Senior Cybersecurity Access Management Engineer

Description
Penn Medicine is dedicated to our tripartite mission of providing the highest level of care to patients, conducting innovative research, and educating future leaders in the field of medicine. Working for this leading academic medical center means collaboration with top clinical, technical and business professionals across all disciplines.

Today at Penn Medicine, someone will make a breakthrough. Someone will heal a heart, deliver hopeful news, and give comfort and reassurance. Our employees shape our future each day. Are you living your life's work?

Entity: Corporate Services

Department: IS- Cybersecurity

Hours: M-F, 8 hr days, hybrid

Location: 3535 Market Street, Philadelphia, Pa

Summary:

• The Senior Cybersecurity Access Management Engineer plays a lead role in designing and maintaining secure authentication and access control mechanisms across Penn Medicine. This engineer is responsible for integrating enterprise applications into the SSO ecosystem, managing complex access policies, and supporting compliance through robust logging and auditing.

Responsibilities:

• Lead the integration of applications with Entra ID-based SSO and MFA frameworks.
• Design and maintain scalable access policies aligned with regulatory standards.
• Guide and mentor junior engineers on access management best practices.
• Support compliance audits and internal access reviews with technical documentation.
• Conduct root cause analysis on access-related issues and implement long-term fixes.
• Partner with cybersecurity, infrastructure, and application teams to enhance IAM operations.
• Define onboarding standards and controls
• Help manage and prioritize the work of onboarding multiple applications to the SSO platform
• Guide application owners on SSO best practices.
• Support SSO on-call support.
• Performs duties in accordance with Penn Medicine and entity values, policies, and procedures.
• Other duties as assigned to support the unit, department, entity, and health system organization.

Credentials:

• CISSP - Certified Information Systems Security Professional. (Preferred)
• Identity and Access Administrator Associate. (Preferred)
• Azure Security Engineer Associate. (Preferred)

Education or Equivalent Experience:

• Bachelor's degree. (Required)
• 4+ years of working in IT. (Required)
• 2+ years IT experience focused on Access Management. (Required)
• 2+ years of experience with healthcare access management and cloud-based IAM. (Preferred)

We believe that the best care for our patients starts with the best care for our employees. Our employee benefits programs help our employees get healthy and stay healthy. We offer a comprehensive compensation and benefits program that includes one of the finest prepaid tuition assistance programs in the region. Penn Medicine employees are actively engaged and committed to our mission. Together we will continue to make medical advances that help people live longer, healthier lives.

Live Your Life's Work

We are an Equal Opportunity employer. Candidates are considered for employment without regard to race, ethnicity, color, sex, sexual orientation, gender identity, religion, national origin, ancestry, age, disability, marital status, familial status, genetic information, domestic or sexual violence victim status, citizenship status, military status, status as a protected veteran or any other status protected by applicable law.