Canada onlyThe Position
About Roche Informatics
In Roche Informatics, we build on Roche's 125-year history as one of the world's largest biotech companies, globally recognized for providing transformative innovative solutions across major disease areas. We combine human capabilities with cutting-edge technological innovations to do now what our patients need next. Our commitment to our patients' needs motivates us to deliver technology that evolves the practice of medicine.
Be part of our inclusive team at Roche Informatics, where we're driven by a shared passion for technological novelties and optimal IT solutions.
About the Job
As an Identity and Access Management - Single Sign On Specialist, you would be part of a multicultural and global team focused on Single Sign On (SSO) / Federation and Multifactor authentication, protecting ourinformation and assets from unauthorized access, security risks and cyber attacks.
Purpose
a) To provide customers’ single sign-on experience supporting Federation and Reverse Proxy
infrastructure, focus on SAML and OAuth protocols for Ping Identity
b) To avoid unauthorized access supporting MultiFactor authentication for PindID vendor
c) To be responsible for the day to day operational support, performance, tactical lifecycle
management and continuous improvement of the respective IT infrastructure.
Qualifications and experience required
a) 4-6 years of experience working in a major global organization, preferably in a
regulated industry.
b) Bachelor’s Degree in computer science, engineering or related discipline or
recognition of prior working experience, which is equivalent to industry accredited certification.
c) Experience with Ping Identity (Access, Federate, Identity), PingID, PingOne as well as Linux, Apache/Jboss (Middleware) systems would be also desirable.
d) Knowledge about standards as SAML and OAuth is highly appreciated.
Main Responsibilities
a) Provide 2nd and 3rd level support. Operationally manage and support the
corresponding SSO, Federation, Reverse Proxy infrastructure, Apache servers and its associated components and applications in a global team based on different regions.
b) Promptly respond to customer requests, resolve incidents and implement changes, ensuring a high level of customer engagement and satisfaction.
c) Understand, implement and follow relevant concepts of ITIL, GxP and Project
Management. These include Request Management, Incident Management, Change Management, Problem Management, Document Management, Qualification and Validation and Project Management.
d) Actively focus on self-development and create actionable plans to improve.
Job skills required
Identity and Access Management (IAM):
Understanding of IAM concepts, protocols, and standards (OAuth, OpenID
Connect, SAML, etc.)
Experience with IAM solutions like Okta, Auth0, Azure AD, Ping Identity, etc.
Security Protocols and Standards:
Knowledge of security protocols (OAuth2, OpenID Connect, SAML, LDAP, etc.).
Understanding of encryption, digital signatures, and secure token exchange.
Directory Services:
Proficiency in directory services such as LDAP, Active Directory, etc.
Experience with user provisioning, synchronization, and management.
Web Technologies:
Strong understanding of web technologies and protocols (HTTP/HTTPS,
RESTful APIs, etc.).
Knowledge of frontend frameworks (React, Angular, etc.) for integration
purposes.
Networking and Infrastructure:
Familiarity with network architecture, firewalls, load balancers, and DNS.
Knowledge of cloud platforms (AWS, Azure, GCP) and their identity services.
Security Best Practices:
Understanding of security best practices and compliance requirements (GDPR,
HIPAA, etc.).
Knowledge of authentication factors (biometrics, OTPs, etc.) and their
implementations.
Soft Skills:
Problem-Solving and Analytical Skills:
Ability to troubleshoot complex authentication and authorization issues.
Analytical skills to assess security risks and devise solutions.
Communication Skills:
Effective communication to interact with various teams (developers,
stakeholders, users).
Ability to articulate technical concepts to non-technical stakeholders.
Teamwork and Collaboration:
Working collaboratively with cross-functional teams for integration and
implementation.
Willingness to share knowledge and learn from others.
Adaptability and Learning:
Readiness to adapt to new technologies, standards, and evolving security
threats.
Continuous learning to stay updated with industry trends.
Who we are
At Roche, more than 100,000 people across 100 countries are pushing back the frontiers of healthcare. Working together, we’ve become one of the world’s leading research-focused healthcare groups. Our success is built on innovation, curiosity and diversity.
Roche Pharma Canada has its office in Mississauga, Ontario and employs over 850 employees. The Mississauga facility is bright, vibrant, fosters collaboration and teamwork, and is reflective of Roche's truly innovative culture.
As of January 4, 2022, Roche requires all new employees who work in Canada to be fully vaccinated against COVID-19 on the date they take office. This requirement is a condition of employment at Roche that applies regardless of whether the position is on a Roche campus or remotely. If you have a valid reason for not being fully immunized, which is limited to certain specific medical reasons or other valid reasons protected by applicable human rights laws, you may request an exemption and / or adaptation measures regarding this vaccination requirement.
Hungary only
