Cybersecurity Analyst - Zerotrust / MFA / SSO SpecialistRoche
As a pioneer in healthcare, we have been committed to improving lives since the company was founded in 1896 in Basel, Switzerland. Today, Roche creates innovative medicines and diagnostic tests that help millions of patients globally.
Roche fosters diversity, equity and inclusion, representing the communities we serve. We believe that inclusion is key to understanding people’s varied healthcare needs. Together, we embrace individuality and share a passion for exceptional care. Join Roche, where every voice matters.
The Position
As a Cybersecurity Analyst, you would be part of a multicultural and global team focused on Single Sign-On (SSO) / Federation and Multifactor Authentication, protecting our information and assets from unauthorized access, security risks, and cyber attacks.
Purpose:
* To provide customers’ single sign-on experience supporting Federation and Reverse Proxy infrastructure, focusing on SAML and OAuth protocols for Ping Identity.
* To avoid unauthorized access supporting Multi-Factor Authentication for PingID vendor.
* To be responsible for the day-to-day operational support, performance, tactical lifecycle management, and continuous improvement of the respective IT infrastructure.
Qualifications and Experience Required:
* 4-6 years of experience working in a major global organization, preferably in a regulated industry.
* Bachelor’s Degree in computer science, engineering, or related discipline, or recognition of prior working experience equivalent to industry accredited certification.
* Experience with Ping Identity (Access, Federate, Identity), PingID, PingOne as well as Linux, Apache/JBoss (Middleware) systems is desirable.
* Knowledge about standards such as SAML and OAuth is highly appreciated.
Main Responsibilities:
* Provide 2nd and 3rd level support. Operationally manage and support the corresponding SSO, Federation, Reverse Proxy infrastructure, Apache servers and its associated components and applications in a global team based on different regions.
* Promptly respond to customer requests, resolve incidents, and implement changes, ensuring a high level of customer engagement and satisfaction.
* Understand, implement, and follow relevant concepts of ITIL, GxP, and Project Management.
* Actively focus on self-development and create actionable plans to improve.
Identity and Access Management (IAM):
* Understanding of IAM concepts, protocols, and standards (OAuth, SAML, etc.).
* Experience with IAM solutions like Okta, EntraID, Ping Identity, Identity IQ, etc.
Security Protocols and Standards:
* Knowledge of security protocols (OAuth2, SAML, LDAP, etc.).
* Understanding of encryption, digital signatures, and secure token exchange.
Directory Services:
* Proficiency in directory services such as LDAP, Active Directory, etc.
* Experience with user provisioning, synchronization, and management.
Web Technologies:
* Strong understanding of web technologies and protocols (HTTP/HTTPS, RESTful APIs, etc.).
Networking and Infrastructure:
* Familiarity with network architecture, firewalls, load balancers, and DNS.
* Knowledge of Linux systems and middleware (Apache, JBoss).
* Experience managing and troubleshooting 100+ Linux servers.
Security Best Practices:
* Understanding of security best practices and compliance requirements (GDPR, HIPAA, etc.).
* Knowledge of authentication methods including Zerotrust, MFA authentication, and passwordless solutions (e.g., Yubikey).
Soft Skills:
* Ability to troubleshoot complex authentication and authorization issues.
* Effective communication to interact with various teams (developers, stakeholders, users).
* Working collaboratively with cross-functional teams for integration and implementation.
* Readiness to adapt to new technologies, standards, and evolving security threats.
Who We Are
At Roche, more than 100,000 people across 100 countries are pushing back the frontiers of healthcare. Our success is built on innovation, curiosity, and diversity.
#J-18808-Ljbffr