Cybersecurity IAM Architect

Department Name: IT Identity Access Mgmt-Corp

Work Shift: Day

Job Category: Information Technology

Estimated Pay Range: $57.38 - $95.64 / hour, based on location, education, & experience. In accordance with State Pay Transparency Rules.

Health care is constantly changing, and at Banner Health, we are at the front of that change. We are leading health care to make the experience the best it can be. We want to change the lives of those in our care – and the people who choose to take on this challenge. If changing health care for the better sounds like something you want to be part of, we want to hear from you.

The Identity and Access Management (IAM) team is responsible for Identity Management for the enterprise, to include day to day IAM operations to manage and action user access provisioning requests, privileged access management, single sign-on, vendor remote access, Entra  AWS identify security governance, conditional access policies, identity governance, user access reviews, role based access controls, multi-factor authentication, IAM architecture design and implementation, customer satisfaction over the user access experience, collaborating with clinical and business teams and leadership, and making sure all identities are secured and limited to only the access necessary to perform required job functions.

The team is critical to reduce excessive access, unauthorized access, and insider threat risk to Banner.

Banner Health is looking for a Cybersecurity IAM Architect to lead the enterprise Cybersecurity IAM strategy, ecosystem, and architecture for Banner Health day to day. The incumbent develops architectural artifacts, models, patterns, in accordance with industry standard architecture frameworks such as SABSA, TOGAF, etc., and leads the standards for identities and access, in compliance with legal, regulatory, and Banner Health requirements.

This includes the definition of processes to manage the lifecycle of user's accounts and identity in the IT landscape. This position has responsibility for IAM product rationalization and design, including cloud identity, non-employee identity, consumer identity, non-human identity, Azure Active Directory, AWS Identity & Access Management, Privileged Access Management, Multi-Factor Authentication, Single Sign-On, Zero Trust, among other Banner IAM capabilities, initiatives, and strategies.

Acting as a contributing member of the IAM team and center of excellence in architecture, this role will develop identity focused roadmaps and strategy documentation, coordinate and work with other teams to support the IAM program and strategic vision, coordinate with stakeholders including but not limited to Enterprise Architecture, Solutions Architecture, Cybersecurity Architecture, Infrastructure, Applications, and Business teams. This position designs solutions to resolve complex and highly complex technical and business issues related to Identity Governance and Administration (IGA).

This role helps to develop and drive IAM projects, strategic initiatives, budget, and goals; as well as establishing strong cross‑functional relationships and partnerships with groups mentioned above. This position is instrumental in leading Banner IAM strategy into the future to stay aligned with emerging trends while effectively serving our user‑base and supporting our mission of patient care.

This is a remote position on a remote team. In this role you would work Monday through Friday normal business hours 8am - 5pm AZ time zone and can be a remote position if you live in the following states only: AL, AK, AR, AZ, CA, CO, FL, GA, IA, , IN, KS, KY, LA, MD, MI, MN, MO, MS, NC, ND, NE, NH, NM, NV, NY, OH, OK, OR, PA, SC, TN, TX, UT, VA, WA, WI, WV & WY.