All the benefits and perks you need for you and your family:

• Benefits from Day One

• Paid Days Off from Day One

• Student Loan Repayment Program

• Career Development

• Whole Person Wellbeing Resources

• Mental Health Resources and Support

Our promise to you:

Joining AdventHealth is about being part of something bigger. It’s about belonging to a community that believes in the wholeness of each person, and serves to uplift others in body, mind and spirit. AdventHealth is a place where you can thrive professionally, and grow spiritually, by Extending the Healing Ministry of Christ. Where you will be valued for who you are and the unique experiences you bring to our purpose-minded team. All while understanding that together we are even better.

Schedule: Full Time

The role you’ll contribute:

Information Security Access & Data Governance Specialist - Associate supports the organization’s strategic initiatives that are aligned with the organizations business goals enhancing and aligning the Information Security Identity Access and Data Governance Program. This person, with the guidance of the Director of Enterprise Security and/or the Information Security Access & Data Governance Specialist – Senior/Lead, will collaborate with the leaders within Information Security and with the internal stakeholders in the enterprise-wide development, implementation and administration of the SailPoint IdentityIQ Compliance Manager solution and content and the STEALTHbits solution and STEALTHAudit Console. They also support the technical implementation of application integrations with FairWarning, a user activity monitoring solution. They will also support onboarding new applications with FairWarning, monitor FairWarning alerts and troubleshoot any issues regarding the data feeding into FairWarning. Other key activities, with the guidance of the Director of Enterprise Security and/or the Information Security Access & Data Governance Specialist – Senior/Lead, include working with Information Security, Information Technology and business stakeholders to understand and support their use of SailPoint IdentityIQ and to ensure information security controls are managed though out a full lifecycle that includes policies, procedures, implementation, metrics, and assurance requirements.

The Information Security Access & Data Governance Specialist - Associate will be required to support the communication efforts with internal and external stakeholders to offer accurate and timely information and reporting. The Information Security Access & Data Governance Specialist – Associate requires strong interpersonal and communication skills, critical thinking, analytical and problem-solving skills. The individual must have a basic understanding of information security program needs, risks, along with project management. The individual should be able to work well under pressure, independently, and be able to perform effectively in a team setting to achieve organizational goals.

The value you’ll bring to the team:

• Support the integration of the of SailPoint IdentityIQ Compliance Manager with other IT applications

• Support the implementation and frequency of the sensitive data, permissions and activity scans from STEALTHbits

• Collaborate in the review with the InfoSec Identity Access and Data Governance Programs annually to ensure they are continuing to meet the organizations changing needs and requirements

• Assist with the evaluation of performance of the SailPoint IdentityIQ Certification Campaigns and STEALTHbits scans and assist with producing executive level reporting

• Support the successful installation, configurations, operation and maintenance of SailPoint IdentityIQ and STEALTHbits

• Provide status updates for SailPoint IdentityIQ and STEALTHbits related topics

• Assist with the development, maintenance and coordination STEALTHbits scans and scan schedules with the weekly Scan Governance Committee

• Assist with the development and administration of the SailPoint IdentityIQ Certification Campaigns across the enterprise to help meet compliance regulations

• Coordinate Fairwarning integration with application owners and stakeholders for user activity monitoring feeds

• Engage appropriate stakeholders in troubleshooting Fairwarning issues

• Consult with customer to gather and define requirements

• Support security training and awareness program by providing SailPoint IdentityIQ contents to the training teams

• Work with a variety of internal departments and external organizations, including but not limited to legal firms, law enforcement agencies, and all other levels of government

• Learn IT Security industry and AdventHealth IT Security concepts and controls

• Stay abreast of best practices and regulatory requirements

• Collaborate and provide assistance to team members

• Participate in the routine administrative work of the Information Security Office (InfoSec)

• Assist with troubleshooting complicated technical issues across a large, complex organization

• Assist with metrics and reporting.

• Aptitude to quickly learn new systems, business processes and concepts with little or no documentation.

• Applies best practice techniques in troubleshooting, testing, and quality assurance.

• Exercise professional judgement by evaluating information, making recommendations, and maintaining confidentiality of data per AdventHealth policies, avoiding conflict of interests.

• General knowledge of information security frameworks and how to implement enterprise-wide access controls

• Basic understanding of change management activities for both SailPoint IdentityIQ and STEALTHbits solutions

• Support project management activities for InfoSec Identity Access and Data Governance initiatives •Have soft skills, such as multi-tasking, self-starter, prioritization, time management, decision making, teamwork, presentation, communication and strong interpersonal skills

• Microsoft suite of applications (Word, Excel, Visio, PowerPoint, Project, etc.)

The expertise and experiences you’ll need to succeed:

o Some knowledge in the areas of AD, LDAP, group policy, schema changes, multi-domain environments, etc.

o •Understanding of Identify Access Governance and Data Governance workflows including, forms, surveys, approval workflows, dashboards, database administration to support business and risk management processes

o Working knowledge of information security risk management and risk assessment methodologies.

o Basic knowledge of one or more of the following: HITRUST, HIPAA Security and Privacy Rule, Red Flags Rule, Healthcare IT Standards (HITSP), HITECH, Meaningful Use (MU), COBIT, and PCI.

o Basic understanding of enterprise security systems (e.g., Firewalls, VPN, IDPS, SEIM), security threats and related risks, malware protection, virtual networks, asset management, pen-testing, vulnerability management, access management, configuration management, encryption techniques, cloud security, and 3rd party security

o Basic experience with Database technologies and queries (Microsoft SQL, MySQL, Oracle, etc.)

o Basic experience with PowerBI

o Familiarity with scripting languages (i.e., PowerShell, Bash, etc.)

o Basic knowledge of secure software development lifecycle procedures and concepts

o Basic knowledge of project management procedures and concepts

EDUCATION AND EXPERIENCE REQUIRED:

• Bachelor’s degree

• Two years of experience in information technology, information security or compliance program.

EDUCATION AND EXPERIENCE PREFERRED:

• Bachelor’s degree in Business Administration, Information Security or another related field

• Three or more years of experience in a healthcare environment.