SYS ADM 5 bei University of California, San Francisco

The final salary and offer components are subject to additional approvals based on UC policy.

Your placement within the salary range is dependent on a number of factors including your work experience and internal equity within this position classification at UCSF. For positions that are represented by a labor union, placement within the salary range will be guided by the rules in the collective bargaining agreement.

The salary range for this position is $118,300 - $268,900 (Annual Rate).

To learn more about the benefits of working at UCSF, including total compensation, please visit: https://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html

• Bachelor’s Degree or equivalent combination of experience/training in computer science, information technology, cybersecurity, or related field.
• 7 years of experience working in one or more of the following fields: information technology, cybersecurity, computer science, management, higher education, or a related field.
• Expert knowledge of identity management, multifactor authentication, privileged access management, identity verification and authentication methods, including password management, MFA, and single sign-on (SSO).
• Extensive knowledge of Active Directory, Azure AD, LDAP, SAML, OAuth, single sign-on technologies (SSO), and multi-factor authentication (MFA) solutions
• Demonstrated industry-level experience strategically managing user credentials across various systems and platforms, ensuring the secure provisioning, maintenance, and revocation of user credentials.
• Experience integrating badge login solutions (e.g., Imprivata) with HER/EMR systems (Epic, Cerner), Citrix, VMware, and cloud IAM or similar platforms.
• Strong PowerShell scripting skills.
• Familiarity with zero-trust security models, privileged access management (PAM) and endpoint security. 
• Understanding of healthcare IT regulations (HIPAA, HITRUST, NIST 800-53, etc.) Extensive knowledge of regulatory requirements, such as GDPR and FERPA, governing credential management in higher education institutions.
• Broad knowledge of data encryption technologies and experience selecting and applying appropriate data encryption technologies.
• Expert knowledge of computer security best practices and policies, particularly in the context of IAM. Ability to contribute to institution-wide policy efforts.
• Expert experience determining how IAM systems should operate most efficiently and understanding the impact of changes to these systems on outcomes, operations, and business objectives.
• Advanced experience in incident response and digital forensics including reporting.
• Advanced ability to write and edit technical documentation in a clear and concise manner, ensuring that all relevant stakeholders understand the systems and processes being described.
• Expert knowledge of the design, development, and application of technology and systems to meet business needs, paired with a clear understanding of system performance monitoring and ways to improve or correct performance.
• Comprehensive understanding of systems-related issues and the potential impact of system management actions on other systems, users, and dependent/related functions. Demonstrated skills associated with adapting equipment and technology to serve user needs. Demonstrated comprehensive understanding of how system management actions affect other systems, system users, and dependent/related functions.
• Expert experience writing and editing complex scripts used for system maintenance and administration.
• Demonstrated knowledge, skills, and abilities associated with system problem identification and resolution, including design, configuration, operation, repair, and tuning of technology systems.
• Extensive familiarity with IAM tools and technologies, such as identity governance and administration (IGA) platforms, directory services, and identity federation protocols.
• Exceptional communication and interpersonal skills, with demonstrated ability to collaborate effectively with diverse stakeholders at all levels, and to lead and mentor a team.
• Demonstrated self-motivation, strong problem-solving skills, effective learning abilities, and a commitment to meeting deadlines, both independently and as part of a team.

• 10 years of experience working in one or more of the following fields: information technology, cybersecurity, computer science, management, higher education, or a related field.
• Expert knowledge of identity standards and protocols, such as OpenID Connect, SCIM, and OAuth 2.0.
• Extensive expertise with identity lifecycle management tools (e.g., Microsoft Identity Manager, ForgeRock Identity Platform).
• Experience in complex higher education environments, serving academic, medical, and research and administrative functions of a large public university.  

• One or more of the following certifications: Certified Identity and Access Manager (CIAM), Certified Access Management Specialist (CAMS), Microsoft Certified: Identity and Access Administrator Associate (SC-300), Cisco Certified Network Professional (CCNP) Security, Cisco Certified Internetwork Expert (CCIE) Security, Offensive Security Certified Professional (OSCP), Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or equivalent certification