Sr. Engineer, Identity & Access Management

Location
Naples, FL, US
Posted
Apr 01, 2021
Ref
728920800
Required Education
Other
Position Type
Full time
Those who join Emergent BioSolutions feel a sense of ownership about their future. You will excel in an environment characterized by respect, innovation and growth opportunities. Here, you will join passionate professionals who advance their scientific, technical and professional skills to develop products designed-to protect life.

I. JOB SUMMARY

The Sr. Engineer, Identity and Access Management, reporting to the Director, IT Security is a hands-on position. As a member of the Global Information Security, Risk and Compliance organization, the Sr. Engineer, Identity and Access Management is responsible for design, implementation, and maintenance of controls and procedures to ensure the confidentiality, integrity, and availability of user identities and accounts for all computer-based systems and networks across all technical platforms. The Sr. Engineer, Identity and Access Management will work closely with other IT groups in ensuring the security administration and protection of information assets including data, systems, databases, networks, and other resources.

This can be a remote / virtual position.

II. ESSENTIAL FUNCTIONS

The essential job functions and primary responsibilities of the Sr. Engineer, Identity and Access Management will include, but are not limited to the following:
  • Develop and maintain Identity Management (IdM) engineering solutions, processes and controls.
  • Develop and maintain Privileged Access Management (PAM), Multi Factor Authentication (MFA), and Public Key Infrastructure (PKI) engineering solutions, processes and controls.
  • Integration of Production Support and Service Accounts onboarding into the Emergent BioSolutions PAM system.
  • Integration and management of MFA for Remote Users, Guest Users, Production Support Users, etc.
  • Integration and management of PKI systems and processes.
  • Ensure User Access Reviews per Governance, Risk, and Compliance requirements.
  • Document and maintain PAM, MFA, and PKI architecture, policies, standards, processes, controls and workflows.
  • Integration of employee, consultant, and external business partner user onboarding into the Emergent BioSolutions IdM system.
  • Birthright, RBAC, ABAC, and PBAC entitlements and authorization of users to Emergent BioSolutions business systems and resources.
  • Develop single and multi-step approval workflows for onboarding and authorizations.
  • Implement Self-Service IdM portal with end-to-end Provisioning Automation.
  • Integrate Attestation and User Access Review (UAR) technology to ensure a compliant and auditable access environment.
  • Collaborate with project, technology and business application owners for the integration of applications and users into the Emergent BioSolutions IdM system.
  • Ensure UARs per Governance, Risk, and Compliance requirements.
  • Document and maintain IdM architecture, policies, standards, processes, controls and workflows.
  • Develop, monitor and report on SLA's, KPI's and metrics.
  • Evaluate and test emerging Identity Management technologies.


III. MINIMUM EDUCATION, EXPERIENCE, SKILLS

Education:
  • Minimal formal education requires a Bachelor's degree in Computer Science or a related discipline.
  • CISSP, CISA, GIAC or comparable certifications


Experience:
  • Five to ten years of knowledge and hands-on experience in the security Identity and Access Management field.
  • Experience with Attestation/User Access Review (UAR) integration with Identity Management.
  • Hands-on experience and strong understanding of Active Directory, Azure Active Directory and O365.
  • Experience with API and Web service/REST connected systems.
  • Experience with using biometrics for authentication and managing related privacy considerations.
  • PowerShell Scripting experience


Knowledge:
  • Demonstrable knowledge of current technologies in authentication, federation, and identity management space, such as OAuth 2.0, OpenID Connect, SAML, SCIM, U2F/UAF/FIDO2, HOTP, TOTP.
  • Strong understanding of Risk Based Access using Conditional Access, Continuous Authentication, and Inspection, Monitoring, and Logging authentication controls.
  • Demonstrated knowledge and hands-on experience with MFA, PAM, and PKI solutions in an enterprise setting.
  • Strong understanding and experience with Cloud and Federation implementations of Identity Management.
  • Strong understanding and demonstratable knowledge of Passwordless authentication.
  • Familiarity with using biometrics for authentication and managing related privacy considerations.
  • Strong understanding and demonstratable knowledge of Just-In-Time (JIT) and Just- Enough Access (JEA) authentication.
  • Demonstrable knowledge of Kerberos, NTLM, and LDAP.
  • Strong understanding of NW device, database, Unix/Linux authentication and identity management.
  • Familiarity with relevant identity standards, such as NIST800-63 and GDPR.
  • Familiarity with RPA and IOT identities and accounts.
  • Familiarity with relevant identity standards, such as NIST800-63 and GDPR.
  • Technical knowledge in security engineering, authentication and federation protocols, cryptography, and application security.
  • An understanding of information security threat modeling, design and architecture reviews, and risk analysis.
  • Knowledge of system security vulnerabilities and remediation techniques.


Skills:
  • Excellent written and verbal communication skills.
  • Excellent teamwork and collaboration skills.

There are physical/mental demands and work environment characteristics that must be met by an individual to successfully perform the essential functions of the job. This information is available upon request from the candidate.

Reasonable accommodations may be made to enable individuals with disabilities to perform all essential functions.

Emergent BioSolutions is an Equal Opportunity/Affirmative Action Employer and values the diversity of our workforce. Emergent does not discriminate on the basis of race, color, creed, religion, sex or gender (including pregnancy, childbirth, and related medical conditions), gender identity or gender expression (including transgender status), sexual orientation, age, national origin, ancestry, citizenship status, marital status, physical or mental disability, military service or veteran status, genetic information or any other characteristics protected by applicable federal, state or local law.

Information submitted will be used by Emergent BioSolutions for activities related to your prospective employment. Emergent BioSolutions respects your privacy and any use of the information submitted will be subject to the terms of our Privacy Policy .

Emergent BioSolutions does not accept non-solicited resumes or candidate submittals from search/recruiting agencies not already on Emergent BioSolutions' approved agency list. Unsolicited resumes or candidate information submitted to Emergent BioSolutions by search/recruiting agencies not already on Emergent BioSolutions' approved agency list shall become the property of Emergent BioSolutions and if the candidate is subsequently hired by Emergent BioSolutions, Emergent BioSolutions shall not owe any fee to the submitting agency.

.buttontextd24067979861e38d a{ border: 1px solid transparent; } .buttontextd24067979861e38d a:focus{ border: 1px dashed #c11d4b !important; outline: none !important; }