IDAM Enablement & Integration Lead

POSITION SUMMARY

Zoetis, Inc. is the world's largest producer of medicine and vaccinations for pets and livestock.

Join us at Zoetis India Capability Center (ZICC) in Hyderabad, where innovation meets excellence. As part of the world's leading animal healthcare company, ZICC is at the forefront of driving transformative advancements and applying technology to solve the most complex problems. Our mission is to ensure sustainable growth and maintain a competitive edge for Zoetis globally by leveraging the exceptional talent in India.

At ZICC, you'll be part of a dynamic team that partners with colleagues worldwide, embodying the true spirit of One Zoetis. Together, we ensure seamless integration and collaboration, fostering an environment where your contributions can make a real impact. Be a part of our journey to pioneer innovation and drive the future of animal healthcare.

The global Identity, Directory & Access Management (IDAM) team defines and enforces policies, executes processes, and enables systems to ensure appropriate access management across Zoetis' digital ecosystem. Key IDAM functions at Zoetis include Identity Governance & Administration (IGA), Directory & Authentication Services, Multi-Factor Authentication (MFA), Public Key Infrastructure (PKI), Customer Identity & Access Management (CIAM), and Privileged Access Management (PAM), among others.

The IDAM Integration & Enablement Lead is responsible for ensuring that Zoetis technology and business partners fully understand and effectively leverage Identity & Access Management (IDAM) services. This role involves assisting ZTD application, business partner, and infrastructure teams in integrating these services, articulating their value, and devising tailored solutions that combine IDAM capabilities into practical implementations. The Lead will guide applications through the integration process while educating stakeholders on methods of service utilization. Additionally, this position plays a critical role in supporting Mergers, Acquisitions, and Divestitures from an Identity and Systems perspective. The role also includes facilitating troubleshooting and triage of IDAM-related issues by engaging the appropriate members of the ZICC or Global teams to ensure effective problem resolution.

POSITION RESPONSIBILITIES
• Collaborate with business stakeholders, developers, security teams, IT operations, and Managed Service Providers (MSPs) to enable successful deployment and adoption of IDAM services.
• Evangelize IDAM services and capabilities across the organization, ensuring stakeholders understand the value these services provide and promoting their effective utilization.
• Conduct regular reviews of all Zoetis applications (internal and customer-facing) to identify opportunities for integration with IDAM services and address gaps in adoption, while serving as a mandatory consultation point for any new application rollouts to ensure proper IDAM integration requirements are assessed and implemented.
• Provide technical and functional leadership across all key IDAM functions, including Identity Governance & Administration (IGA), Directory & Authentication Services, Multi-Factor Authentication (MFA), Public Key Infrastructure (PKI), Customer Identity & Access Management (CIAM), and Privileged Access Management (PAM).
• Serve as a key point of contact and subject matter expert for IDAM programs, offering technical guidance and strategic input for projects and initiatives.
• Assist with the coordination of new integrations and functional rollouts, ensuring smooth transitions and efficient utilization of IDAM services.
• Identify opportunities to enhance IDAM services and introduce new features to support business objectives, build compelling business cases, and drive these initiatives from conception to successful implementation.
• Participate in the development of and ensure adherence to global IDAM policies and processes, promoting secure and efficient access to Zoetis information systems for all users.
• Work with the ZTD ACD (Acquisition, Collaboration, Divestiture) team to create and execute plans for integration, split off, and transitional service agreements (TSAs).
• Additionally, this role will supervise two members of the Customer IDAM team, ensuring they are aligned with organizational goals and delivering high-quality results. 100%

ORGANIZATIONAL RELATIONSHIPS
• Reports to ZICC based IDAM Program Lead, with dotted line to US-based Head of IDAM and IDAM Engineering Lead
• Be part of the global Technology Risk Management organization, which reports to the Chief Information Security Officer (CISO).
• Collaborate regularly with ZTD application, business partner, and infrastructure teams
• Interact with external vendors or partners providing software, services, or APIs that require integration with IDAM systems, including establishing requirements, negotiating contracts, and facilitating technical integration.
• Collaborate with implementation partners responsible for deploying, configuring, or maintaining integrated solutions within Zoetis’ IT landscape.

Supervision
Approximately 2-4 ZICC colleague members of the IDAM team.

EDUCATION AND EXPERIENCE
Education:
• University Degree in Computer Science or Information Systems is required
• MS or advanced security/identity courses or other applicable certifications is desirable, including
o Certified Information Systems Security Professional (CISSP)
o SAP Certified Development Associate – SAP Customer Data Cloud
Experience:
• Minimum 10+ years of experience in Information Systems
• 4+ years of detailed, hands-on experience with IDAM, including authentication and authorization management
• 2+ years of experience in the pharmaceutical or other regulated industry, especially Animal Health.
• Experience working with global teams across multiple time zones.
• Proven experience in managing medium to large-scale, global IT projects.
• Demonstrated ability to work within diverse technical teams.
• Proven experience in leading technical teams and managing end-to-end solution delivery.
• Strong experience collaborating with Managed Service Providers (MSPs), with a focus on ensuring quality and alignment.

TECHNICAL SKILLS REQUIREMENTS

This is a combination functional and technical role. The ideal candidate will be proficient in the majority of the following areas:

• Identity Governance & Administration (IGA): Strong understanding of enterprise IGA tools (e.g., SailPoint IdentityIQ), including identity lifecycle management, access request workflows, and user provisioning/deprovisioning. Ability to explain how these tools integrate with systems such as MS Active Directory, Workday, and SAP and recommend best practices for leveraging them effectively.
• Enterprise & Cloud Directories: Comprehensive knowledge of Microsoft Active Directory (AD) and EntraID (formerly Azure AD), including Conditional Access Policies, Single Sign-On (SSO), and B2B trusts. Must be able to articulate troubleshooting approaches and integration strategies but not necessarily perform them directly.
• Multi-Factor Authentication (MFA) & Public Key Infrastructure (PKI): Solid understanding of MFA solutions (e.g., SafeNet MobilePass) and PKI lifecycle management, including secure key management and certificate authorities. Ability to recommend and explain integration methods for enterprise applications and VPNs.
• Privileged Access Management (PAM): Familiarity with password vault solutions (e.g., Delinea Secret Server) and Just-in-Time Access (JITA) concepts. Must be able to advise on their use and implementation strategies but is not responsible for direct setup or configuration.
• Customer Identity & Access Management (CIAM): Knowledge of CIAM principles, tools like SAP Customer Data Cloud, user registration, and consent management. Ability to recommend solutions for secure customer authentication and explain integration methods, including social login mechanisms and fraud detection tools.
• Data Hygiene: Deep understanding of identity data management best practices, including decommissioning access and ensuring accurate data flows from HR systems. Ability to establish processes and advise on improvements.
• Cloud Platforms & Federation: Familiarity with cloud platforms (AWS, Azure, GCP) and identity federation strategies. Must be able to provide strategic recommendations for leveraging these technologies.
• Communication & Leadership Skills: Ability to articulate technical concepts to non-technical audiences and serve as a trusted advisor to cross-functional teams. Strong leadership and stakeholder engagement skills to guide teams globally.

Must be fluent in both written and spoken English, with the ability to communicate effectively across technical and non-technical audiences.

PHYSICAL POSITION REQUIREMENTS

Availability to work between 1pm IST to 10pm IST hours (minimum 3 hours of daily overlap with US ET Time zone)