Workday Security Lead

REMINDERS:

This job description contains proprietary, confidential information intended solely for recruiting. Redistribution, posting, or sharing— in whole or in part—on job boards, websites, social media, or any public channel is prohibited without prior written consent. Any breach may result in immediate termination of our partnership.

Vendor Rules (Read and Acknowledge)


Do not post this content on any job boards or public sites.
Do not reference the end Clients name in any posting or advertisement.
Do not share Beacon Hill requirements with other vendors or third parties.
Candidate employment: All submitted candidates must be (a) on your active W-2 or (b) transferring to your W-2. No sub-vendor layers or pass-throughs.
Submission: Submit candidates by replying to this email only for pre-screen and consideration.







Workday Security Lead
Boston Area - Remote - some travel
Pay Rate in the $85 - $95/hr range
Remote - may be some travel that client will expense.




This candidate will need to be on my direct W2

Must be US Citizen or Green Card in case they want to convert them down the road.

Must have Hospital experience (this hospital is in the Boston area.

Must be a Workday Security Lead with heavy Administration and Architecture.



Must Haves:


Workday Security Administration
Workday HCM Pro
Deep expertise in Workday security models
SOX
Expertise in Workday security groups, domain security, business process security, and role-based access control.
Hospital




Pluses:


CISSP, CISA, or related certification preferred
The Workday Security Lead is responsible for the strategic architecture, governance, administration, and optimization of the Workday security model. This senior-level role requires deep expertise in Workday security structure, including security groups, domain security policies, business process security policies, role assignments, segregation of duties, and the organizational context that drives access within the tenant.
Leveraging advanced application security capabilities, the lead oversees enterprise-wide Workday security initiatives, including role design, address governance, compliance, audit readiness, and long-term security roadmap planning. The role also partners with HR, Finance, Payroll, IT, Compliance, and executive leadership to ensure Workday security solutions are secure, scalable, compliant, and aligned with approved roles, business priorities, and regulatory requirements.
The ideal candidate must possess at least two Workday implementations in their background within healthcare.




Technical Skills:


Designs and configures Workday security structures including security groups, domain policies, business process security, and role-based access controls.
Provides Workday security support through accurate configuration, compliant access administration, integrated controls, and secure governance.
Oversee complex security design activities involving provisioning, deprovisioning, role assignments, and attestation dependencies.
Leads security audits, segregation of duties assessments, data protection controls, and access governance activities within Workday
Develop advanced security frameworks, approval standards, and monitoring controls.
Defines enterprise standards for access reviews, security documentation, and evidence retention.
Manages technical aspects of Workday security changes, including regression testing, validation, and production readiness.
Ensures technical readiness for Workday release cycles and coordinates security-related tasks with IT and business teams.




Communication and Influencing skills:


Adhere to detailed work plans and timelines for Workday security initiatives.
Identifies resources needed to complete assigned tasks and provides timely status reports.
Drives consensus among HR, Finance, Payroll, Compliance, and IT stakeholders on Workday security decisions.
Facilitate leadership briefings to present security strategy, control maturity, risk posture, and remediation plans.
Authors governance standards, role design documentation, and Workday security operating procedures.