Senior Engineer- IAM (FT- 1.0 FTE, Remote)

This position can be remote. Please review the approved remote states below. 

Remote Work Approved States:
Arizona
Florida
Georgia
Idaho
Iowa
South Dakota
Texas
South Carolina
Wisconsin
North Carolina

*If your state is not listed, you must relocate to Montana or one of the approved states above to be eligible for this position.

Position Summary: 

The Senior Engineer, Identity and Access Management (IAM), designs, implements, and maintains IAM systems across on-premise and cloud environments. This role ensures secure management of user identities, authentication mechanisms, and enforcement of security policies. Collaborating effectively with Bozeman Health customers and employees, the Senior Engineer provides analytical expertise to enhance access controls and maintain security standards.

Minimum Qualifications:

Required:

• Bachelor degree in Information Security, Computer Science or a related field; equivalent combinations of education, certifications and experience may be considered.
• Current Certified Identity and Access Manager (CIAM) or equivalent, or ability to obtain within twelve (12) months of hire date.
• Current Microsoft Azure Cloud Certification or equivalent, or ability to obtain within three (3) months of hire date.​
• Five (5) years of experience with identity and access management systems (IAM) and tools, like Azure Entra and Active Directory.
• Knowledge of identity and access management (IAM) concepts like authentication, authorization, and access control models.
• Intermediate proficiency in scripting languages like PowerShell.
• Understanding of industry standards HIPAA and NIST.

Preferred:

• HCISPP or CISSP certifications.
• Experience with IAM solutions like SailPoint, CyberArk, or Okta.
• Experience with authentication standards and technologies such as multi-factor authentication (MFA), SAML, OAuth/OAuth2, OpenID Connect, and single sign-on (SSO) platforms.
• Health care knowledge and/or experience with focus on user access controls and security.

Essential Job Functions: 

In addition to the job's essential functions listed below, employees must have on-time completion of all required education as assigned per DNV requirements, Bozeman Health policy, and other registry requirements.

• Ensures efficient and secure identity lifecycle management (onboarding, provisioning, deprovisioning, access reviews).
• Designs and enforces role-based access control (RBAC) policies.
• Implements multi-factor authentication (MFA) and other access security controls.
• Monitors SIEM tools to identify threats and anomalies.
• Supports Cyber Security team with incident response efforts.
• Performs continual audits including, but not limited to, user creation, access rights, authentication methods and privilege account activity
• Ensures compliance with industry standard and regulations such as NIST and HIPAA.
• Stays up-to-date with emerging cyber threats, zero-day vulnerabilities, and attack tactics.
• Provides technical guidance and training to IT staff on IAM framework best practices.
• Reviews and creates security policies following industry standards.
• Recommends security enhancements, new technologies and budgetary needs.
• Maintains associated vendor relationships.
• Fosters and maintains close communication and positive working relationships within the IT division and Bozeman Health community.
• Ensures technical aspects/projects/upgrades and/or issues related to assigned systems are addressed efficiently and effectively.
• Participate in after-hours on-call rotation and respond to related incidents as required.

Knowledge, Skills and Abilities:

• Ability to work in a busy and stressful environment.
• Demonstrates sound judgment, patience, and maintains a professional demeanor at all times.
• Exercises tact, discretion, sensitivity, and maintains confidentiality.
• Strong interpersonal, verbal, and written communication skills.
• Detail oriented, organizational skills, and the ability to prioritize.
• Analyzes, organizes, and prioritizes work while meeting multiple deadlines.

Schedule Requirements:

• This position works a hybrid schedule and must be able to work on-site as required.
• This role requires regular and sustained attendance.
• The position may necessitate working beyond a standard 40-hour workweek, including weekends and after-hours shifts.
• On-call work may be required to respond promptly to organizational, patient, or employee needs.

Physical Requirements:

• Lifting (Rarely – 30 pounds): Exerting force occasionally and/or using a negligible amount of force to lift, carry, push, pull, or otherwise move objects or people.
• Sit (Continuously): Maintaining a sitting posture for extended periods may include adjusting body position to prevent discomfort or strain.
• Stand (Occasionally): Maintaining a standing posture for extended periods may include adjusting body position to prevent discomfort or strain.
• Walk (Occasionally): Walking and moving around within the work area requires good balance and coordination.
• Climb (Rarely): Ascending or descending ladders, stairs, scaffolding, ramps, poles, and the like using feet and legs; may also use hands and arms.
• Twist/Bend/Stoop/Kneel (Occasionally): Twisting, bending, stooping, and kneeling require flexibility and a wide range of motion in the spine and joints.
• Reach Above Shoulder Level (Occasionally): Lifting, carrying, pushing, or pulling objects as necessary above the shoulder, requiring strength and stability.
• Push/Pull (Occasionally): Using the upper extremities to press or exert force against something with steady force to thrust forward, downward, or outward.
• Fine-Finger Movements (Continuously): Picking, pinching, typing, or otherwise working primarily with fingers rather than using the whole hand as in handling.
• Vision (Continuously): Close visual acuity to prepare and analyze data and figures and to read computer screens, printed materials, and handwritten materials.
• Cognitive Skills (Continuously): Learn new tasks, remember processes, maintain focus, complete tasks independently, and make timely decisions in the context of a workflow.
• Exposures (Rarely): Bloodborne pathogens, such as blood, bodily fluids, or tissues. Radiation in settings where medical imaging procedures are performed. Various chemicals and medications are used in healthcare settings. Job tasks may involve handling cleaning products, disinfectants, and other substances. Infectious diseases due to contact with patients in areas that may have contagious illnesses.

*Frequency Key:  Continuously (100% - 67% of the time), Repeatedly (66% - 33% of the time), Occasionally (32% - 4% of the time), Rarely (3% - 1% of the time), Never (0%).

The above statements are intended to describe the general nature and level of work being performed by people assigned to the job classification.  They are not to be construed as a contract of any type nor an exhaustive list of all job duties performed by individuals so classified.