Epic Security Analyst

About The Position

Requirements

• Bachelor’s degree in information technology, cybersecurity, healthcare, business, or related field (or equivalent experience).
• 1–3+ years of experience in EHR systems, user access management, IT security, or healthcare application support.
• Strong analytical and problem-solving skills.
• Excellent communication and customer service abilities.
• Understanding of security, compliance, and audit principles.

Nice To Haves

• Epic Security or User Provisioning certification (or willingness to obtain within 6 months).
• Experience in healthcare IT, identity management, or access control systems.
• Familiarity with HIPAA, regulatory requirements, and clinical/operational workflows.
• Experience supporting Epic modules and cross-application security needs.

Responsibilities

• Configure, build, and maintain Epic security templates, user roles, position‑based access, and security classifications.
• Maintain and optimize user provisioning processes, ensuring alignment with organizational job roles and security best practices.
• Support security design for new departments, workflows, and integrated applications.
• Collaborate with application teams to ensure access aligns with workflow requirements across all Epic modules.
• Implement new features and participate in system upgrades and release cycles related to security functionality.
• Troubleshoot user access issues, permission errors, login problems, and workflow restrictions.
• Investigate root causes and implement sustainable solutions for security-related incidents.
• Use Epic tools and logs (such as Security Point Analyzer, Role Explorer, and related tools) to diagnose and resolve issues.
• Collaborate with Compliance and Audit teams on security reviews, access audits, and remediation efforts.
• Partner with HR, Compliance, IT, and departmental leaders to ensure accurate and timely user provisioning.
• Participate in application and governance meetings to ensure security remains aligned with operational and regulatory needs.
• Communicate security changes, access impacts, and provisioning workflows to stakeholders.
• Serve as a consultant for access needs during new implementations and organizational changes (mergers, expansions, department builds, etc.).
• Develop and execute testing strategies for system upgrades, new security features, and workflow changes.
• Create and maintain documentation for security build, access workflows, change logs, and standards.
• Maintain audit-ready documentation for user provisioning and access control procedures.
• Ensure consistent version control and appropriate documentation for change requests.
• Provide support during go‑lives, new location activations, and system updates.
• Assist training teams with security/escalation workflows as needed.
• Provide guidance to end users and managers regarding access requests, approvals, and provisioning standards.