Caring for the world, one person at a time has inspired and united the people of Johnson & Johnson for over 130 years. We embrace research and science -- bringing innovative ideas, products and services to advance the health and well-being of people. At Johnson & Johnson, we believe good health is the foundation of vibrant lives, thriving communities and forward progress. That’s why for more than 130 years, we have aimed to keep people well at every age and every stage of life. Today, as the world’s largest and most broadly-based healthcare company, we are committed to using our reach and size for good. We strive to improve access and affordability, create healthier communities, and put a healthy mind, body and environment within reach of everyone, everywhere. Every day, our more than 130,000 employees across the world are blending heart, science and ingenuity to profoundly change the trajectory of health for humanity. Thriving on a diverse company culture, celebrating the uniqueness of our employees and committed to inclusion. Proud to be an equal opportunity employer.
Johnson & Johnson is expanding its IAM team and seeking an Active Directory/Azure Active Directory Engineer to be part of our Security Engineering team.
Key Responsibilities:
Overall, the candidate is an individual contributor responsible for engineering information security solutions and supporting ongoing management of J&J Directory Services, including multiple Active Directory forests, both on-prem and Azure (Entra) based.
- Provide technical direction and hands on support for internal solutions and application owners using Active Directory/Azure-based services.
- Promote information security, including ensuring processes, procedures, and other activities are defined and implemented to meet the requirements of the J&J Information Asset Protection Policies (IAPPs).
- Ensure required Quality Assurance documentation and IT standard processes are managed per company guidelines
- Coordinate with the Operations Team Management to ensure resource requirements are planned, scheduled, and maintained.
- Provide Level 3 support for Azure AD / Active Directory and related directory applications. Engage vendors for problem resolution purposes and proper engagement of back office support
- Drive continuous improvement of Directory related services, including lifecycle roadmaps, and solutions to increase reliability and resolve service problems
- Design and deploy directory services within a hybrid multi-cloud environment including AAD and AD Domain Controllers within public cloud providers such as Azure, AWS and GCP, and Platform directory deployment (e.g., AWS Directory Service, GCP Cloud IAM)
- Instrument detective and preventative security controls into AD/AAD platforms and integrate with enterprise monitoring solutions and processes.
- Support identity federation applying a combination of AAD native features and third-party tools.
- Design and deploy the directory services elements of a zero-trust computing environment.
Qualifications
Education:
- BS degree or equivalent: Information Technology or Computer Science preferred
Experience and Skills:
Required:
- Minimum 8 years of Enterprise level Information Technology experience.
- Minimum 5 years Enterprise Microsoft Active Directory engineering experience.
- Minimum 2 year Microsoft Azure/Entra ID experience.
- Demonstrated command of standard methodologies for Securing Active Directory (Enterprise Privileged Access Model, MIM/PAM, Bastion Environments, Conditional Access, Identity Management for Azure AD).
- Demonstrated understanding of Microsoft Windows Server OS.
- MS Windows experience (AD, PKI, Security, SCOM, SCCM, WSUS, IAM, InTune)
- Experience with legacy and modern authentication and authorization protocols such as Kerberos, OpenID Connect, OAuth or SAML.
- Strong organizational, verbal and written communication skills.
- Tried analytical and creative problem-solving abilities.
Preferred:
- Security certifications (CISSP, GISP etc.)
- Experience with Microsoft PowerShell to manage AD/AAD environments
- Demonstrated technical leadership, ownership, influencing skills, customer and user-experience focus and relationship management expertise.
- Experience working in multi-factor authentication, single sign-on or passwordless authentication within hybrid environments.
- Experience with identity lifecycle maintenance
Other:
- Flexibility to accommodate global working across different time zones and ability to provide out-of-hours “Level 3 Support” during business-impacting critical incidents
- Up to 5% business travel expected
About Johnson & Johnson
At Johnson & Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in Innovative Medicine and MedTech, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity. Learn more at https://www.jnj.com/.
At Johnson & Johnson, we’re on a mission to change the trajectory of health for humanity. That starts by creating the world’s healthiest workforce. Through cutting-edge programs and policies, we empower the physical, mental, emotional and financial health of our employees and the ones they love. As such, depending on location and subject to local legislation, candidates offered employment may be required to show proof of COVID-19 vaccination or, in certain countries, secure an approved accommodation prior to the commencement of employment to support the well-being of our employees, their families and the communities in which we live and work. If you are invited to interview for the position, your recruiter will advise on the vaccine requirement status in your geographic location.
For more information on how we support the whole health of our employees throughout their wellness, career and life journey, please visit www.careers.jnj.com.
#JNJTech
