Senior Manager, Cybersecurity Engineering Cloud and App Security

Job Description

.

Current Employees apply HERE

Current Contingent Workers apply HERE

Secondary Language(s) Job Description:

Senior Manager, Cybersecurity Engineering Cloud and App Security

The Opportunity

• Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare.
• Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products.
• Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats.

Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy.

A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers.

Role Overview

As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards.

What will you do in this role:

• Understand divisional and site business system requirements for CIAM services.
• Must have experience in defining CIAM platform requirements, designing technical solutions and executing on those designs into a highly available, fault tolerant environment.
• Understanding of security best practices, administration and governance of Identity and Access Management the products and services including identify and evaluate security gaps.
• Customize CIAM product features to fulfil requirements that cannot be met with standard out-of-box functionality
• Perform vendor and technology assessments.
• Assist in the application of system lifecycle practices during CIAM design and deployment
• Recommend improvements, corrections, remediation for projects or internal processes.
• Advocate secure computing practices and procedures and communicate Information Security and CIAM best practices throughout the company.
• Maintain active and direct interaction with key stakeholders.
• Working with various technical teams to ensure we maintain high availability and uninterrupted outage of our production environment.
• Demonstrate ability to stay current with all industry trends/best practices, as well as new product releases so that we can maintain a proactive 3-year systems management roadmap.
• Ensure all third-party monitoring solutions that are integrated into the Identity & Access Management products are properly documented and function as designed.
• Assist in the application of system lifecycle practices during CIAM design and deployment.

What should you have:

• Bachelors’ degree in Information Technology, Computer Science or any Technology stream.
• 7+ years of experience with IAM solutions in the area of authentication and authorization (e.g. PingFederate, Ping Access and various multifactor authentication products)
• 3+ years of experience working with PingOne Advance service and DaVinci orchestration tool
• Experience in administration of user and role provisioning, connectors, workflow, certificate management, session management, and encryption technologies
• Strong analytical and problem-solving skills and demonstrable ability to work independently as well as in a team environment
• Well versed in Federation, SAML, OpenID, OAuth and other industry standard authentication / authorization solutions
• Excellent communication skills and interpersonal skills are required.
• A demonstrated track record of making a difference and adding value.
• Strong organizational skills with the ability to multi-task.
• Ability to work and adjust to changing deadlines.
• Excellent interpersonal, written and oral communication skills with the ability to communicate effectively across all levels of an organization.  Able to present technical ideas in business-friendly and user-friendly language
• Proven analytical, evaluative, and problem-solving abilities

Desired Skills & Experience:

• Previous work designing / implementing adaptive risk authentication solutions (e.g. Ping Risk, Azure Identity Protection with Conditional Access Policies, Microsoft Defender for Cloud Applications)
• Hands-on experience with AWS IAM and AWS IAM related services (e.g. AWS Cognito, AWS Identity Center), Passwordless authentication (e.g. FIDO2 at the desktop) or other biometric authentication solutions
• Authentication enhancements to support zero-trust and SASE adoption
• Experience working in a large healthcare environment
• Demonstrated understanding of Identity-related NIST standards (e.g. 800-63-3)
• Prior experience with the Merck enterprise environment and business applications
• Good working knowledge of the ITIL framework
• Working knowledge and understanding of Remedy for Change, Incident and Knowledge Management
• CISSP, Security+ or similar industry certification

Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation.

Who we are:

We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world.

What we look for:

Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today.

#HYDIT2025

Search Firm Representatives Please Read Carefully 
Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company.  No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. 

Employee Status:

Relocation:

VISA Sponsorship:

Travel Requirements:

Flexible Work Arrangements:

Shift:

Valid Driving License:

Hazardous Material(s):

Job Posting End Date:

*A job posting is effective until 11:59:59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date.