Job Location:
Allentown, PA – 1110 American Parkway

St. Luke's is proud of the skills, experience and compassion of its employees. The employees of St. Luke's are our most valuable asset! Individually and together, our employees are dedicated to satisfying the mission of our organization which is an unwavering commitment to excellence as we care for the sick and injured; educate physicians, nurses and other health care providers; and improve access to care in the communities we serve, regardless of a patient's ability to pay for health care.

The HCMS Security Analyst plays a critical role in designing, implementing, and maintaining robust security controls in Workday and processes to protect sensitive HR information and ensure compliance with security standards and regulations. This role consults with cross functional stakeholders to determine Workday security requirements that support business goals and translates those requirements into actionable Workday solutions.

The HCMS Security Analyst is the critical link between our Workday Functional Team (Core HCM, Compensation, Talent Acquisition, etc.) Reporting & Analytic Team and the Workday Technical Team, ensuring the identification and assessment of cross-workstream Workday security impacts and is responsible for working with functional teams to ensure a security model that meets business and compliance standards.


Workday Security Management

  • Design and configure security roles, permissions, and data access policies within the Workday system.
  • Collaborate with stakeholders to define security roles, access controls, and permission sets, ensuring the appropriate level of data security and segregation of duties.
  • Serve as a core stakeholder in the system change management process ensuring proper security for Workday changes moving to Production.

User Access Management

  • Administer user access requests, provisioning, and deprovisioning within Workday.
  • Define security groups, configure data access policies, and assign appropriate permissions to users based on their roles and responsibilities.
  • Conduct periodic access reviews to ensure that user access privileges align with job responsibilities, business need, governance, and the Workday security model.
  • Implement and enforce user access controls to mitigate risks related to data breaches or unauthorized system usage.

Role-Based Access Control

  • Work closely with HR and business stakeholders to understand their access requirements and translate them into appropriate security roles within Workday.
  • Ensure changes follow the appropriate change request approval and documentation process, security group updates are tested thoroughly in sandbox prior to implementing in production.

Security Audits and Compliance

  • Collaborate with internal and external auditors to facilitate security audits, provide necessary documentation, and address any identified security gaps.
  • Lead the response efforts in case of security incidents within the Workday system.
  • Conduct thorough investigations to determine the cause, impact, and extent of security incidents.
  • Conduct risk assessments, identify potential security risks, and propose risk mitigation strategies.

Data Privacy Compliance

  • Proactively identify and address any potential compliance issues related to data access, data retention, and data sharing.
  • Stay up to date with data privacy regulations, industry best practices, and internal policies to ensure Workday security configurations are aligned with legal and regulatory requirements.

Security Enhancements

  • Stay updated with the latest Workday security features and enhancements. Evaluate and implement new security tools, technologies, and processes to enhance the overall security posture of the Workday system.
  • Continuously monitor and assess security controls, identifying areas for improvement and implementing necessary changes.

User Support and Training

  • Provide user support and training on Workday security-related topics. Conduct training sessions and develop educational materials to raise awareness about Workday security and mitigate risks.
  • Assist users with security-related issues, troubleshoot access problems, and provide guidance on security best practices.
  • Maintain up-to-date documentation and knowledge base resources related to security administration.


Sitting for up to 7 hours per day, 3 hours at a time, frequently uses fingers for typing, data entry, etc. Frequent use of hands; uses upper extremities to rarely lift up to 10 pounds. Occasionally stoops, bends or reaches above shoulder level. Hearing as it relates to normal conversation, seeing as it relates to general vision, near vision, peripheral vision, and visual monotony.


Bachelor’s degree in Business, Human Resources, Information Management or other related field and 2+ years of relevant HCMS experience utilizing Workday ERP; or equivalent combination of education and experience.


Advanced knowledge of Workday security and experience configuring domain, user and role-based security and data access policies.
Proficiency in analyzing and documenting complex business requirements and translating them into Workday security configurations.
Experience with security audits, risk assessments, and compliance monitoring.
Experience with software testing methodology and data validation.
Excellent analytical and problem-solving skills, with the ability to identify and address security risks and vulnerabilities.
Strong presentation skills with the ability to provide, in non-technical, end-user-friendly terms, ideas and solutions for system-related recommendations.
Ability to work independently, manage multiple priorities, and meet deadlines in a fast-paced environment.

Please complete your application using your full legal name and current home address.  Be sure to include employment history for the past seven (7) years, including your present employer.  Additionally, you are encouraged to upload a current resume, including all work history, education, and/or certifications and licenses, if applicable.  It is highly recommended that you create a profile at the conclusion of submitting your first application.  Thank you for your interest in St. Luke's!!

St. Luke's University Health Network is an Equal Opportunity Employer.