WHY HCA Healthcare?
At its founding in 1968, Nashville-based HCA Healthcare was one of the nation's first hospital companies. Today, one of the nation's leading providers of healthcare services, HCA Healthcare is comprised of locally-managed facilities that include more than 250 hospitals and freestanding surgery centers in 20 states and the United Kingdom, employing approximately 230,000 people. Approximately four to five percent of all inpatient care delivered in the country today is provided by HCA Healthcare facilities resulting in more than 26M patient encounters each year. HCA Healthcare is committed to the care and improvement of human life and strives to deliver high quality, cost effective healthcare in the communities we serve. Building on the foundation provided by our Mission & Values, HCA Healthcare puts patients first and works to constantly improve the care we provide by implementing measures that support our caregivers, help ensure patient safety and provide the highest possible quality.
Ranked 63 in Fortune 500
Competitive Fortune 100, industry matched salaries and yearly merit increase
Computerworld Top 50 Best Places to Work in IT annually since 2009
Named one of the "World's Most Ethical Companies" annually since 2010
106 HCA Healthcare hospitals are on The Joint Commission's list of top performers on key quality measures.
The Manager of IAMS Identity Foundations is responsible for ongoing operational management of the HCA Healthcare's enterprise Active Directory, Domain Name Service, and Group Policy infrastructures and operations. The manager is responsible for managing and motivating a team of highly-specialized engineers supporting these critical systems, prioritizing operational and project work efforts, and overseeing the design and implementation of secure solutions to support Information Privacy & Security policies. These systems identify and authenticate users to a majority of the IT systems in use across the company, and therefore must meet the highest standards for availability and security; downtime would result in use of IT systems in hospitals and across the company coming to a halt, and failures in security could result in major data breaches and/or regulatory compliance failures.
% of Time and Description of Responsibility
20 % -Technical Expertise
Technical management of the enterprise Active Directory, DNS, Group Policy, and related tools and components. Maintaining secure authorization and authentication to the directory and its content, analyzing collected data to evaluate and maintain the health of these systems, and proactively define tasks required to ensure these business critical systems are functional and available 24 x 7.
Research and develop solutions to complex problems related to Active Directory use, manage and delegate secure access to resources, design and manage work efforts for identity management and application or system integration with Active Directory.
Describe to technical and non-technical audiences various types of authentication and authorization to the directory, integration of applications and systems, analyze strengths and weaknesses of various solutions that use the directory or its content. Manage efforts to determine business need and select solutions that provide users and applications in a multi-platform environment secure access to company resources.
50 % - Operational Efficiency
Lead and motivate the team of engineers responsible for Active Directory, DNS, and Group Policy support. Prioritize and assign work both proactively and reactively, develop and implement training plans for team members, manage upward career paths and promote a positive work environment by using logic and analysis rather than force or authority to accomplish objectives.
Manage budgets, able to quantify costs and benefits of security solutions, and determine the enterprise's ability to pay for the security technology. Quantify and justify the "soft" costs and benefits and use them in a business case. Work with accounting and outside vendors on contract costs; negotiate contracts for purchases and ongoing maintenance costs. Analyze trends of system usage to plan for additional hardware requirements or software license purchases.
Evaluating and implementing plans for disaster recovery and business continuity for Active Directory and DNS systems.
Support internal and external projects and initiatives by providing expertise in Identity Management concepts.
Review all and provide appropriate IAM resource estimates for IT&S project portfolio.
Participates in the three year project portfolio planning and review process.
10 % - Security/Audit Compliance
Investigates alleged IT security breaches and, if necessary, assists with disciplinary and legal matters associated with such breaches.
Interprets IT security requirements from external bodies, such as government agencies and standard-setting bodies and helps to develop security policies, standards, guidelines, procedures, and other elements of an infrastructure to support IT security.
Oversees the design and implementation of secure solutions to support Information Privacy & Security policies.
Monitors developments in the IT security field to identify new opportunities and new risks.
7 or more years
Experience can substitute for degree
Other Advanced Degree
IT Security/AD Related
Experience can substitute for degree
Active Directory concepts and technologies
Advanced Identity & Access Management concepts and HCA application
User lifecycle management
Dependence of major integrated systems
Fully recognize the business or regulatory drivers behind IAM
Role based access controls
Methods of systems integration Federation, LDAP, IWA
Access control standards and best practices
Understanding of major IAM tools and services
Provisioning / De-provisioning
OAUTH, OPENID Connect, SAML
Multi Factor Authentication
Advanced information security concepts
Web application security
Policy and standards
Vendor support engagement
Proven leadership ability working with skilled technical teams managing an enterprise infrastructure
Works well under pressure
Effectively coordinate activities across groups
Drive limited internal projects and initiatives with little to no oversight
Support projects and initiatives that span organizational boundaries
Implement or improve processes affecting multiple groups and/or organizations
Coordinate activities within group
High degree of self-motivation
Customer focus takes ownership of issues and seeing issues through to resolution
Critical thinking and problem solving skills
Advanced organizational knowledge
HCA direction and priorities
Lines of business
Determining appropriate data to collect, methods of collecting and formatting data, how collected data is used for monitoring, analysis and trending of data.
Experience with budgets, long and short term costs, financial negotiations
Physical Demands / Working Conditions
Prolonged periods of sitting at workstation using desktop device and phone
Some light travel may be required
Periodic after hours on-call