Manager - Identity & Access Management - IS-Security (1.0FTE, Days)

Category: Information Technology
Job Type: Full-Time
Shift: Days
Location:  Menlo Park CA 94025
Req: 14226
FTE: 1

Information Technology

1.0 FTE, 8 Hour Day Shift

At Stanford Children’s Health, we know world-renowned care begins with world-class caring. That's why we combine advanced technologies and breakthrough discoveries with family-centered care. It's why we provide our caregivers with continuing education and state-of-the-art facilities, like the newly remodeled Lucile Packard Children's Hospital Stanford. And it's why we need caring, committed people on our team - like you. Join us on our mission to heal humanity, one child and family at a time.

Job Summary

This paragraph summarizes the general nature, level and purpose of the job.

Reporting to the Chief Information Security Officer, the Identity and Access Management Manager is responsible for leading the Identity and Access Management team. This role is accountable for on-going development of strategy to ensure it remains aligned with business needs while maintaining the lowest risk exposure for the hospital. This position is accountable for driving the Stanford Children’s Health IAM program to leverage established architectures to streamline the provisioning and de-provisioning of access to applications, networks, as well as, the access of associates, clients and third parties. This leadership role requires interaction with the executive team to outline strategy and risk mitigation efforts while ensuring program effectiveness.  This role leads a small team directly and works with service leads throughout the organization to educate on IAM and engage to facilitate an optimal IAM implementation. This leader works closely with other Enterprise teams including Provisioning, Engineering, Risk, Policy and Governance, Audit and Compliance.

Essential Functions

The essential functions listed are typical examples of work performed by positions in this job classification.  They are not designed to contain or be interpreted as a comprehensive inventory of all duties, tasks, and responsibilities.  Employees may also perform other duties as assigned.

Employees must abide by all Joint Commission Requirements including but not limited to sensitivity to cultural diversity, patient care, patient rights and ethical treatment, safety and security of physical environments, emergency management, teamwork, respect for others, participation in ongoing education and training, communication and adherence to safety and quality programs, sustaining compliance with National Patient Safety Goals, and licensure and health screenings.

Must perform all duties and responsibilities in accordance with the Service Standards of the Hospital(s).

  • Develops and executes upon a strategy for Identity and Access Management to support a complex enterprise.

  • Champions’ policy compliance and policy evolution as regulations change.

  • Determines and drives standards to enable policy adherence.

  • Implements processes and tools to govern policy adherence.

  • Acts as champion and educates the enterprise on all aspects of IAM. Institutionalizes IAM practice through training and on-going knowledge transfer.

  • Ensures that the implemented process and tools for the program continue to meet the needs of the enterprise.

  • Represents Enterprise Security in the development and implementation of the overall global enterprise IAM program.

  • Acts as the IAM ambassador and technical representative for Enterprise Security in engagements, such as interacting with Enterprise Architecture practice and Global Technology leadership.

  • Contributes to strategic discussions and partners to determine IAM implementations.

  • Provides direction to and supervision of the team. Manages a team to monitor and motivate team members work performance.

Minimum Qualifications

Any combination of education and experience that would likely provide the required knowledge, skills and abilities as well as possession of any required licenses or certifications is qualifying.

Education: BA or BS in Management Information Systems, or related field, from an accredited college or university.

Experience: Five (5) years of progressively responsible directly related work experience.

License/Certification: None

Knowledge, Skills, and Abilities

These are the observable and measurable attributes and skills required to perform successfully the essential functions of the job and are generally demonstrated through qualifying experience, education, or licensure/certification.

  • Knowledge of design and deployment of technology and solutions in Identity and Access Management including governance, authentication, and credentialing models

  • Ability to manage or support IAM systems in complex environments including operationalization, monitoring and process refinement.

  • Experience with enterprise architecture and working as part of a cross-functional team to implement solutions.

  • Knowledge of Cloud technologies IaaS, PaaS, SaaS.

  • Ability to work with authentication and authorization protocols (OAuth, Kerberos, SAML, OpenID)

  • Knowledge LDAP and AD architecture and least privilege design.

  • Knowledge of Project Management duties (project planning, resource management, scope, schedule and status, documentation).

  • Ability to work with QA duties (usability testing, performance testing, automated testing, test scripts, test cases and test plans).

  • Ability to represent technical viewpoints to diverse audiences and in making timely and prudent technical risk decisions.

  • Ability to work within regulated industries and the IT audit requirements thereof. 

  • Ability to work in a team environment

  • Ability to work independently with minimal direction; self-starter/self-motivated

Physical Requirements and Working Conditions
The Physical Requirements and Working Conditions in which the job is typically performed are available from the Occupational Health Department. Reasonable accommodations will be made to enable individuals with disabilities to perform the essential functions of the job.


Equal Opportunity Employer

Lucile Packard Children’s Hospital Stanford strongly values diversity and is committed to equal opportunity and non-discrimination in all of its policies and practices, including the area of employment. Accordingly, LPCH does not discriminate against any person on the basis of race, color, sex, sexual orientation or gender identity, religion, age, national or ethnic origin, political beliefs, marital status, medical condition, genetic information, veteran status, or disability, or the perception of any of the above. People of all genders, members of all racial and ethnic groups, people with disabilities, and veterans are encouraged to apply. Qualified applicants with criminal convictions will be considered after an individualized assessment of the conviction and the job requirements, and where applicable, in compliance with the San Francisco Fair Chance Ordinance.