Identity Access Analyst I, II, Sr

• Job Title:Identity Access Analyst I, II, Sr • Req:2025-0824 • Location:VMC Main Campus • Department:Cyber Security Services • Shift:Days • Type:Full Time • FTE:1 • Hours: • City State:Renton, WA • Salary Range:Min $67,361 - Max $142,341/annual DOE Job Description: VALLEY MEDICAL CENTER JOB DESCRIPTION The position description is a guide to the critical duties and essential functions of the job, not an all-inclusive list of responsibilities, qualifications, physical demands, and work environment conditions. Position descriptions are reviewed and revised to meet the changing needs of the organization. TITLE:Identity Access Analyst I, II, Sr JOB OVERVIEW:Responsible for overseeing the entire Identity Access Management (IAM) end-user lifecycle, encompassing account creation, modification, and termination for IT systems, applications, and networks. Primarily focused on ensuring the security and proper authorization of access to all Epic environments, including Production, Test, and Development. This role involves implementing and enforcing access control policies, conducting regular access reviews, and collaborating with internal stakeholders to align access privileges with business requirements. Additionally, the Identity Access Analyst will play a key role in maintaining compliance with regulatory standards and best practices related to access management, including preparing for and participating in audits to validate the effectiveness of access controls and procedures. DEPARTMENT:Informational Technology WORK HOURS:Typically, Monday - Friday; Hours may vary to meet departmental needs. REPORTS TO:Supervisor, Information Security PREREQUISITES: LEVEL I: • Education: Master's degree in computer science related field, OR Bachelor's degree in computer science related field plus one (1) year industry related experience, OR Associate's degree in computer science related field plus two (2) years industry related experience, OR three (3) years industry related experience. • Certification: Epic Data Courier and Epic Security Coordinator OR be able to obtain both within one (1) year of hire date. • Applied Job Experience: Information Security Background: Industry experience preferred as an Identity Access Analyst, User Provisioning Analyst, or Epic Application Analyst. Experience as a Service Desk Agent, Help Desk Agent, Desktop Technician, Windows Systems Administrator, Epic Client Systems Administrator, or Cache Database Administrator to be considered as time towards. LEVEL II: • Education: Master's degree in computer science related field plus two (2) years industry related experience, OR Bachelor's degree in computer science related field plus three (3) years industry related experience, OR Associate's degree in computer science related field plus four (4) years industry related experience, OR five (5) years industry related experience. • Certification: Epic Data Courier or Epic Security Coordinator upon hire AND be able to obtain the other certification within six (6) months of hire date. • Applied Job Experience: Information Security Background: Industry experience preferred as an Identity Access Analyst, User Provisioning Analyst, or Epic Application Analyst. Experience as a Windows Systems Administrator, Epic Client Systems Administrator, or Cache Database Administrator to be considered for up to three (3) years as time towards. LEVEL SR: • Education: Master's degree in computer science related field plus four (4) years industry related experience, OR Bachelor's degree in computer science related field plus five (5) years industry related experience, OR Associate's degree in computer science related field plus six (6) years industry related experience, OR seven (7) years industry related experience. • Certification: Epic Data Courier and Epic Security Coordinator upon hire. • Applied Job Experience: Information Security Background: Industry experience preferred as an Identity Access Analyst, User Provisioning Analyst, or Epic Application Analyst. Experience as a Windows Systems Administrator, Epic Client Systems Administrator, or Cache Database Administrator to be considered for up to three (3) years as time towards. QUALIFICATIONS: • Professional experience with Active Directory Users and Computers (ADUC) management. • Professional experience with NTFS and Epic access controls. • Experience with Epic Security Templates. • Experience with Epic SER records. • Experience with Epic EMP records. • Experience with Epic Reporting Workbench • Experience with Epic Blueprints. • Experience with Epic Galaxy, Sherlock, and Nova Notes. • Working knowledge and participation in internal and external audits. • Professional Experience with Change Control Boards (CCB). • Familiarity with SharePoint and OneDrive/OneNote administration. • Proficient with Excel and Excel Formulas. • Proficient with scripting languages and automation such as Python, PowerShell, etc. • Applied knowledge and understanding of HIPAA compliance. • Applied knowledge and understanding of information security best practices. CompTIA Security+ or ISC2 SSCP certifications (preferred). UNIQUE PHYSICAL/MENTAL DEMANDS, ENVIRONMENT AND WORKING CONDITIONS: • Requires ability to move items and equipment weighing up to 70 lbs. • Requires ability to appropriately manage and handle highly confidential information. • Requires ability to remain focused, self-motivated, and initiative-taking while working independently or on a team, regardless of working onsite or remotely with little to no instruction. • Requires planning, organizing, and working on multiple tasks at one time with tight time constraints. • Requires ability to identify the most important tasks and prioritize accordingly. • Requires ability to implement a logical and structured approach to time management. • Requires ability to demonstrate a high level of professionalism and show respect to all co-workers, patients, business partners, and members of the public. • Requires ability to demonstrate a strong collaborative mindset, share knowledge, and function as a contributing member of the team. • Requires ability to work effectively with all levels of the organization and broad technical understanding, while providing excellent customer service. • Requires ability to quickly learn, conduct own research as necessary, and retain information. • Requires ability to demonstrate strong critical-thinking and problem-solving skills. • Requires ability to demonstrate acute attention to detail. • Ability to demonstrate a high level of communication skills, both verbal (meeting organizer, training, etc.) and written (E-mail, IT policy, documentation, etc.) to C-level executives, auditors, end users, and engineers. • Requires ability to quickly understand authorized access based on least privilege and need to know concepts. • Requires ability to quickly identify privilege creep and when to remove unnecessary access. PERFORMANCE RESPONSIBILITIES: • Generic Job Functions:See Generic Job Description for Administrative Partner. • Essential Responsibilities and Competencies: LEVEL I: • Participate in New Employee Orientation (NEO). • Monitor the ticket queue, attempt first tier support, and escalate as needed. • Provide excellent customer service. • Assist staff with access related issues. • Follow up on late ARF and Termination submissions. • Audit for missing or incorrect EIDs. • Review HR new employee report for accuracy. • Document all team related procedures and resources to include notes, training, templates, knowledge bases, databases, change control and SOPs. • Assist and take instruction from higher-level analysts with duties and responsibilities as assigned. LEVEL II: (In addition to responsibilities for level I) • Process ARF submissions for new hires, rehires, account changes, and transfers. • Process termination, administrative leave, leave of absence, and FMLA submissions. • Process student and resident account provisioning. • Process business partner, vendor, and temporary employee account provisioning. • Process provider onboarding and offboarding. • Perform insurance provisioning. • Perform Provider Link requests and PCP Provider add requests. • Assist and provide guidance to lower-level analysts with assigned duties and responsibilities. • Assist and take instruction from senior-level analysts and supervisor with duties and responsibilities as assigned. LEVEL SR: (In addition to responsibilities for level II) • Perform internal audits to validate the effectiveness of access controls and procedures. • Participate in external third-party organization audits and HIPAA compliance. • Design and implement new opportunities for automation and IAM workflows. • Design and implement team training and inter-team cross-training. • Perform sensitive and timely terminations in cooperation with HR. • Manage account synchronization and licensing with O365. • Assist in defining team roles and responsibilities. • Assist and provide guidance to lower-level analysts with assigned duties and responsibilities. • Assist and take instruction from supervisor and/or team lead with duties and responsibilities as assigned. TEAM LEAD: (In addition to responsibilities for level Sr) • Assign prioritization, tasks, tickets, and projects to team members. • Assign support matrix roles to team members. • Manage the team calendar. • Set agenda and run team meetings. • Perform assessments and attestations. • Provide all necessary periodic reports and urgent updates to the supervisor. • Coordinate operations and licensing renewals with third-party vendors and business partners. • Assist and provide guidance to lower-level analysts with assigned duties and responsibilities. • Assist and take instruction from supervisor with duties and responsibilities as assigned. Date Created: Revised:12/24 Grade: NC07, NC09, NC11 FLSA: NE: Level I / E: Level II, Sr. Cost Center: 8552 Job Qualifications: PREREQUISITES: LEVEL I: • Education: Master's degree in computer science related field, OR Bachelor's degree in computer science related field plus one (1) year industry related experience, OR Associate's degree in computer science related field plus two (2) years industry related experience, OR three (3) years industry related experience. • Certification: Epic Data Courier and Epic Security Coordinator OR be able to obtain both within one (1) year of hire date. • Applied Job Experience: Information Security Background: Industry experience preferred as an Identity Access Analyst, User Provisioning Analyst, or Epic Application Analyst. Experience as a Service Desk Agent, Help Desk Agent, Desktop Technician, Windows Systems Administrator, Epic Client Systems Administrator, or Cache Database Administrator to be considered as time towards. LEVEL II: • Education: Master's degree in computer science related field plus two (2) years industry related experience, OR Bachelor's degree in computer science related field plus three (3) years industry related experience, OR Associate's degree in computer science related field plus four (4) years industry related experience, OR five (5) years industry related experience. • Certification: Epic Data Courier or Epic Security Coordinator upon hire AND be able to obtain the other certification within six (6) months of hire date. • Applied Job Experience: Information Security Background: Industry experience preferred as an Identity Access Analyst, User Provisioning Analyst, or Epic Application Analyst. Experience as a Windows Systems Administrator, Epic Client Systems Administrator, or Cache Database Administrator to be considered for up to three (3) years as time towards. LEVEL SR: • Education: Master's degree in computer science related field plus four (4) years industry related experience, OR Bachelor's degree in computer science related field plus five (5) years industry related experience, OR Associate's degree in computer science related field plus six (6) years industry related experience, OR seven (7) years industry related experience. • Certification: Epic Data Courier and Epic Security Coordinator upon hire. • Applied Job Experience: Information Security Background: Industry experience preferred as an Identity Access Analyst, User Provisioning Analyst, or Epic Application Analyst. Experience as a Windows Systems Administrator, Epic Client Systems Administrator, or Cache Database Administrator to be considered for up to three (3) years as time towards. QUALIFICATIONS: • Professional experience with Active Directory Users and Computers (ADUC) management. • Professional experience with NTFS and Epic access controls. • Experience with Epic Security Templates. • Experience with Epic SER records. • Experience with Epic EMP records. • Experience with Epic Reporting Workbench • Experience with Epic Blueprints. • Experience with Epic Galaxy, Sherlock, and Nova Notes. • Working knowledge and participation in internal and external audits. • Professional Experience with Change Control Boards (CCB). • Familiarity with SharePoint and OneDrive/OneNote administration. • Proficient with Excel and Excel Formulas. • Proficient with scripting languages and automation such as Python, PowerShell, etc. • Applied knowledge and understanding of HIPAA compliance. • Applied knowledge and understanding of information security best practices. CompTIA Security+ or ISC2 SSCP certifications (preferred).