Senior Manager - Identity & Access Management Governance
The Senior Manager Identity and Access Management Governance reports to the Deputy Information Security Officer. In addition, this position will work in a collaborative effort with the Director, Identity and Access Management Services, IT and business unit leadership to ensure enterprise IAM identity-first services are aligned with policies, processes, applicable laws and regulations. In addition, this position will lead direct and development for team members to ensure service culture and equity is maintained.
The Senior Manager of Identity & Access Management (IAM) Governance is responsible for leading the enterprise IAM Governance program across a complex healthcare ecosystem supporting both provider and payer operations. This role owns the strategy, governance, and execution of IAM governance capabilities for workforce users and B2B/third‑party identities, ensuring secure, compliant, and timely access to systems that support patient care, claims processing, revenue operations, and business partnerships.
The role, under the guidance of the Information Privacy and Security Office, will provide oversight and leadership of key programs and controls necessary to ensure the protection of data, networks and information assets. The services provided by the IAM Governance program include design, implementation and controls through technologies, processes and solutions mainly in the following areas:
- IAM Controls
- IAM Audits
- New Solution Delivery
Management
Provides leadership, vision, managerial oversight, development, implementation, and execution of Henry Ford Health Identity and Access Management Governance strategy. Maintains policies and processes that enable HFH to establish consistent, efficient, and appropriate controls over departmental services. Sets performance expectations for direct reports and provides constructive performance feedback on a regular basis.
Responsible for communications and reporting of metrics, deliverables, and risks. The primary responsibility will be to continually assess and deliver improvements on strategic alignment between business and IT; reducing or eliminating technical debt; supporting scalability and agility in adapting to change and setting identity technology standards.
Foster a culture of customer service, disciplined business conduct, and healthy communication. Ensure each team member understands their role, responsibilities, and is accountable for their performance. Allocates resources so timelines, commitments, and service levels from the team are met.
PRINCIPLE DUTIES AND RESPONSIBILITIES:
The Senior Manager Identity and Access Management Governance in partnership with the Director of Identity and Access Operations, assists in leadership, vision and managerial oversight for the development and implementation of the HFH’ Identity and Access Management strategy to define state-of-the-art policies and processes that enable HFH to establish consistent, effective information security practices and minimize risk. The Senior Manager of IAM Governance serves as a trusted advisor, shaping the strategic security roadmap, building strong partnerships across business, cyber, and risk stakeholders, and ensuring alignment with regulatory and organizational requirements.
- Oversee integrations between IAM platforms, directories, HR systems, cloud services, and enterprise applications to ensure accurate and timely identity governance.
- Actively involved in solution design, configuration, troubleshooting, and complex issue resolution related to IAM platforms and application integrations.
- Partner with security, infrastructure, application, and compliance teams to ensure IAM controls meet security, audit, and regulatory requirements.
- Direct enterprise user access reviews, certifications, segregation of duties, and audit activities, ensuring IAM evidence is accurate, complete, and audit ready.
- Lead the execution and validation IAM Controls framework and IAM controls.
- Develop and implement action plans, new processes & documentation required to enforce compliance.
- Partners with PAM teams to ensure privileged access is governed through approvals, time‑bound access, and attestation.
- Identifies and evaluates complex business and technology risks, internal controls that mitigate risks, and related opportunities for internal control improvement.
- Acts as subject-matter-expert on all IAM disciplines including identity governance and administration (IGA), Single-Sign-On (SSO), multi-factor authentication (MFA), privileged access management and identity verification (ID Proofing, etc.).
- Provides management status reporting to include accomplishments, plans for upcoming activities and overall completion status on a regular basis ensuring all milestones and deliverables are achieved within communicated deadlines.
- Understands business and information technology management processes and demonstrates advanced understanding of business processes, identity-first security, internal control risk management, IT controls and related standards.
- Provides leadership to foster a culture of customer service, disciplined business conduct, and healthy communication.
- Defines the work and roles of team members and establish performance goals and standards for each function to ensure development goals are met.
- Conducts performance reviews for team members and provides coaching and staff performance feedback.
- Directs employees in the successful execution of job responsibilities to achieve their annual work plan objectives.
EDUCATION/EXPERIENCE REQUIRED:
- A Bachelor’s degree preferred or a minimum of 8 – 10 years of Information Technology experience in a position focused on optimizing and/or designing Identity & Access management governance, tools, and processes.
- 5+ years leading IAM Governance programs.
- Proficiency in identity management technologies, including Active Directory, IGA tools, and federated identity solutions across on-premises and Cloud/SaaS platforms.
- Identity management familiarity in one or more of the following areas: single sign-on (SSO), data management, identity federation, enterprise directory architecture and design, including directory schema, directory services, namespace and replication topology experience, resource provisioning, and process integration. Identity and access governance include role-based access control, access request and certification, user life cycle management processes, and organizational change management.
- Familiarity with compliance standards and understanding audits to develop and execute action plans.
- Expert understanding of IAM concepts, including federation, authentication, authorization, access controls, access control attacks, identity and access provisioning life cycle.
- Experience or knowledge of technical, business and healthcare environment, familiarity with national security standards, business continuity, disaster recovery, auditing, risk management, vulnerability assessments, regulatory compliance, and incident management.
- Success in developing solutions in a diverse and complex environment demonstrates a commitment to help change the way healthcare is delivered.
- Exceptional and demonstrated leadership skills and ability to influence peers, superiors, and corporate culture.
- Working experience on different types of IAM toolsets, password reset, and federated identity across on-premises and Cloud/SaaS platforms.
- Ability to analyze, interpret and summarize regulations, policies and procedures, reports and legal documents.
- Demonstrated ability to recruit, train and lead people, set goals and achieve implementation results for privacy/security solutions.
- Successful experience functioning within a “matrix” environment and serving internal customers, building strong partnerships and effective lines of communication, while possessing the appropriate level of persistence to drive privacy/security compliance goals.
Additional Details
This posting represents the major duties, responsibilities, and authorities of this job, and is not intended to be a complete list of all tasks and functions. It should be understood, therefore, that incumbents may be asked to perform job-related duties beyond those explicitly described above.
Overview
Henry Ford Health partners with millions of people on their health journey, across Michigan and around the world. We offer a full continuum of services – from primary and preventative care to complex and specialty care, health insurance, a full suite of home health offerings, virtual care, pharmacy, eye care and other health care retail. With former Ascension southeast Michigan and Flint region locations now part of our team, Henry Ford’s care is available in 13 hospitals and hundreds of ambulatory care locations. Based in Detroit, Henry Ford is one of the nation’s most respected academic medical centers and is leading the Future of Health: Detroit, a $3 billion investment anchored by a reimagined Henry Ford academic healthcare campus. Learn more at henryford.com/careers.
Benefits
The health and overall well-being of our team members is our priority. That’s why we offer support in the various components of our team’s well-being: physical, emotional, social, financial and spiritual. Our Total Rewards program includes competitive health plan options, with three consumer-driven health plans (CDHPs), a PPO plan and an HMO plan. Our team members enjoy a number of additional benefits, ranging from dental and eye care coverage to tuition assistance, family forming benefits, discounts to dozens of businesses and more. Employees classified as contingent status are not eligible for benefits.
Equal Employment Opportunity/Affirmative Action Employer
Equal Employment Opportunity / Affirmative Action Employer Henry Ford Health is
committed to the hiring, advancement and fair treatment of all individuals without regard to
race, color, creed, religion, age, sex, national origin, disability, veteran status, size, height,
weight, marital status, family status, gender identity, sexual orientation, and genetic information,
or any other protected status in accordance with applicable federal and state laws.