Work Location: 100% remote within TexasResponsibilitiesIAM Strategy & Zero-Trust Leadership• Provide senior technical leadership for the IAM program aligned with zero-trust and least-privilege principles
• Define IAM standards, roadmaps, and reference architectures across cloud and on-premises environments
• Establish identity, authentication, and authorization frameworks supporting enterprise security goals
Identity Platform Engineering & Entra ID Migration• Lead the design, configuration, and operation of enterprise identity platforms
• Drive migration to and ongoing maturation of Microsoft Entra ID
• Implement and manage single sign-on (SSO), multi-factor authentication (MFA), and conditional access controls
Identity Lifecycle & Authoritative Source Management• Lead joiner, mover, and leaver lifecycle processes across systems
• Integrate identity platforms with authoritative sources, including ERP transition initiatives
• Ensure accurate and timely provisioning and deprovisioning across connected applications
Access Governance, PAM & Automation• Design and operate role-based access control (RBAC), entitlement management, and segregation-of-duties controls
• Conduct periodic access reviews and certifications to enforce least privilege and improve audit outcomes
• Lead implementation and operation of privileged access management (PAM) controls
• Develop automation for provisioning, governance workflows, certifications, and reporting using scripting, APIs, and IGA tools
AI-Enabled IAM & Threat Detection• Leverage artificial intelligence to automate workflows such as access request triage, entitlement analysis, and anomaly detection
• Develop AI agents with appropriate governance, oversight, and risk controls
• Partner with Security Operations and risk teams to detect and respond to identity threats, including account takeover and privilege escalation
• Continuously identify and remediate identity misconfigurations and excessive access
Technical Leadership & Documentation• Serve as a technical lead and escalation point for IAM operations
• Mentor junior and mid-level team members and promote knowledge transfer
• Develop and maintain IAM standards, runbooks, and technical documentation
• Drive continuous improvement across IAM processes and controls
EDUCATION- Required: Bachelor's Degree Computer Information Systems, Business Information Systems, Computer Science or related field.
- Preferred: Master's Degree Information Security, Computer Science or related field.
WORK EXPERIENCE- Required: 5 years Experience in information security/cybersecurity experience, to include experience in multiple security domains.
- May substitute required education degree with additional years of equivalent experience on a one to one basis.
- Preferred: At least 4 years of hands-on IAM experience, direct hands-on experience with an enterprise identity platform, hands-on experience with identity governance and lifecycle - access reviews/certifications, joiner-mover-leaver workflows, or privileged access management, experience integrating applications with identity providers via SAML, OAuth 2.0, OIDC, or SCIM provisioning.
LICENSES AND CERTIFICATIONS- Preferred: CISSP Certified Information Systems Security Professional
- Preferred: Certified Information Systems Auditor (CISA)
- Preferred: Microsoft Identity & Access Administrator SC 300
- Preferred: Okta certified
- Preferred: Other applicable industry certifications.
The University of Texas MD Anderson Cancer Center offers excellent benefits, including medical, dental, paid time off, retirement, tuition benefits, educational opportunities, and individual and team recognition.
This position may be responsible for maintaining the security and integrity of critical infrastructure, as defined in Section 113.001(2) of the Texas Business and Commerce Code and therefore may require routine reviews and screening. The ability to satisfy and maintain all requirements necessary to ensure the continued security and integrity of such infrastructure is a condition of hire and continued employment.