IAM Auditor III

Novant Health Fort Mill , SC 29716

Posted 2 months ago

Overview

Digital Products and Services team members are responsible for securely managing information systems throughout their lifecycle, including; knowing what information systems are within their scope of responsibility, understanding what sensitive data is stored, transmitted, or processed on those information systems, enforcing the security principles of least privilege and least functionality, knowing what events may constitute an information security incident, and understanding their role in security incident response activities. Under general direction, perform quality assurance audits of the highest risk, new and existing applications to ensure that appropriate security controls exist, that identity and access management processing is efficient and accurate, and that information systems procedures for the management of administrative entitlements are documented and in compliance with corporate policies and standards.

Primary participant in internal and external audit reviews, including evidence collection, audit inquiry responses, and remediation of audit findings. Develop and lead the timely administration of quarterly access reviews. Provide guidance on identity and access management requirements and implementation methodologies as part of the enterprise process for on-boarding applications into the NH technology environments.

Possesses a full understanding of, and provides input to, all policies, standards, and procedures associated with identity provisioning and governance. Key contributor in projects involving the implementation of identity and access management related applications and/or toolsets, including developing requirements, current and future state processes, and product implementation. Keep abreast of changes and trends related to identity and access management. Competent to work at the highest level of all phases of identity and access management auditing.

Qualifications

  • Education: High school diploma required. Bachelor's degree preferred.

  • Experience: Minimum eight years relevant experience required.

  • Licensure/certification/registration: EPIC Security Coordinator Certification and the Certified Information Security Auditor (CISA), must obtain within eighteen months in the role required.

  • Additional skills required: Senior knowledge of authenticator types, authenticator assurance levels, identity life cycle processes including, but not limited to, account management, identifier management, role-based access management, attribute-based access management, attestation and certification, user self-service, password management.Intermediate knowledge of MS Active Directory's domain structure schema, user and group object attributes.

    Knowledge of information systems auditing processes, regulatory requirements including, but not limited to, PCI DSS, HIPAA, HITRUST. Basic knowledge of and ability to work with one of the following query/scripting languages; Structured Query Language (SQL), Windows PowerShell, Extensible Markup Language (XML), Excel functions and formulas.

  • Additional skills preferred: Functional knowledge of COBIT and NIST standards and other regulations that govern Information Security for a Health Care organization.

Responsibilities

  • It is the responsibility of every Novant Health team member to deliver the most remarkable patient experience in every dimension, every time.

Our team members are part of an environment that fosters team work, team member engagement and community involvement. The successful team member has a commitment to leveraging diversity and inclusion in support of quality care. All Novant Health team members are responsible for fostering a safe patient environment driven by the principles of "First Do No Harm".



See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
IAM Business Operations Engineer III

Novant Health

Posted 3 weeks ago

VIEW JOBS 10/20/2018 12:00:00 AM 2019-01-18T00:00 Overview * The employee's Number One job responsibility is to deliver the most remarkable patient experience, in every dimension, every time, and understand how he or she contributes to the health system's vision of achieving that commitment to patients and families Qualifications * Education: High School Diploma Required * Experience: Minimum six years relevant experience * License / Certification / Registration: EPIC Security Coordinator Certification (must obtain certification within eighteen months in role) * Additional Skills / Requirements required: Senior acknowledge of authenticator types, authenticator assurance levels, identity life cycle processes including but not limited to, account mgmt, identifier mgmt, role-based access mgmt attribute-bases access mgmt, attestations and certification, user self service, password mgmt. Intermediate knowledge of MS Active Directory's domain structure schema, user and group object attributes. Knowledge of information systems auditing processes, regulatory requirements including, but not limited to, PCI DSS, HIPAA, HITRUST. Basic knowledge of and ability to work with one of the following query.scripting languages; Structured Query Language (SQL), Windows PowerShell, Extensible Markup Language (XML), Excel functions and formulas. * Additional Skills / Requirements preferred: Functional knowledge of COBIT and NIST standards and other regulations that govern information Security for a Health Care organization. Responsibilities * Digital Products and Services team members are responsible for securely managing information systems throughout their lifecycle, including; knowing what information systems are within their scope of responsibility, understanding what sensitive data is stored, transmitted, or processed on those information systems, enforcing the security principles of least privilege and least functionality, knowing what events may constitute an information security incident, and understanding their role in security incident response activities. Novant Health Fort Mill SC

IAM Auditor III

Novant Health