Title: EPIC Security Coordinator Location: Dallas, TX - Shared Services Remote Full-time Job Description: Our patients are our number one priority! We're committed to giving children back their childhood! Job Posting Title: EPIC Security Coordinator Location: Dallas - Shared Services Additional Posting Details: Monday - Friday 8:00am - 4:30pm Remote Job Description: Duties/Responsibilities Analysis Functions: - Manage Epic access, security, user roles, and provider records for all Scottish Rite staff, providers, consultants, contingent workers, and any additional team members needing access to the EHR. - Maintain Data Courier access, monitor performance, and identify potential threats/misuse of Data Courier - Work with all IT and Epic teams to identify appropriate solutions for various operational and technical needs regarding security or provider records - Identify the most appropriate methods for security template build and maintenance - Audit and report on security analysis for each application and each user role every year to maintain good standing with Epic. - Work independently on all tasks, including but not limited to facilitation of both internal and external customer meetings Reporting Functions: - Build and maintain Reporting Workbench reports as it relates to security, user roles, and provider records - Answer questions by interpreting data at a deeper level and providing actionable recommendations - Understand and create reports required to monitor Data Courier operations Documentation and Testing Functions: - Ensure department documentation is at current levels - Preform application and integration testing for the assigned module - Perform validation testing with end users to gain operational acceptance and feedback to new build components/optimization projects - Ensure Data Courier documentation is maintained and updated for each upgrade Interpreting Workflows Functions: - Understand and analyze Epic security, user role, and provider record needs - Assist with the translation of security points/classes/roles into workflow-based discussions Third Party Applications Function: - Support integration with third party applications when applicable - Maintain access to multiple third part applications when applicable - Support application teams in developing security templates and access to third party applications Required Skills/Abilities - Bachelor's degree or commensurate experience in health care preferred - Master's degree preferred - Minimum of 6 years of related experience in a hospital and/or hospital-based clinic environment is required - Epic certifications required: - Security - Data Courier Administrator - Provider Administration - Epic certifications must be current or obtained within 12 months of employment or at the discretion of the manager - A minimum of 6 years of previous experience in building, training, and supporting the Epic Systems electronic health record suite is required

• Protect digital assets by identifying and responding to security threats • Collaborate with cross-functional teams to create cybersecurity strategies • Conduct security assessments and audits • Ensure compliance with security policies and regulations

Company Overview NWN is the leading AI-powered technology solutions provider for North America's most innovative public and private organizations. For more than 30 years, NWN has helped over 5,000 CIOs deliver technology modernization programs with its Intelligent Workplace, Customer Experience (CX), Managed Devices, Cybersecurity and Public Safety, Connectivity, and Intelligent Cloud solutions. The company's proprietary Experience Management Platform ensures seamless service delivery, real-time observability and improved efficiency for its clients' most demanding technology needs. NWN is a high-performance, high-integrity team of 1,000+ experts committed to a customer-obsessed culture, earning a 75 Customer Net Promoter Score. The company has been recognized with hundreds of industry awards and is proud to be a 'Best Place to Work' with an 86 Employee Net Promoter Score. For more information, visit: NWN.ai. Responsibilities The Service Enablement Engineer Lead plays a key role in driving the operational readiness and technical enablement of managed service teams. This role bridges the gap between service delivery, professional services engineering, and customer success by ensuring managed services teams are equipped with the tools, knowledge, processes, and documentation needed to deliver high-quality services at scale - Define, document, and execute onboarding procedures for services and systems, ensuring operational readiness, observability standards, and completion of all prerequisite tasks. - Ensure accurate integration with monitoring platforms, CMDB requirements, and SKU-to-service alignment by collaborating with product, operations, engineering, and billing teams. - Create, maintain, and standardize technical documentation, runbooks, onboarding workflows, and operating procedures to ensure consistency across managed services. - Maintain audit trails for onboarding and enablement activities, enforce procedural compliance, and ensure data integrity across internal systems and client-facing platforms. - Implement and manage secure remote access solutions, ensuring provisioning, de-provisioning, and access controls comply with security and regulatory requirements. - Identify and automate repetitive processes using scripting or orchestration tools and integrate automation into onboarding and operational workflows to improve scalability. - Manage and prioritize service enablement requests through ITSM systems, ensuring visibility, SLA adherence, and timely resolution. - Partner with engineering, operations, customer success, security, and product teams to resolve implementation challenges and drive continuous process improvement. - Support the development and launch of new service offerings by contributing to enablement playbooks, service build guides, and internal knowledge transfer. - Make independent decisions on complex technical issues, establish enablement standards, and provide subject-matter expertise across multiple technology domains. - Mentor and coach Service Enablement Engineers, Technicians, and Specialists through training, technical guidance, and best-practice reinforcement. - Apply a customer-focused mindset by understanding SLAs/SLOs and ensuring enablement decisions support service quality, reliability, and customer experience. Qualifications - H.S. Diploma or General Education Degree (GED) Required - Bachelor’s Degree in Arts/Sciences (BA/BS) Advanced degree in Engineering or similar field Preferred - Technical Expertise: Solid understanding of cloud platforms (AWS, Azure, GCP), networking, security, and monitoring tools (e.g., OpsRamp, Zenoss, Nectar). - ITIL Knowledge: Familiarity with service management frameworks like ITIL. - Experience with Microsoft Office – intermediate to advanced - Demonstrated expertise in multiple technology disciplines or advanced certifications (e.g., CCNP, MCSE, ITIL, etc.). - Thrive in an environment of multiple shifting priorities. - Must be detail oriented while handing multiple concurrent tasks and/or projects with minimal supervision, managing deadlines, and completing tasks on time. - Gains insight from big pictures to enhance tactical steps - Able to present point of view to gain buy in and drive change. - Exposure to enterprise environments or MSP (Managed Service Provider) setting - Customer-Focused Mindset: Understanding of SLAs, SLOs, and the impact of technical decisions on customer satisfaction/experience. - Collaboration: Experience working in cross-functional teams (engineering, operations, customer success). - Automation Experience: Scripting or automation (Python, PowerShell, or Ansible) to improve service delivery efficiency. - Assist in enforcing Security compliance for tooling and procedures. - Proven leadership, mentoring, and project management experience. - Exceptional communication, organizational, and analytical skills - Strong ability to work independently and lead teams in high-pressure situations - ITIL Foundations v3 ITIL Foundation Certification - Certification in Project Management Remote: Job duties are performed from the employee’s home home or another approved remote location. Remote employees are expected to maintain productivity, communication, and availability during agreed-upon working hours, in alignment with company policies. Requires Travel - Yes Requires Overtime - Yes At NWN, we provide a comprehensive benefits package to support your well-being in and out of work. This includes medical, dental, and vision plans, Health Savings Account (HSA) and Flexible Spending Accounts (FSAs), income protection through disability and life insurance, and a 401(k) with company match. Enjoy unlimited PTO, paid company holidays, hybrid/remote work, paid bonding leave for eligible employees, employee discounts, and access to our Employee Assistance Program (EAP). Additional offerings include accident, critical illness, long-term care, and hospital indemnity coverages, legal and identity theft protection, pet insurance, supplemental life insurances, referral bonuses, charitable donation matching, and allowances for eligible roles. Join a team that values the health and wellbeing of all our employees! All offers of employment at NWN are contingent upon the successful completion of a comprehensive background check. This process ensures a safe and secure work environment for all employees. NWN is an Equal Opportunity Employer: NWN provides equal employment opportunity to all employees and applicants for employment free from unlawful discrimination based on race, color, religion, gender, age, national origin, disability, veteran status, marital status, sexual orientation or any other status or condition protected by local, state or federal law.

The Work We are seeking a Senior Cybersecurity Engineer with deep experience supporting the Risk Management Framework (RMF) and Authorization to Operate (ATO) lifecycle for federal information systems. This role focuses on STIG compliance, vulnerability management, POA&M tracking, and incident response for high‑impact systems operating in classified environments. Key Responsibilities - Provide end-to-end RMF and ATO support, including development, maintenance, and submission of security authorization packages. - Manage and maintain eMASS artifacts, ensuring accuracy, completeness, and audit readiness. - Conduct and oversee STIG compliance activities across operating systems, databases, and platforms; document findings and remediation actions. - Identify, track, and manage Plans of Action and Milestones (POA&Ms), coordinating with technical teams to drive remediation to closure. - Perform and review vulnerability assessments using tools such as Nessus and STIG scanning utilities; analyze results and recommend mitigation strategies. - Support incident response activities, including investigation, reporting, and coordination with security leadership and stakeholders. - Develop and update RMF documentation such as SSPs, SARs, RARs, and continuous monitoring artifacts. - Collaborate with ISSOs, ISSEs, system owners, developers, and program leadership to ensure ongoing compliance with federal and DoD cybersecurity requirements. - Support continuous monitoring activities and ATO renewals in accordance with NIST, DoD, and agency-specific guidance. Required Qualifications - 10+ years of experience supporting RMF / ATO processes for federal information systems. - Bachelor’s degree in Cybersecurity, Information Assurance, Computer Science, or a related field. - Active Top Secret / SCI clearance. Preferred Qualifications - Preference to candidates who has experience supporting DCSA or a federal agency. - Relevant cybersecurity certifications (e.g., CISSP, CISM, CAP, CEH, or Security+). - Hands-on experience with eMASS, including package creation and ongoing maintenance. - Strong working knowledge of STIG compliance, vulnerability scanning, and remediation processes. - Experience managing and reporting POA&Ms through resolution. - Familiarity with Nessus and other vulnerability assessment and STIG scanning tools. - Experience supporting or participating in incident response efforts within a classified or regulated environment. - Solid understanding of NIST RMF and federal cybersecurity compliance requirements. - Background working in classified cloud or hybrid environments. - Experience with continuous monitoring and ATO sustainment activities. - Familiarity with DISA STIGs, ACAS, or similar DoD-aligned security tools. Working at ICF ICF is a global advisory and technology services provider, but we’re not your typical consultants. We combine unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future. We can only solve the world's toughest challenges by building a workplace that allows everyone to thrive. We are an equal opportunity employer. Together, our employees are empowered to share their expertise and collaborate with others to achieve personal and professional goals. For more information, please read our EEO policy. We will consider for employment qualified applicants with arrest and conviction records. Reasonable Accommodations are available, including, but not limited to, for disabled veterans, individuals with disabilities, and individuals with sincerely held religious beliefs, in all phases of the application and employment process. To request an accommodation, please email Candidateaccommodation@icf.com and we will be happy to assist. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.  Read more about workplace discrimination rights or our benefit offerings which are included in the Transparency in (Benefits) Coverage Act. Candidate AI Usage Policy At ICF, we are committed to ensuring a fair interview process for all candidates based on their own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) tools to generate or assist with responses during interviews (whether in-person or virtual) is not permitted. This policy is in place to maintain the integrity and authenticity of the interview process.  However, we understand that some candidates may require accommodation that involves the use of AI. If such an accommodation is needed, candidates are instructed to contact us in advance at candidateaccommodation@icf.com. We are dedicated to providing the necessary support to ensure that all candidates have an equal opportunity to succeed.   Pay Range - There are multiple factors that are considered in determining final pay for a position, including, but not limited to, relevant work experience, skills, certifications and competencies that align to the specified role, geographic location, education and certifications as well as contract provisions regarding labor categories that are specific to the position. The pay range for this position based on full-time employment is: $118,807.00 - $201,971.00 DC Remote Office (DC99)