Epic Security Analyst

We have a 6 month contract opportunity for an Epic Security Analyst. This role is fully remote but must work CST.

Epic Security Certification is required.

The Epic Security Analyst is the guardian of all staff identity and access to the electronic health record (EHR) with responsibility for safeguarding critical and confidential information. The Epic Security Analyst is responsible for Epic user records (EMP users, templates, and subtemplates), provider records (SER), security classes (ECL), and provider/patient groups (PGP) administration. This includes the life cycle management of the records (creation, modification, inactivation) and auditing as appropriate. The Epic Security Analyst participates in the development of workflows, system configuration, change documentation, optimization and support related to Epic security and Schedulable Epic Resources, while working with application teams to deploy functionality changes, new modules or departments, update security classes, modify provider records, conduct user analysis, and implement security enhancements. The Epic Security Analyst provides guidance on optimizing security build based on appropriate minimum necessary standards. The Epic Security Analyst is responsible for the on-going maintenance, testing, support and optimization of Epic user security and provider management, in addition to Identity Governance and Role Based Access Controls (RBAC). The Analyst may provide training and share knowledge with less experienced analysts, assisting in the growth of the individuals and the team. The Analyst engages in process improvement projects to improve efficiency and accuracy of work performed and other security-related activities, as appropriate, to ensure the integrity, availability, and confidentiality of electronic information.

Perform user account life cycle management, which includes creating, provisioning, updating, and inactivating.

Plan, test, manage, and update security for the protection of and access to the organization's electronic health record.

Act as the subject matter expert for Epic User Security and Schedulable Epic Resources.

Assist with application Updates and Special Updates, evaluation of new technology, settings, and functionality.

Troubleshoot security and workflow issues independently or in collaboration with other Information Systems teams and/or stakeholders.

Assist with the development, implementation, and support of Role Based Access Controls (RBAC).

Ensure all evidence of authorization is documented and archived according to internal standards.

Enforce organizational policies and procedures to ensure only authorized personnel have access to information in compliance with the Minimum Necessary Rules.

Identify and recommend process improvements to improve efficiency and accuracy.

Participate in ongoing auditing and risk assessments and implementation of audit recommendations.

Ensure dormant accounts/records are disabled; eliminate access for those who no longer need applicable information.

Responsible for the facilitation of security planning, build, and support of Epic implementations by actively participating in project teams meetings and planning.

Provide guidance as it relates to the organization's security best practices.

Develop system access and security implementation plans derived from operational customer needs and requests.

Develop and maintain detailed documentation on system configurations and technical settings for internal team use, end user support, and other IS teams as needed.

Generate Reporting Workbench and ad-hoc reports to perform in-depth analysis and data collection for issues associated with Epic software.

Assist in the enrollment of Haiku. Canto, and Electronic Prescribing of Controlled Substances (EPCS).

Manage the Epic browser URL and activity allow list.

Complete daily standard work, reporting, and communication as needed to maintain operations.

Staff a 24x7 on-call rotation 365 days a year to ensure ongoing operations and security for a facility that operates continuously to provide the best possible care to the patients we serve.

Experience with Epic Application template build.

Epic certification required.

Ensure dormant accounts/records are disabled; eliminate access for those who no longer need applicable information.

Responsible for the facilitation of security planning, build, and support of Epic implementations by actively participating in project teams meetings and planning.

Provide guidance as it relates to the organization's security best practices.

Develop system access and security implementation plans derived from operational customer needs and requests.

Develop and maintain detailed documentation on system configurations and technical settings for internal team use, end user support, and other IS teams as needed.

Generate Reporting Workbench and ad-hoc reports to perform in-depth analysis and data collection for issues associated with Epic software.

Assist in the enrollment of Haiku. Canto, and Electronic Prescribing of Controlled Substances (EPCS).

Manage the Epic browser URL and activity allow list.

Complete daily standard work, reporting, and communication as needed to maintain operations.

Staff a 24x7 on-call rotation 365 days a year to ensure ongoing operations and security for a facility that operates continuously to provide the best possible care to the patients we serve.

Experience with Epic Application template build.

Epic certification required.

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact

Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad Digital offers a comprehensive benefits package, including: medical, prescription, dental, vision, AD&D, and life insurance offerings, short-term disability, and a 401K plan (all benefits are based on eligibility).

This posting is open for thirty (30) days.


It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.