IAM Analyst

Privia Health™ is a technology-driven, national physician enablement company that collaborates with medical groups, health plans, and health systems to optimize physician practices, improve patient experiences, and reward doctors for delivering high-value care in both in-person and virtual settings. The Privia Platform is led by top industry talent and exceptional physician leadership, and consists of scalable operations and end-to-end, cloud-based technology that reduces unnecessary healthcare costs, achieves better outcomes, and improves the health of patients and the well-being of providers.

Overview of the Role: Reports to the  Sr. Manager of IT Audit and Security. This position is vital in maintaining the processes and procedures for the authorization, maintenance, governance, and termination of user access.  They work inter-departmentally to identify flaws within the company’s security systems and procedures while collaborating with ADM management on specific measures that can optimize the user lifecycle experience and improve the company’s overall security profile. Furthermore, the ADM Analyst is responsible for collaborating with various teams and stakeholders within the organization that touches upon workflows related to access and data management and ensure they comply with security policy and best practices.. The ADM Analyst is also responsible for assisting in the documentation of all ADM-related processes and procedures. The ADM Analyst also assists the  Manager of IT Audit and Security with the QA review of the work of Tier I and Tier II ADM agents and also assists in managing our extender teams in addition to helping refine SOP’s and workflows.

Experience:

CLOUD/SAAS

• Experience with user provisioning in a cloud environment like Google Workspace or Microsoft 365.
• Experience with G-Suite or Google Cloud preferred.

SECURITY

• Basic knowledge of healthcare regulatory frameworks, including the HIPAA, NIST, and PCI experience with the HITRUST CSF is a plus.
• Basic knowledge of IDS and IPS devices and their role in securing an organization.
• Experience in utilizing audit tools to perform user access audits and produce audit reports.

APPLICATION (Applications, Database, Interfaces)

• Basic knowledge in securing a three-tier application architecture.
• Basic knowledge of cloud-based security architecture, including modern multi-cloud architectures, the difference between cloud and a virtual desktop or application environment hosted in a Citrix or VDI environment.
• Strong spreadsheet skills with Excel or Google Sheets including pivot tables and vlookups.

Lifecycle Management and User Access

• Proficient in designing and implementing Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC) systems, with a focus on differentiating between privileged/admin access and non-privileged access, while also managing workforce and customer identity and access controls. 

• Experience with using GAM (Google Apps Manager), Google Apps Script, Python, and related technologies to create effective tools and automation.

• Demonstrate a keen eye for automation, streamlining processes, and identifying integration opportunities.
• Collaborate with cross-functional teams to design, implement, and maintain automated workflows for seamless system integration.

Primary Duties

• Collaborate with the other members of the broader security team.
• Support of the Access and Data Management team, with primary focus on the creation, modification, and termination of user provisioning across multiple systems.
• Collaborate with and assist the  Manager of IT Audit & Security where needed with the expansion of the Access and Data Management function within Privia.
• Perform QA review for the Tier I and Tier II ADM agents and ensure that established processes and procedures are being followed.
• Serve as an escalation point for urgent tasks from the Tier I and Tier II ADM agents.
• Maintaining best practices, processes, and procedures aligned with organizational policy and regulatory requirements.
• Assist with regular audits of user access controls, including reviewing user access requests, and reviewing access logs to ensure that access is appropriate and in line with company policies and regulatory requirements.
• Assist with implementing and revisiong identity governance policy using IGA tools and technologies.

• 3+ years experience in a technical project management role.
• 3+ years experience in access and data management/user provisioning - within the domain of healthcare technology preferred.
• Experience in a healthcare environment is strongly preferred.
• Security Skills (as described above).
• Must comply with all HIPAA rules and regulations.

Preferred Qualifications:

• Bachelor's Degree in a related field or commensurate experience.

The salary range for this role is $68,000.00 to $85,000.00 in base pay and exclusive of any bonuses or benefits. This role is also eligible for an annual bonus targeted at 15% based on performance in the role. The base pay offered will be determined based on relevant factors such as experience, education, and geographic location.

Technical Requirements (for remote workers only, not applicable for onsite/in office work):

In order to successfully work remotely, supporting our patients and providers, we require a minimum of 5 MBPS for Download Speed and 3 MBPS for the Upload Speed. This should be acquired prior to the start of your employment. The best measure of your internet speed is to use online speed tests like https://www.speedtest.net/. This gives you an update as to how fast data transfer is with your internet connection and if it meets the minimum speed requirements. Work with your internet provider if you have questions about your connection. Employees who regularly work from home offices are eligible for expense reimbursement to offset this cost.

Privia Health is committed to creating and fostering a work environment that allows and encourages you to bring your whole self to work. Privia is a better company when our people are a reflection of the communities that we serve. Our goal is to encourage people to pursue all opportunities regardless of their age, color, national origin, physical or mental (dis)ability, race, religion, gender, sex, gender identity and/or expression, marital status, veteran status, or any other characteristic protected by federal, state or local law.  

Tags