Epic Security Analyst II

Position Summary ----------------

At Orlando Health, we are ordinary people with extraordinary individuality working together to bring help, healing, and hope to those we serve. By daily embodying our over 100-year legacy, we reinforce our reputation as a trusted and respected healthcare organization that delivers professional and compassionate care to our patients, families, and communities.

Department Information Technology -------------------------------

Status: Full-Time Shift: Monday - Friday, 8am-5pm (hybrid2x a week, onsite in Orlando, FL) On Call: Required

Benefits & Perks ----------------

All Inclusive Benefits start day one. Student loan repayment, tuition reimbursement, FREE college education programs, retirement savings, paid paternity leave, fertility benefits, back up elder and childcare, pet insurance, PTO, holidays, and more for full-time and part-time employees.

Awards and Recognition ----------------------

Forbes Recognizes Orlando Health as a Best-In-State Employer for 2024. We are proud to be named once again as a best place to work, said Karen Frenier, VP HR. This achievement reflects our positive culture and efforts to ensure that all team members feel respected, supported, and valued.

Employee-Centric ----------------

Orlando Health has been selected as one of the Best Places to Work in Healthcare by Modern Healthcare. We are committed to creating a positive and supportive work environment that fosters growth, development, and well-being.

Position Overview -----------------

Under the direction of the Manager, Identity Access Management, and in support of the Chief Information Security Officer (CISO) and Orlando Health organizational business units, the Epic Security Analyst II will provide consultation and guidance to the development, internal application, and technical teams, and the third-party Epic EMPSER provisioning vendor to maintain optimal protocols for granting and revoking appropriate end-user access for supported applications.

Responsibilities -----------------

• Establishes Epic security protocols in consultation with appropriate organizational stakeholders and maintains the security of the Epic application.
• Understands the foundational structures of Epic software, including profiles, roles, menus, and security classes, as well as network and device security relating to Epic and Epic end users.
• Performs daily Epic security administration functions, including managing customer access requests, creating and/or deleting user profiles and accounts, maintaining appropriate documentation, and monitoring and auditing access logs.
• Performs provider import/build as needed and cross-referencing user lists.
• Within the Epic system develops, manages, and maintains standard security configuration, security classes, and templates, security class ownership blueprints, and provisioning/deprovisioning of application security levels and roles.
• Works with Epic application teams to design system-level access, such as logout times, and lead decisions related to ownership and change delegation guidelines.
• Takes ownership on process improvement in Epic Security provisioning, monitoring, and auditing.
• Provides day-to-day troubleshooting, analysis, and resolution related to provider record issues.
• Works with Epic project representatives to complete design, build, and testing tasks in accordance with the project plan.
• Identifies issues that arise within security and provider configuration, as well as issues that affect other application teams, and works to reach resolution.
• Builds and maintains Knowledge Base and any other Epic Security related process procedures and policies.
• Identifies and implements requested changes to the system.
• Maintains effective communication with the Information Services Security Risk and Compliance Team and is able to understand business needs and security concerns and communicate effectively to management.
• Develops own and manages all other user and provider standards and processes and associated documentation.
• Coordinates with Epic Hosting Team and support technical teams.
• Takes lead on implementation, including but not limited to presentations, Q&As, policies, coordinating of training.
• Oversees testing, follow-up with stakeholders, and maintains regular communication with Epic representatives, including participating in weekly project team meetings.
• Analyzes, interprets, and presents audit findings in clear, concise reports.
• Identifies, recommends changes, and leads implementation of process improvements to improve efficiency and accuracy.
• Other duties as assigned.

Other Related Functions ----------------------

• Independently serves periods of on-call coverage at scheduled intervals.
• May be required to support upgrades and unplanned events during after-hours and weekends.
• Has the ability to interface with and gain the respect of stakeholders at all levels and roles in the company.
• Demonstrates good judgment, a sense of urgency, and has demonstrated commitment to high standards of ethics, regulatory compliance, customer service, and business integrity.

Qualifications --------------

• Education: Training Associates degree in either Healthcare Information Technology or Business.
• Licensure/Certification: Required Epic Certifications - Security 101-Epic Fundamentals Certification, Security 200-Epic Security Administration Certification, IT Security industry certification (i.e., Security A CCNA), Certified Identity and Access Manager (CIAM), Certified Identity Management Professional (CIMP), Microsoft Identity and Access Administrator Associate.
• Experience: A minimum of four years of information technology and three years of customer support experience.

Note: I have added newlines to improve readability, formatted bulleted lists, and separated sections with blank lines to make the document clean and easy to read.