Jan 18, 2019

Infrastructure Mangmnt Sr Analyst

  • Merck
  • West Point, PA, US
Biotech

Job Description

Requisition ID: COM000792

Merck & Co., Inc. Kenilworth, N.J., U.S.A. known as Merck in the United States and Canada, is a global health care leader with a diversified portfolio of prescription medicines, vaccines and animal health products. The difference between potential and achievement lies in the spark that fuels innovation and inventiveness; this is the space where Merck has codified its legacy for over a century. Merck’s success is backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. As a business facing member of the Identity and Access Management (IAM) organization, this role is instrumental for ensuring IAM solutions meet business requirements, goals and objectives, in accordance with Merck’s strategy, architecture, security standards and guidelines. This role will work closely with the IAM engineering and operations teams in the development, design, management and application of Merck's IAM services, with a focus on single sign-on (SSO), federation and mobile device access management capabilities. This role will be familiar with the complete range of IAM technologies including Directory Services, Provisioning, Identity Access Governance, Privilege Account Management, Federation, Authentication, Authorization, and Access Management. The individual in this role must stay current with both internal and external IAM best practices and strategies.

Primary Activities include, but are not limited to:

  • Gather and understand business requirements for IAM services. Maintain active and direct interaction with IT and business customers.
  • Contribute to the IAM services road map and strategy
  • Perform Vendor / Technology assessments for IAM solutions
  • Assist in the design and implementation of SSO, federation, and authentication services
  • Provide IAM subject matter expertise on IT and business projects requiring IAM solutions in reference to, but not limited to, SSO, federation to externally hosted applications and services, and mobile device application access management.
  • Participate on cross-functional Information Security project teams, designing and developing secure identity services in areas such as certificate-based, token-based and multi-factor authentication.
  • Identify security risks, suggest mitigation techniques or controls, and engage the risk management team to provide risk guidance through all parts of the project/product life cycle.



Qualifications

Education <?xml:namespace prefix = "o" />

4 Year College/University Degree

Required Experience and Skills:

Min 3 – 5 years of relevant experience supporting enterprise IAM and federation platforms.

Working knowledge of web and security protocols/standards.

Familiar with Multi-Factor Authentication solutions and standardsKnowledge of mobile application authentication solutions and standards

Understanding of cloud-based services

Familiar with Application Program Interfaces (APIs) and their use in web and mobile applications, particularly around provisioning and authentication

Working knowledge of SDLC, Risk Assessments and Privacy principles

Ability to articulate when specific protocols would be best leveraged, and how to apply them to meet business objectives and outcomesCommunication and writing skills: Ability to translate technical issues and terms to language that is readily understood by the business and other non-technical audiences

Preferred Skills:

Experience working in information security or cybersecurity

Security certifications such as, SANS, Security+, CISSP

Exp with Tools - Ping Access, Ping Federate, Microsoft ADFS, Oracle Identity Federation, CA Siteminder and ForgeRock.

Working knowledge of Microsoft Active Directory and LDAP

Security Tools a plus - SOAP/XLM, REST/JSON, SAML, OAuth, OpenID, OIDC, LDAP, Kerberos and SCIM

Exp with Cloud base software a plus -  Software-as-a-Service, Platform-as-a-Service, Infrastructure-as-a-Service and Identity-as-a-Service (SaaS, PaaS, IaaS & IDaaS)

Demonstrate leadership in achieving shared objectives

Self driven, able to work with a team, detail orientedYour role at Merck is integral to helping the world meet new breakthroughs that affect generations to come, and we’re counting on your skills and inventiveness to help make meaningful contributions to global medical advancement. At Merck, we’re inventing for life. 
If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to staffingaadar@merck.com.   Search Firm Representatives Please Read Carefully:  Merck & Co., Inc. is not accepting unsolicited assistance from search firms for this employment opportunity.  Please, no phone calls or emails.  All resumes submitted by search firms to any employee at Merck via email, the Internet or in any form and/or method without a valid written search agreement in place for this position will be deemed the sole property of Merck.  No fee will be paid in the event the candidate is hired by Merck as a result of the referral or through other means. Visa sponsorship is not available for this position.  For more information about personal rights under Equal Employment Opportunity, visit:              EEOC Poster             EEOC GINA Supplement            OFCCP EEO Supplement Merck is an equal opportunity employer, Minority/Female/Disability/Veteran – proudly embracing diversity in all of it’s manifestations.

Job: Compliance & Risk Management
Other Locations: Branchburg, NJ, US
Employee Status: Regular
Travel:
Number of Openings: 1
Shift (if applicable):
Hazardous Materials: No
Company Trade Name: Merck

Apply Now