Epic Security and Access Analyst II

General Notes

This position supports Epic security administration, access provisioning, and role-based security design across clinical and business systems. The role works closely with Epic, Identity and Access Management (IAM), Human Resources, Compliance, and operational teams toensure secure, compliant, and efficient access management processes.

Purpose

The Epic Security and Access Analyst II is responsible for the administration, optimization, and support of Epic security access and role-based configurations across clinical and business systems. This role ensures appropriate access provisioning, role design integrity, and compliance with HIPAA, organizational policies, and Epic security standards while serving as a key operational contributor and escalation resource.

Responsibilities

Supports Epic Access Provisioning and Identity Workflows

• Support Epic provisioning and deprovisioning workflows for user access

• Process onboarding, transfer, and offboarding access requests in alignment with Human Resources and compliance requirements

• Assign roles, security classes, and user templates based on job function

• Ensure timely and accurate request fulfillment in accordance with established service level agreements (SLAs)

Maintains Security Roles, Templates, and Design

• Maintain and update Epic security roles, profiles, and templates

• Assist in role design and standardization efforts

• Validate alignment between security roles and organizational structure

• Identify opportunities to improve role efficiency and compliance

Supports Audits and Compliance Activities

• Assist with audits and compliance reviews related to Epic access

• Review audit reports to identify inappropriate or excessive access

• Document findings and support remediation activities

• Ensure adherence to HIPAA, internal policies, and regulatory requirements

Troubleshoots Epic Security and Access Issues

• Troubleshoot Epic access and security issues impacting users and workflows

• Investigate root causes of access problems and implement solutions

• Collaborate with application, IT, and IAM teams for issue resolution

• Escalate complex issues to senior analysts as appropriate

Supports Change Management and Epic Upgrades

• Participate in Epic upgrade and testing activities impacting security

• Validate access roles and configurations in non-production and production environments

• Support change control processes and system updates

• Document changes and ensure system integrity

Maintains Documentation and Process Standards

• Maintain security documentation and standards for Epic environments

• Update procedures, job aids, and process documentation

• Ensure documentation supports audit readiness and operational continuity

• Promote adherence to established security governance practices

Collaborates with IAM, Operational, and Technical Teams

• Collaborate with IAM and operational teams to ensure aligned access management processes

• Work closely with Human Resources, Compliance, and clinical teams on access needs

• Support cross-functional workflows related to identity lifecycle management

• Contribute to process improvements and standardization initiatives

Marginal or Periodic Functions

• Participate in periodic access recertification and compliance campaigns

• Support emergency access provisioning and downtime procedures

• Assist with testing new Epic modules or enhancements impacting security

• Provide guidance and informal coaching to Analyst I team members

• Support after-hours upgrades or critical incident response as needed

• Adhere to internal controls and reporting structure

• Perform related duties as assigned

Knowledge, Skills, and Abilities

Functional/Technical Skills

• Applies Epic security concepts such as user roles, security classes, and access templates

• Utilizes ticketing and access management systems effectively

• Learns system functionality and workflows quickly

• Demonstrates working knowledge of Epic security administration principles

Attention to Detail

• Reviews access requests thoroughly before processing

• Detects discrepancies in user permissions and security assignments

• Maintains precise documentation and audit records

Problem Solving

• Identifies causes of access issues and resolves them efficiently

• Escalates issues appropriately when they exceed scope or authority

• Applies troubleshooting techniques systematically to resolve security and access concerns

Informing

• Communicates clearly with users regarding access requests and status updates

• Documents processes, procedures, and changes effectively

• Provides timely updates to stakeholders and team members

Learning on the Fly

• Adapts to Epic updates, security enhancements, and new workflows

• Seeks knowledge to improve technical and operational skills

• Applies newly acquired knowledge to daily responsibilities

Peer Relationships

• Collaborates effectively across technical, operational, and clinical teams

• Maintains positive working relationships with stakeholders and colleagues

• Supports team objectives and shared organizational goals

Required Qualifications

• Bachelor's degree in Information Technology, Health Informatics, Business, or a related field

• Three years of experience supporting Epic security administration or access provisioning

• Experience working in a healthcare or highly regulated environment

• Familiarity with Identity and Access Management (IAM) systems and compliance frameworks

• Experience supporting user provisioning, role assignments, and access management processes

• Knowledge of security governance, compliance, and audit requirements

Relevant education and experience may be substituted as appropriate.

Preferred Qualifications

• Bachelor's degree in Information Technology, Health Informatics, Business, or a related field

• Four years of experience supporting Epic security administration or access provisioning

• Experience working in a healthcare or highly regulated environment

• Familiarity with Identity and Access Management (IAM) systems and compliance frameworks

• Experience supporting Epic security role design, maintenance, and optimization

• Experience supporting audit readiness and compliance activities

Licenses/Registrations/Certifications

Required

• None

Preferred

• Epic Security Certification (or obtained within six months of hire)

• CompTIA Security+

• Certified Identity and Access Manager (CIAM) or similar certification

• ITIL Foundation Certification

Salary Range

$70,000 + depending on qualifications

Working Conditions

• Standard office environment and equipment

• Repetitive use of a keyboard and computer

• May be required to support after-hours upgrades, system maintenance, or critical incidents

• May be exposed to occupational hazards such as communicable diseases, blood borne pathogens, ionizing and non-ionizing radiation, hazardous medications, and disoriented or combative patients

Required Materials

• Resume/CV

• 3 work references with their contact information; at least one reference should be from a supervisor

• Letter of interest

Important for applicants who are NOT current university employees or contingent workers: You will be prompted to submit your resume the first time you apply, then you will be provided an option to upload a new Resume for subsequent applications. Any additional Required Materials (letter of interest, references, etc.) will be uploaded in the Application Questions section; you will be able to multi-select additional files. Before submitting your online job application, ensure that ALL Required Materials have been uploaded. Once your job application has been submitted, you cannot make changes.

Important for Current university employees and contingent workers: As a current university employee or contingent worker, you MUST apply within Workday by searching for Find UT Jobs. If you are a current University employee, log-in to Workday, navigate to your Worker Profile, click the Career link in the left hand navigation menu and then update the sections in your Professional Profile before you apply. This information will be pulled into your application. The application is one page and you will be prompted to upload your resume. In addition, you must respond to the application questions presented to upload any additional Required Materials (letter of interest, references, etc.) that were noted above.

General Notes

This position supports Epic security administration, access provisioning, and role-based security design across clinical and business systems. The role works closely with Epic, Identity and Access Management (IAM), Human Resources, Compliance, and operational teams toensure secure, compliant, and efficient access management processes.

Purpose

The Epic Security and Access Analyst II is responsible for the administration, optimization, and support of Epic security access and role-based configurations across clinical and business systems. This role ensures appropriate access provisioning, role design integrity, and compliance with HIPAA, organizational policies, and Epic security standards while serving as a key operational contributor and escalation resource.

Responsibilities

Supports Epic Access Provisioning and Identity Workflows

• Support Epic provisioning and deprovisioning workflows for user access

• Process onboarding, transfer, and offboarding access requests in alignment with Human Resources and compliance requirements

• Assign roles, security classes, and user templates based on job function

• Ensure timely and accurate request fulfillment in accordance with established service level agreements (SLAs)

Maintains Security Roles, Templates, and Design

• Maintain and update Epic security roles, profiles, and templates

• Assist in role design and standardization efforts

• Validate alignment between security roles and organizational structure

• Identify opportunities to improve role efficiency and compliance

Supports Audits and Compliance Activities

• Assist with audits and compliance reviews related to Epic access

• Review audit reports to identify inappropriate or excessive access

• Document findings and support remediation activities

• Ensure adherence to HIPAA, internal policies, and regulatory requirements

Troubleshoots Epic Security and Access Issues

• Troubleshoot Epic access and security issues impacting users and workflows

• Investigate root causes of access problems and implement solutions

• Collaborate with application, IT, and IAM teams for issue resolution

• Escalate complex issues to senior analysts as appropriate

Supports Change Management and Epic Upgrades

• Participate in Epic upgrade and testing activities impacting security

• Validate access roles and configurations in non-production and production environments

• Support change control processes and system updates

• Document changes and ensure system integrity

Maintains Documentation and Process Standards

• Maintain security documentation and standards for Epic environments

• Update procedures, job aids, and process documentation

• Ensure documentation supports audit readiness and operational continuity

• Promote adherence to established security governance practices

Collaborates with IAM, Operational, and Technical Teams

• Collaborate with IAM and operational teams to ensure aligned access management processes

• Work closely with Human Resources, Compliance, and clinical teams on access needs

• Support cross-functional workflows related to identity lifecycle management

• Contribute to process improvements and standardization initiatives

Marginal or Periodic Functions

• Participate in periodic access recertification and compliance campaigns

• Support emergency access provisioning and downtime procedures

• Assist with testing new Epic modules or enhancements impacting security

• Provide guidance and informal coaching to Analyst I team members

• Support after-hours upgrades or critical incident response as needed

• Adhere to internal controls and reporting structure

• Perform related duties as assigned

Knowledge, Skills, and Abilities

Functional/Technical Skills

• Applies Epic security concepts such as user roles, security classes, and access templates

• Utilizes ticketing and access management systems effectively

• Learns system functionality and workflows quickly

• Demonstrates working knowledge of Epic security administration principles

Attention to Detail

• Reviews access requests thoroughly before processing

• Detects discrepancies in user permissions and security assignments

• Maintains precise documentation and audit records

Problem Solving

• Identifies causes of access issues and resolves them efficiently

• Escalates issues appropriately when they exceed scope or authority

• Applies troubleshooting techniques systematically to resolve security and access concerns

Informing

• Communicates clearly with users regarding access requests and status updates

• Documents processes, procedures, and changes effectively

• Provides timely updates to stakeholders and team members

Learning on the Fly

• Adapts to Epic updates, security enhancements, and new workflows

• Seeks knowledge to improve technical and operational skills

• Applies newly acquired knowledge to daily responsibilities

Peer Relationships

• Collaborates effectively across technical, operational, and clinical teams

• Maintains positive working relationships with stakeholders and colleagues

• Supports team objectives and shared organizational goals

Required Qualifications

• Bachelor's degree in Information Technology, Health Informatics, Business, or a related field

• Three years of experience supporting Epic security administration or access provisioning

• Experience working in a healthcare or highly regulated environment

• Familiarity with Identity and Access Management (IAM) systems and compliance frameworks

• Experience supporting user provisioning, role assignments, and access management processes

• Knowledge of security governance, compliance, and audit requirements

Relevant education and experience may be substituted as appropriate.

Preferred Qualifications

• Bachelor's degree in Information Technology, Health Informatics, Business, or a related field

• Four years of experience supporting Epic security administration or access provisioning

• Experience working in a healthcare or highly regulated environment

• Familiarity with Identity and Access Management (IAM) systems and compliance frameworks

• Experience supporting Epic security role design, maintenance, and optimization

• Experience supporting audit readiness and compliance activities

Licenses/Registrations/Certifications

Required

• None

Preferred

• Epic Security Certification (or obtained within six months of hire)

• CompTIA Security+

• Certified Identity and Access Manager (CIAM) or similar certification

• ITIL Foundation Certification

Salary Range

$70,000 + depending on qualifications

Working Conditions

• Standard office environment and equipment

• Repetitive use of a keyboard and computer

• May be required to support after-hours upgrades, system maintenance, or critical incidents

• May be exposed to occupational hazards such as communicable diseases, blood borne pathogens, ionizing and non-ionizing radiation, hazardous medications, and disoriented or combative patients

Required Materials

• Resume/CV

• 3 work references with their contact information; at least one reference should be from a supervisor

• Letter of interest

Important for applicants who are NOT current university employees or contingent workers: You will be prompted to submit your resume the first time you apply, then you will be provided an option to upload a new Resume for subsequent applications. Any additional Required Materials (letter of interest, references, etc.) will be uploaded in the Application Questions section; you will be able to multi-select additional files. Before submitting your online job application, ensure that ALL Required Materials have been uploaded. Once your job application has been submitted, you cannot make changes.

Important for Current university employees and contingent workers: As a current university employee or contingent worker, you MUST apply within Workday by searching for Find UT Jobs. If you are a current University employee, log-in to Workday, navigate to your Worker Profile, click the Career link in the left hand navigation menu and then update the sections in your Professional Profile before you apply. This information will be pulled into your application. The application is one page and you will be prompted to upload your resume. In addition, you must respond to the application questions presented to upload any additional Required Materials (letter of interest, references, etc.) that were noted above.

• 

• Government Careers