Information Security Architect - Somerville, United States - Mass General Brigham

Mass General Brigham

Verified Company

Somerville, United States

3 weeks ago

Posted by:

Mark Lane

beBee recruiter

Description

Information Security Architect

About Us:

As a not-for-profit organization, Mass General Brigham is committed to supporting patient care, research, teaching, and service to the community by leading innovation across our system.

Founded by Brigham and Women's Hospital and Massachusetts General Hospital, Mass General Brigham supports a complete continuum of care including community and specialty hospitals, a managed care organization, a physician network, community health centers, home care and other health-related entities.

Several of our hospitals are teaching affiliates of Harvard Medical School, and our system is a national leader in biomedical research.

We're focused on a people-first culture for our system's patients and our professional family. That's why we provide our employees with more ways to achieve their potential.

Mass General Brigham is committed to aligning our employees' personal aspirations with projects that match their capabilities and creating a culture that empowers our managers to become trusted mentors.

We support each member of our team to own their personal development—and we recognize success at every step.

Our employees use the Mass General Brigham values to govern decisions, actions and behaviors.

These values guide how we get our work done:

Patients, Affordability, Accountability & Service Commitment, Decisiveness, Innovation & Thoughtful Risk; and how we treat each other: Diversity & Inclusion, Integrity & Respect, Learning, Continuous Improvement & Personal Growth, Teamwork & Collaboration.

General Summary:

Principal Duties and Responsibilities:

Design and develop IAM strategies: Collaborate with stakeholders to understand business requirements, define IAM strategies, and develop comprehensive IAM architectures and solutions.
IAM system implementation: Lead the implementation and deployment of IAM systems, including identity provisioning, authentication, authorization, single signon, and rolebased access control (RBAC).
Security and compliance: Ensure that IAM systems adhere to industry standards, security best practices, and regulatory requirements. Perform regular audits, vulnerability assessments, and risk analysis to identify and mitigate potential security threats.
Identity lifecycle management: Define and implement processes for the entire identity lifecycle, including onboarding, provisioning, entitlements, role management, access reviews, and offboarding.
Identity governance: Establish and enforce identity governance policies and procedures to ensure the appropriate use and protection of enterprise resources.
Privileged Access Management: Establish and enforce polices and procedures to manage and protect highly privileged access to the MGB environment
IAM system enhancements and maintenance: Stay updated with the latest IAM technologies, industry trends, and emerging threats. Continuously enhance and optimize existing IAM systems and processes to meet changing business needs.
Documentation and reporting: Prepare comprehensive technical documentation, including architecture diagrams, system configurations, and operational procedures. Generate reports on IAM system performance, compliance status, and security incidents.
Team collaboration and leadership: Collaborate with other IT teams, stakeholders, and vendors to deliver effective IAM solutions. Provide technical guidance and mentorship to junior team members.
Other related duties as assigned
Bachelor's or Master's degree in computer science, information technology, or a related field.
7+ years of proven experience working as an IAM Architect or in a similar role, designing and implementing enterpriselevel IAM solutions.
Strong knowledge of IAM concepts, protocols, and technologies, including but not limited to identity provisioning, authentication, authorization, RBAC, SSO, and federation.
Indepth understanding of industry frameworks and standards such as OAuth, SAML, OpenID Connect, and LDAP.
Proficiency in IAM tools and platforms, such as Saviynt, Sailpoint, Azure Active Directory, Entra, CyberArk or similar solutions.
Familiarity with cybersecurity principles and best practices, including risk management, access controls, and secure coding.
Strong analytical and problemsolving skills, with the ability to assess complex business requirements and translate them into practical IAM solutions.
Excellent communication and interpersonal skills, with the ability to effectively collaborate with crossfunctional teams and stakeholders at various organizational levels.
Relevant certifications such as CISSP, CISM, or vendorspecific IAM certifications are highly desirable.

Skills/Abilities/Competencies:

Protocol and technical standards including encryption, TCP/IP, SSL, S/MIME, Radius, IPSEC and PKI technology
Creating actionable secure design patterns in support of technical standards
Operating system (Windows, Mac OS, Unix) security a