(While navigating through the site, please be sure to disable your pop-up blocker.)
Senior Cybersecurity Analyst - Identity & Access Mgmt
The University of Texas MD Anderson Cancer Center is seeking a highly skilled Senior Cybersecurity Analyst to support the Cybersecurity department, which is responsible for protecting institutional systems, data, and identities across complex digital environments. The Senior Cybersecurity Analyst plays a critical role in advancing identity security capabilities, strengthening access controls, and enabling secure operations across cloud, on-premises, and third-party platforms.
The Senior Cybersecurity Analyst will serve as a senior-level technical leader within the Identity and Access Management (IAM) program, driving modernization initiatives, improving audit outcomes, and supporting secure digital transformation. The Senior Cybersecurity Analyst will also help establish identity as a foundational security control aligned with zero-trust and least-privilege principles.
The ideal candidate holds a bachelor’s degree in a related field, with a preference for a master’s degree in information security or computer science, and brings strong experience across multiple cybersecurity domains, particularly hands-on IAM work. Preferred candidates possess deep expertise with enterprise identity platforms, identity governance and lifecycle processes, and integration using protocols such as SAML, OAuth 2.0, OIDC, or SCIM, along with industry-recognized certifications such as CISSP, CISA, Microsoft SC-300, or Okta certification.
Minimum $106,500– Midpoint $133,000 – Maximum $159,500
Work Location: 100% remote within Texas
Why Us?
This role offers the opportunity to lead critical IAM initiatives that directly strengthen security posture and safeguard sensitive systems and data at UT MD Anderson. The Senior Cybersecurity Analyst contributes to high-impact projects such as zero-trust implementation, identity platform modernization, and AI-enabled automation while benefiting from a collaborative environment, strong leadership support, and a focus on professional growth and work-life balance.
• Employer-paid medical coverage starting day one for employees working 30+ hours/week, plus optional group dental, vision, life, AD&D, and disability insurance.
• Accruals for PTO and Extended Illness Bank, plus paid holidays, wellness, childcare, and other leave options.
• Tuition Assistance Program after six months of service and access to extensive wellness, fitness, and employee resource groups.
• Defined-benefit pension through the Teachers Retirement System, voluntary retirement plans, and employer-paid life and reduced salary protection programs.
Responsibilities
IAM Strategy & Zero-Trust Leadership
• Provide senior technical leadership for the IAM program aligned with zero-trust and least-privilege principles
• Define IAM standards, roadmaps, and reference architectures across cloud and on-premises environments
• Establish identity, authentication, and authorization frameworks supporting enterprise security goals
Identity Platform Engineering & Entra ID Migration
• Lead the design, configuration, and operation of enterprise identity platforms
• Drive migration to and ongoing maturation of Microsoft Entra ID
• Implement and manage single sign-on (SSO), multi-factor authentication (MFA), and conditional access controls
Identity Lifecycle & Authoritative Source Management
• Lead joiner, mover, and leaver lifecycle processes across systems
• Integrate identity platforms with authoritative sources, including ERP transition initiatives
• Ensure accurate and timely provisioning and deprovisioning across connected applications
Access Governance, PAM & Automation
• Design and operate role-based access control (RBAC), entitlement management, and segregation-of-duties controls
• Conduct periodic access reviews and certifications to enforce least privilege and improve audit outcomes
• Lead implementation and operation of privileged access management (PAM) controls
• Develop automation for provisioning, governance workflows, certifications, and reporting using scripting, APIs, and IGA tools
AI-Enabled IAM & Threat Detection
• Leverage artificial intelligence to automate workflows such as access request triage, entitlement analysis, and anomaly detection
• Develop AI agents with appropriate governance, oversight, and risk controls
• Partner with Security Operations and risk teams to detect and respond to identity threats, including account takeover and privilege escalation
• Continuously identify and remediate identity misconfigurations and excessive access
Technical Leadership & Documentation
• Serve as a technical lead and escalation point for IAM operations
• Mentor junior and mid-level team members and promote knowledge transfer
• Develop and maintain IAM standards, runbooks, and technical documentation
• Drive continuous improvement across IAM processes and controls
EDUCATION
- Required: Bachelor's Degree Computer Information Systems, Business Information Systems, Computer Science or related field.
- Preferred: Master's Degree Information Security, Computer Science or related field.
WORK EXPERIENCE
- Required: 5 years Experience in information security/cybersecurity experience, to include experience in multiple security domains.
- May substitute required education degree with additional years of equivalent experience on a one to one basis.
- Preferred: At least 4 years of hands-on IAM experience, direct hands-on experience with an enterprise identity platform, hands-on experience with identity governance and lifecycle — access reviews/certifications, joiner-mover-leaver workflows, or privileged access management, experience integrating applications with identity providers via SAML, OAuth 2.0, OIDC, or SCIM provisioning.
LICENSES AND CERTIFICATIONS
- Preferred: CISSP Certified Information Systems Security Professional
- Preferred: Certified Information Systems Auditor (CISA)
- Preferred: Microsoft Identity & Access Administrator SC 300
- Preferred: Okta certified
- Preferred: Other applicable industry certifications.
The University of Texas MD Anderson Cancer Center offers excellent benefits, including medical, dental, paid time off, retirement, tuition benefits, educational opportunities, and individual and team recognition.
This position may be responsible for maintaining the security and integrity of critical infrastructure, as defined in Section 113.001(2) of the Texas Business and Commerce Code and therefore may require routine reviews and screening. The ability to satisfy and maintain all requirements necessary to ensure the continued security and integrity of such infrastructure is a condition of hire and continued employment.
It is the policy of The University of Texas MD Anderson Cancer Center to provide equal employment opportunity without regard to race, color, religion, age, national origin, sex, gender, sexual orientation, gender identity/expression, disability, protected veteran status, genetic information, or any other basis protected by institutional policy or by federal, state, or local laws unless such distinction is required by law.http://www.mdanderson.org/about-us/legal-and-policy/legal-statements/eeo-affirmative-action.html

