Principal Epic Security IT Analyst

HealthPartners is hiring a Principal Epic Security IT Analyst. This position leads the coordination of Epic access activities across modules, care delivery groups, and the HealthPartners system. This role ensures the effective deployment of Epic security management by maintaining strong access controls, conducting security reviews for application releases and upgrades, and supporting the integration of security standards across Epic modules. In addition, this position provides guidance to IT Security Administration staff on Epic provisioning practices and is responsible for documenting and maintaining provisioning processes.

The role is instrumental to the Security Administration team's oversight and management of Epic, primarily working with the various Epic security teams across HealthPartners, including Epic Core. It serves as the primary subject matter expert for Epic security, facilitates Epic Liaison meetings, and promotes knowledge sharing across internal teams and stakeholders.

This position reports to the Manager, IT Security Administration, and joins a collaborative team of fourteen professionals, including administrators and analysts, focused on safeguarding access and security across the Epic environment.

Required Qualifications:

• Bachelor's degree or equivalent combination of education and work experience.
• Eight (8) years of experience in application security administration
• Current Epic Security Coordinator certification
• Current Epic SER badge certification
• Proven troubleshooting and analytical skills
• Project coordination experience
• Strong negotiation and arbitration skills
• Effective communication skills across varying technical aptitudes and hierarchies
• Strong experience coordinating and facilitating change management.
• Working knowledge of compliance and security frameworks
• Demonstrated writing and documentation skills.
• Expert-level knowledge and skill in provisioning access to information assets

Preferred Qualifications:

• Ten or more (10+) years of experience with Epic Security Administration
• Experience working with Identity and Access Management (IAM) tools and processes.

Hours/Location:

• M-F; core business hours
• This role is remote, with a preference for local or regional candidates who can attend occasional onsite meetings as needed.

Responsibilities:

• Leads coordination efforts around Epic EMP and SER master files.
• Consults with IT and non-IT Epic support teams to facilitate and coordinate security integration across Epic modules and Care Delivery groups.
• Instrumental in designing, creating, and implementing security classes, roles, profiles, menus, and templates.
• Provides thought leadership in the integration of Epic security practices across the enterprise, including transition work as other entities join the HealthPartners organization.
• Assesses Epic access issues, troubleshooting access incidents and correcting provisioning or Epic Module integration issues.
• Reviews and analyzes Epic releases and upgrades; ensuring that HealthPartners takes full advantage of new security functionality.
• Ensures controlled change management for template or other key security functionality changes.
• Aligns reporting needs for access to Business Partners' needs and application ownership.
• Leads efforts in partnership with IT application or technical teams when system changes or enhancements may require security administration utilities, processing special or nonstandard requests.
• Provides expert administration of user access to systems maintained by the IT Security Administration group.
• Advises Business partners on security policies and security administration best practices; guiding access and reporting needs to accommodate best security practices.
• Produces and maintains Security Administration Procedures for Epic-related access, forms, and documentation.
• Leads Security Administration efforts to provide evidence for audits and compliance reviews and facilitates needed updates to Epic-related security policies and procedures.
• Consult with IT Security and mobility teams to influence best practices as they relate to remote access capabilities to Epic applications and modules.
• Maintains knowledge of Epic including Nova release notes, User Forum, Galaxy, and other documentation published through the Epic User Web.