Job Description:

SUMMARY:

Zoetis Information Technology Services team is seeking a motivated individual that has a broad information technology background to work within our Identity, Directory & Access Management (IDAM) team. This position will be a hybrid engineering and systems analyst role, with a heavy emphasis on task management and coordinating activities with other teams. This resource will provide support and oversight of the internal IDAM disciplines of Privileged Access Management (PAM) and Conditional Access Management (CAM).

The objective of this role is to improve and expand the methods by which Zoetis secures, controls, manages and monitors access to information resources. Primary focus will be on privileged access to critical resources by system administrators and others with elevated access. Secondary focus will be on providing SSO and controlling access to enterprise application using Microsoft Azure s conditional access framework.

RESPONSIBILITIES:

*

Ensure 24x7 operation of relevant privileged and conditional access platforms
*

Set and enforce guidelines regarding least privilege, just in time access, password rotation, session management/recording, privileged access review, etc.
*

Work directly with technologists and platform owners to integrate with PAM tools
*

Design, implement, administer and troubleshoot conditional access policies based on the Microsoft Azure framework
*

Manage global rollouts, platform architecture, scalability and performance
*

Engage and drive vendor support
*

Ensure compliance with relevant corporate policies and regulation
*

Partner with internal teams and support vendors
*

Manage SLAs

EDUCATION:

*

Bachelor s degree in Computer Science/ Information Systems/Business Administration or related field
*

MS or advanced security/identity courses or other applicable certifications (CISSP, CCSP) desirable

EXPERIENCE:

*

Minimum 5+ years of experience working in the corporate IDAM space
*

Experience implementing or supporting PAM solutions such as Thycotic Secret Server, Thycotic Privilege Manager, Remediant SecureONE, CyberArk, Centrify, BeyondTrust (Bomgar), etc.
*

Expertise in platform security, administration and management of Microsoft Active Directory (especially service accounts) Microsoft Windows (Server and Desktop), Linux/UNIX, various database platforms (SQL Server, Oracle), VMWare, MS Azure, and other operating environments
*

Strong understanding and experience with Microsoft Azure administration, SSO, Conditional Access and Data Synchronization
*

Hands on, coding level experience with technologies including SAML, OAuth, PowerShell, SQL, SOAP, REST, Python, SSH
*

Experience with troubleshooting and debugging tools such as Fiddler, tracert/traceroute, nslookup, SAML-tracer, Fiddler, Wireshark
*

Experience with large scale ITS projects and how the various roles work together to ensure success
*

Experience working in pharmaceutical or other regulated industry
*

Experience with one or more of the following IDAM tools and technologies is also desired: SailPoint IdentityIQ, Quest tools for AD

KNOWLEDGE, SKILLS, ABILITIES:

*

Highly developed communication and interpersonal skills with the ability to influence through personal credibility, integrity and professionalism
*

Excellent written and verbal communication skills
*

Relentless dedication to Customer Excellence
*

Strategic thinking and analytical skills
*

Ability to multitask and work in fast paced environment
*

Ability to foster collaborative decision making
*

Capable of working both independently and as a team member
*

Fluency in English (written and spoken) is a must
*

Excellent interpersonal and leadership skills, with ability to work in a matrix organization, managing multiple stakeholders that includes Business Units, Functional Leaders and their teams

TRAVEL REQUIREMENTS: 5-10%

Full time

Regular

Colleague

Zoetis is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, disability or veteran status or any other protected classification. Disabled individuals are given an equal opportunity to use our online application system. We offer reasonable accommodations as an alternative if requested by an individual with a disability. Please contact Zoetis Colleague Services at zoetiscolleagueservices@zoetis.com to request an accommodation. Zoetis also complies with all applicable national, state and local laws governing nondiscrimination in employment as well as employment eligibility verification requirements of the Immigration and Nationality Act. All applicants must possess or obtain authorization to work in the US for Zoetis. Zoetis retains sole and exclusive discretion to pursue sponsorship for the acquisition or maintenance of nonimmigrant status and employment eligibility, considering factors such as availability of qualified US workers. Individuals requiring sponsorship must disclose this fact. Please note that Zoetis seeks information related to job applications from candidates for jobs in the U.S. solely via the following: (1) our company website at www.Zoetis.com/careers site, or (2) via email to/from addresses using only the Zoetis domain of @zoetis.com . In addition, Zoetis does not use Google Hangout for any recruitment related activities. Any solicitation or request for information related to job applications with Zoetis via any other means and/or utilizing email addresses with any other domain should be disregarded. In addition, Zoetis will never ask candidates to make any type of personal financial investment related to gaining employment with Zoetis..

Apply Now