Access Authorization, Access Control, Analysis Skills, Application Integration, Auditing, Authentication, Business Processes, Business-to-Business (B2B), Change Management, Claims Processing, Cloud Computing, Coaching, Communication Skills, Computer Security, Customer Support/Service, Disaster Recovery, Documentation, Ecosystems, Enterprise Applications, Enterprise Architecture, HRIS/HRMS, Healthcare, Identity Data Management, Identity Federation, Incident Management, Information Assets, Information Technology & Information Systems, Information/Data Security (InfoSec), Interpret Regulations, Leadership, Legal Documents, Legal Reports, Maintain Compliance, Management Strategy, Management of Information Systems/Technology (MIS), Metrics, Microsoft Active Directory, NIS (Network Information Service), Network Security, Patient Care, Performance Reviews, Privacy Controls, Problem Solving Skills, Program Control, Project Planning, Proofreading, Regulations, Regulatory Compliance, Regulatory Requirements, Replication and Remote Mirroring, Resource Management, Risk, Risk Management, Security Auditing, Security Compliance, Security Infrastructure, Set Goals, Single Sign-On (SSO), Software as a Service (SaaS), Team Player, Testing, Time Management, Topology
The Senior Manager Identity and Access Management Governance reports to the Deputy Information Security Officer. In addition, this position will work in a collaborative effort with the Director, Identity and Access Management Services, IT and business unit leadership to ensure enterprise IAM identity-first services are aligned with policies, processes, applicable laws and regulations. In addition, this position will lead direct and development for team members to ensure service culture and equity is maintained.
The Senior Manager of Identity & Access Management (IAM) Governance is responsible for leading the enterprise IAM Governance program across a complex healthcare ecosystem supporting both provider and payer operations. This role owns the strategy, governance, and execution of IAM governance capabilities for workforce users and B2B/third‑party identities, ensuring secure, compliant, and timely access to systems that support patient care, claims processing, revenue operations, and business partnerships.
The role, under the guidance of the Information Privacy and Security Office, will provide oversight and leadership of key programs and controls necessary to ensure the protection of data, networks and information assets. The services provided by the IAM Governance program include design, implementation and controls through technologies, processes and solutions mainly in the following areas:
- IAM Controls
- IAM Audits
- New Solution Delivery
Management
Provides leadership, vision, managerial oversight, development, implementation, and execution of Henry Ford Health Identity and Access Management Governance strategy. Maintains policies and processes that enable HFH to establish consistent, efficient, and appropriate controls over departmental services. Sets performance expectations for direct reports and provides constructive performance feedback on a regular basis.
Responsible for communications and reporting of metrics, deliverables, and risks. The primary responsibility will be to continually assess and deliver improvements on strategic alignment between business and IT; reducing or eliminating technical debt; supporting scalability and agility in adapting to change and setting identity technology standards.
Foster a culture of customer service, disciplined business conduct, and healthy communication. Ensure each team member understands their role, responsibilities, and is accountable for their performance. Allocates resources so timelines, commitments, and service levels from the team are met.
PRINCIPLE DUTIES AND RESPONSIBILITIES:
The Senior Manager Identity and Access Management Governance in partnership with the Director of Identity and Access Operations, assists in leadership, vision and managerial oversight for the development and implementation of the HFH' Identity and Access Management strategy to define state-of-the-art policies and processes that enable HFH to establish consistent, effective information security practices and minimize risk. The Senior Manager of IAM Governance serves as a trusted advisor, shaping the strategic security roadmap, building strong partnerships across business, cyber, and risk stakeholders, and ensuring alignment with regulatory and organizational requirements.
- Oversee integrations between IAM platforms, directories, HR systems, cloud services, and enterprise applications to ensure accurate and timely identity governance.
- Actively involved in solution design, configuration, troubleshooting, and complex issue resolution related to IAM platforms and application integrations.
- Partner with security, infrastructure, application, and compliance teams to ensure IAM controls meet security, audit, and regulatory requirements.
- Direct enterprise user access reviews, certifications, segregation of duties, and audit activities, ensuring IAM evidence is accurate, complete, and audit ready.
- Lead the execution and validation IAM Controls framework and IAM controls.
- Develop and implement action plans, new processes & documentation required to enforce compliance.
- Partners with PAM teams to ensure privileged access is governed through approvals, time‑bound access, and attestation.
- Identifies and evaluates complex business and technology risks, internal controls that mitigate risks, and related opportunities for internal control improvement.
- Acts as subject-matter-expert on all IAM disciplines including identity governance and administration (IGA), Single-Sign-On (SSO), multi-factor authentication (MFA), privileged access management and identity verification (ID Proofing, etc.).
- Provides management status reporting to include accomplishments, plans for upcoming activities and overall completion status on a regular basis ensuring all milestones and deliverables are achieved within communicated deadlines.
- Understands business and information technology management processes and demonstrates advanced understanding of business processes, identity-first security, internal control risk management, IT controls and related standards.
- Provides leadership to foster a culture of customer service, disciplined business conduct, and healthy communication.
- Defines the work and roles of team members and establish performance goals and standards for each function to ensure development goals are met.
- Conducts performance reviews for team members and provides coaching and staff performance feedback.
- Directs employees in the successful execution of job responsibilities to achieve their annual work plan objectives.
EDUCATION/EXPERIENCE REQUIRED:
- A Bachelor's degree preferred or a minimum of 8 - 10 years of Information Technology experience in a position focused on optimizing and/or designing Identity & Access management governance, tools, and processes.
- 5+ years leading IAM Governance programs.
- Proficiency in identity management technologies, including Active Directory, IGA tools, and federated identity solutions across on-premises and Cloud/SaaS platforms.
- Identity management familiarity in one or more of the following areas: single sign-on (SSO), data management, identity federation, enterprise directory architecture and design, including directory schema, directory services, namespace and replication topology experience, resource provisioning, and process integration. Identity and access governance include role-based access control, access request and certification, user life cycle management processes, and organizational change management.
- Familiarity with compliance standards and understanding audits to develop and execute action plans.
- Expert understanding of IAM concepts, including federation, authentication, authorization, access controls, access control attacks, identity and access provisioning life cycle.
- Experience or knowledge of technical, business and healthcare environment, familiarity with national security standards, business continuity, disaster recovery, auditing, risk management, vulnerability assessments, regulatory compliance, and incident management.
- Success in developing solutions in a diverse and complex environment demonstrates a commitment to help change the way healthcare is delivered.
- Exceptional and demonstrated leadership skills and ability to influence peers, superiors, and corporate culture.
- Working experience on different types of IAM toolsets, password reset, and federated identity across on-premises and Cloud/SaaS platforms.
- Ability to analyze, interpret and summarize regulations, policies and procedures, reports and legal documents.
- Demonstrated ability to recruit, train and lead people, set goals and achieve implementation results for privacy/security solutions.
- Successful experience functioning within a "matrix" environment and serving internal customers, building strong partnerships and effective lines of communication, while possessing the appropriate level of persistence to drive privacy/security compliance goals.
Additional Information
- Organization: Corporate Services
- Department: Info & Network Security Srvcs
- Shift: Day Job
- Union Code: Not Applicable