Senior Credential Administrator

University of California System-posted 19 days ago
Full-time • Mid Level
Onsite • San Francisco, CA
5,001-10,000 employees
Educational Services
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

The Identity and Access Management (IAM) Senior Credential Administrator, a recognized leader in their field, will serve as a key strategic leader in the university's digital identity and access management initiatives, driving the development and implementation of advanced IAM solutions across all departments, including academic, medical, research, and administrative units. They will oversee the creation and maintenance of university IDs for faculty, staff, and students, ensuring the IAM infrastructure supports secure, efficient, and scalable access to critical information systems and resources. They will also play a key role in the design, implementation, and optimization of badge login solutions to enhance secure authentication, single sign-on (SSO), and identity governance. This role requires high-level collaboration with university leadership and various departments to establish and enforce best practices, leveraging cutting-edge technologies for identity lifecycle management. Additionally, the IAM Senior Credential Administrator will work closely with Security Operations to proactively address and mitigate security incidents related to identity and access, fostering a culture of continuous improvement and regulatory compliance. Providing expert technical leadership and strategic vision, they will mentor the IAM team, guide the resolution of complex issues, and shape policies that enhance the university's security posture. In partnership with the IAM Credential Manager, they will strategically allocate departmental resources to align with the university's overarching goals, ensuring the highest standards of security, efficiency, and compliance. The IAM Senior Credential Administrator will positively impact UCSF's operations and culture by ensuring UCSF's IT infrastructure is operable, secure, efficient, and effective in service of the University's mission. This team member will advance the University's mission by delivering exceptional information technology services comprehensively and consistently across customers and stakeholders. This role will execute UCSF's vision while modeling UCSF's culture and values. The final salary and offer components are subject to additional approvals based on UC policy. Your placement within the salary range is dependent on a number of factors including your work experience and internal equity within this position classification at UCSF. The annual salary range for this position is $118,300 - $268,900. To learn more about the benefits of working at UCSF, including total compensation, please visit: https://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html

  • Bachelor's Degree or four years of equivalent experience/training in computer science, information technology, cybersecurity, or related field.
  • Seven (7) years or more of experience working in one or more of the following fields: information technology, cybersecurity, computer science, management, higher education, or a related field.
  • Expert knowledge administering Imprivata OneSign or other identity/access management solutions in production for a large complex organization.
  • Expert knowledge administering Microsoft Active Directory (AD) in a large, complex, multi-domain environment.
  • Expert knowledge of identity management, multifactor authentication, privileged access management, identity verification and authentication methods, including password management, MFA, and single sign-on (SSO).
  • Extensive knowledge of Active Directory, Azure AD, LDAP, SAML, OAuth, single sign-on technologies (SSO), and multi-factor authentication (MFA) solutions
  • Demonstrated industry-level experience strategically managing user credentials across various systems and platforms, ensuring the secure provisioning, maintenance, and revocation of user credentials.
  • Experience integrating badge login solutions (e.g., Imprivata) with HER/EMR systems (Epic, Cerner), Citrix, VMware, and cloud IAM or similar platforms.
  • Strong PowerShell scripting skills.
  • Familiarity with zero-trust security models, privileged access management (PAM) and endpoint security.
  • Understanding of healthcare IT regulations (HIPAA, HITRUST, NIST 800-53, etc.) Extensive knowledge of regulatory requirements, such as GDPR and FERPA, governing credential management in higher education institutions.
  • Broad knowledge of data encryption technologies and experience selecting and applying appropriate data encryption technologies.
  • Expert knowledge of computer security best practices and policies, particularly in the context of IAM. Ability to contribute to institution-wide policy efforts.
  • Expert experience determining how IAM systems should operate most efficiently and understanding the impact of changes to these systems on outcomes, operations, and business objectives.
  • Advanced experience in incident response and digital forensics including reporting.
  • Advanced ability to write and edit technical documentation in a clear and concise manner, ensuring that all relevant stakeholders understand the systems and processes being described.
  • Expert knowledge of the design, development, and application of technology and systems to meet business needs, paired with a clear understanding of system performance monitoring and ways to improve or correct performance.
  • Comprehensive understanding of systems-related issues and the potential impact of system management actions on other systems, users, and dependent/related functions. Demonstrated skills associated with adapting equipment and technology to serve user needs. Demonstrated comprehensive understanding of how system management actions affect other systems, system users, and dependent/related functions.
  • Expert experience writing and editing complex scripts used for system maintenance and administration.
  • Demonstrated knowledge, skills, and abilities associated with system problem identification and resolution, including design, configuration, operation, repair, and tuning of technology systems.
  • Extensive familiarity with IAM tools and technologies, such as identity governance and administration (IGA) platforms, directory services, and identity federation protocols.
  • Exceptional communication and interpersonal skills, with demonstrated ability to collaborate effectively with diverse stakeholders at all levels, and to lead and mentor a team.
  • Demonstrated self-motivation, strong problem-solving skills, effective learning abilities, and a commitment to meeting deadlines, both independently and as part of a team.
  • This position requires on-site work based on business needs. Also, we are not sponsoring any type of Visa's.
  • Ten years or more of experience working in one or more of the following fields: information technology, cybersecurity, computer science, management, higher education, or a related field.
  • Expert knowledge of identity standards and protocols, such as OpenID Connect, SCIM, and OAuth 2.0.
  • Extensive expertise with identity lifecycle management tools (e.g., Microsoft Identity Manager, ForgeRock Identity Platform).
  • Experience in complex higher education environments, serving academic, medical, and research and administrative functions of a large public university.
Track Jobs with Teal

Job Search Resources

AI Resume Builder
Senior System Administrator Resume Examples
Senior System Administrator Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service