PAM Operations Expert

Job Description Summary

Sandoz is going through an exciting and transformative period as a global leader and pioneering provider of sustainable Biosimilar and Generic medicines.

Now as an independently listed company, Sandoz aims to increase its strategic focus, operate with greater agility, set clearer business objectives, enhance shareholder returns, and strengthen its culture for us, the Sandoz associates. This is an exciting time in our history, and by creating a new and ambitious path, it will provide a unique opportunity for us all, both professionally and personally. Join us as a Founder of our ‘new’ Sandoz!


As part of the Identity and Access Management Operations team, the Privileged Access Management (PAM) Operations Expert will be responsible for leading and executing Privileged Access Management service operations, continuous improvement and automation of PAM processes and services at Sandoz including CyberArk Privilege Cloud, Alero, CCP, SIA/DPA and Centrify

 

Job Description

Your Key Responsibilities:

Your responsibilities include, but not limited to:

• Grow the maturity of the Privileged Access Management operations team and achieving a high-quality service delivery:
  • Define, implement and maintain a target operating model including people, processes and technologies across Privileged Access Management
  • Propose process improvements across PAM area and Build and grow the PAM Operations team by helping to hire and arrange training for new and current resources. Escalation handling for Access Control management and Ensure to follow SLAs and KPIs defined for IAM Operations
  • CyberArk/Centrify migration, creation of CyberArk safes and Create and update the documentation. Verification and pre/post activities related to Vulnerability Management. Provide feedback and improvement areas in PAM to engineering, architecture and product owner teams and other external stakeholders within Sandoz
  • Drive and design integration with various applications (consumers of PAM services). Coordinate the PAM operations globally at tactical level with internal and external stakeholders. Administer and maintain PAM infrastructure

• Responsible for monitoring of systems performance and ensure high availability. Implement and manage account on-boarding as per incoming requests within SLA. Configuring and overseeing Delinea Server Suite (Centrify)
• Ensuring system security. Manage user accounts, groups permissions, access controls. Implement compliant guidelines and procedures along with required troubleshooting. Resolve issues related to PAM services. Perform regular backup and recovery operations. Provide expertise and guidance on the analysis of the PAM incidents and identification of resolutions along with the root cause analysis.
• Act as an escalation point for major incidents and guide PAM operation resources in resolving open incidents and request items. Manage and distribute the workload for the PAM operations team which supports CyberArk services and solutions globally. Support audits as required, including preparation, evidence gathering and follow-up actions. Clearly and confidently communicate technical concepts and risks to decision-makers across the organization

What you’ll bring to the role:

Essential Requirements:

• At least 10 years of experience in first/second/third level support teams for Privileged Access Management services
• At least 7 years of experience in managing of PAM solutions (Centrify, OKTA, HashiCorp) as operations or admin role
• At least 2 years of experience in working as coordinator or team lead in highly regulated environment (i.e. pharma, banking, automotive)
• Hands on experience and practical knowledge of CyberArk solutions
• Strong understanding of identity and privileged access management principles, including credential autorotation, check-out/check-in, sessions management, service account management, CCP, DPA and multi-factor authentication.
• Proven experience with configuration of PAM and secret management use cases
• Experience with Delinea Server Suite (Centrify)
• Practical knowledge of Microsoft Windows Server environments
• Knowledge and awareness of various IAM technologies and vendors as Sailpoint, Microsoft Active Directory/Azure/EntraID, and PKI
• Knowledge in programming, scripting, operating systems, databases, network protocols
• Proven experience in CyberArk installation, configuration and management within both IT and OT environments
• Excellent negotiation, communication, and interpersonal skills ability to develop influential relationships with different stakeholders across all levels
• Experienced people leader with the ability to lead and develop teams across geographies, internal employees as well as external staff
• An entrepreneurial mindset driven by curiosity, continuous improvement, and interest in technical advancements and PAM trends
• Strong troubleshooting and problem-solving skills
• Excellent communication and interpersonal skills
• Strong project management skills with the ability to multitask and properly delegate work
• Fluent in written and spoken English

Desirable Requirements:

• University degree or equivalent experience in computer science, engineering, cyber security or information technology
• Experience in the Life Sciences industry is considered a plus
• Certification or practical knowledge of ITIL
• Certifications such as CyberArk Sentry, Defender, Guardian or Microsoft Certified: Active Directory Solutions Expert, Microsoft Certified: Identity and Access Administrator Associate, CISP or equivalent certifications are a plus.

Why Sandoz?

Generic and Biosimilar medicines are the backbone of the global medicines industry. Sandoz, a leader in this sector, touched the lives of almost 500 million patients last year and while we are proud of this achievement, we have an ambition to do more!

With investments in new development capabilities, state-of-the-art production sites, new acquisitions, and partnerships, we have the opportunity to shape the future of Sandoz and help more patients gain access to low-cost, high-quality medicines, sustainably.

Our momentum and entrepreneurial spirit is powered by an open, collaborative culture driven by our talented and ambitious colleagues, who, in return for applying their skills experience an agile and collegiate environment with impactful, flexible-hybrid careers, where diversity is welcomed and where personal growth is encouraged! 

The future is ours to shape!

Commitment to Diversity & Inclusion:

We are committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.

 

Skills Desired

Communication, Cyber-Security Regulation, Cyber Threat Hunting, Cyber Threat Intelligence (Cti), Cyber Threat Management, Cyber Vulnerabilities, Decision Making Skills, Influencing Skills, Information Security Risk Management