Manager Information Security

Lets do this. Lets change the world. In this vital role you will be responsible for the oversight and hands-on leadership of the Access and Privileged Access Management (PAM) team within Digital Identity Access Services (DIAS) organization. This role involves developing, implementing, maintaining, and updating IAM strategies, policies and procedures to ensure the security and integrity of our systems and data. The ideal candidate will have extensive experience in Okta, Microsoft Entra and PAM technologies like CyberArk, SSO, MFA, Password Vaulting and Privileged Account Management. Candidate should have a deep understanding of security standard processes, and the ability to lead a team in a dynamic, global environment.

• Develop and maintain the Access and PAM standards and architecture, ensuring that it meets industry standards.
• Assess and select IAM technologies and tools that align with Amgens IAM strategy.
• Lead the information security team, providing guidance, support, and mentoring to ensure the effectiveness of security operations.
• Develop and implement the IAM (Identity Access Management) strategy aligned with the organization's information security goals and regulatory requirements.
• Lead the design, implementation, and management of IAM solutions, including governance, access management, and privileged access management.
• Create, implement, and maintain IAM policies, standards, and procedures to manage user identities and access rights.
• Design and enforce access control mechanisms, including role-based access control (RBAC), to safeguard sensitive information.
• Manage IAM-related security incidents and vulnerabilities, coordinating with IT security teams to mitigate risks.
• Stay ahead of with industry trends, emerging threats, and standard processes in IAM.
• Collaborate with IT and security teams to integrate IAM solutions with other security and business systems.
• Develop and maintain key performance indicators (KPIs) to track service metrics and generate regular reports for management.
• Evaluate and implement IAM tools and technologies to enhance security and streamline processes.
• Participate in vendor proposals, contract negotiations/renewals.
• This role on occasion might have responsibilities outside of business hours.
• Travel: International and/or domestic travel up to 10% may be important.

Basic Qualifications and Experience:

• Masters degree with 4 years of experience related field OR
• Bachelors degree with 6 of experience in related field OR
• Diploma with 8 years of experience.

• Strong knowledge of Privileged Access Management, Session Management and Vaulting technologies.
• Working knowledge of Web Access Management and SSO technologies (Okta, Azure, Ping Federate, SAML, OAuth, and OpenID/Connect).
• Experience and background of B2B concepts and architecture, application and reverse proxies, SSO, and multi-factor authentication.
• Familiarity with security standards and regulations (e.g., NIST, ISO 27001).
• Experience with Authentication, Provisioning/Deprovisioning, Role Management, Session Management and Privileged Account Management.
• Experience in driving transformation initiatives using Scaled Agile methodology.
• Excellent verbal and written communication skills for technical and non-technical audiences of various levels in the organization.

• Work experience in the biotechnology or pharmaceutical industry.
• Degree in Computer Science, Information Systems, or Engineering.
• Familiarity with GxP standards, Information Security standards and policies like ISO 27001/27002, NIST and others.
• Strong problem-solving and analytical skills.
• Demonstrated ability to work effectively in a fast-paced, dynamic environment.
• Understanding of ITIL processes and implementation.
• Proficiency in scripting and automation (e.g., Python, Bash) is a plus

• CompTIA Security+ (preferred)
• Cloud Identity or Security Certification (preferred)
• Okta Certification (preferred)
• CyberArk Certification (preferred)

• Excellent analytical and troubleshooting skills.
• Strong verbal and written communication skills.
• Ability to work effectively with global, virtual teams.
• High degree of initiative and self-motivation.
• Ability to manage multiple priorities successfully.
• Team oriented, with a focus on achieving team goals.
• Strong presentation and public speaking skills.