Job Description
POSITION SUMMARY: The Applications Security Analyst professional will participate in the day-to-day execution and continuous improvement of Epic application access provisioning and deprovisioning in a high-volume hospital environment. This role will also be an application-side partner in our IAM/IGA automation program—helping define the Epic roles/entitlements, approvals, and access review structures that enable scalable automation for joiners/movers/leavers. Position : Epic Security Analyst II Department : Information Security Schedule : Full Time ESSENTIAL RESPONSIBILITIES / DUTIES: ServiceNow Driven Epic Access Operations Own and execute work in a ServiceNow queue, consistently handling consistent high-volume tickets for joiner/mover/leaver access changes, troubleshooting, and triage. Prioritize and route requests using impact, urgency, patient-care considerations, risk, and defined SLAs; escalate complex/high-risk issues appropriately. Troubleshoot access end-to-end (request intent, user attributes, role mapping, provisioning outcomes, in-application authorization) and document decisions/outcomes clearly for auditability. Epic Application Access & Security Leadership Serve as an escalation point for assigned Epic access design/build and access issues; ensure access is scalable, supportable, and aligned to policy. Collaborate to assist in development and maintenance standardized access patterns with Attribute Based Access Control (ABAC)/templates, privileged/elevated access controls) aligned to least privilege. Partner with Epic application teams, operational leaders, and source data stewards to translate workflows into durable access models and reduce one-off exceptions. Access Governance, Audit Readiness, and Risk Controls Assist in maintaining an Epic access catalog (roles/entitlements, risk tiers, prerequisites, approval paths) and keep it current as workflows evolve. Support access reviews/attestations for high-risk roles and privileged access; drive remedia
