J&J Family of Companies Engineering Manager, Active Directory/Azure Active Directory in Raritan, New Jersey
Johnson & Johnson is embarking on a major strategic transformation of their Identity and Access Management landscape including the adoption of enterprise tools and the establishment of an expert services discipline over the next 3 years. Johnson & Johnson is seeking an Engineering Manager, Active Directory/Azure Active Directory to be part of our ISRM (Information Security and Risk Management) team and to be located in Raritan, NJ. Considerations will be given to remote work and candidates near JNJ sites.
Caring for the world, one person at a time has inspired and united the people of Johnson & Johnson for over 130 years. We embrace research and science -- bringing innovative ideas, products and services to advance the health and well-being of people. At Johnson & Johnson, we believe good health is the foundation of vibrant lives, thriving communities and forward progress. That’s why for more than 130 years, we have aimed to keep people well at every age and every stage of life. Today, as the world’s largest and most broadly-based healthcare company, we are committed to using our reach and size for good. We strive to improve access and affordability, create healthier communities, and put a healthy mind, body and environment within reach of everyone, everywhere. Every day, our more than 130,000 employees across the world are blending heart, science and ingenuity to profoundly change the trajectory of health for humanity. Thriving on a diverse company culture, celebrating the uniqueness of our employees and committed to inclusion. Proud to be an equal opportunity employer.
You will hold a number of the following responsibilities:
•Provide engineering support for a complex global Active Directory (AD) and Azure Active Directory (AAD) environment •Support a multi-forest and multi-domain AD deployment oContribute to consolidation/expansion and transformation to cloud-first directory services •Design and deploy directory services within a hybrid multi-cloud environment including: oAzure Active Directory. oInfrastructure directory deployment (Domain Controllers) within public cloud providers such as Azure, AWS and GCP. oPlatform directory deployment (e.g., AWS Directory Service, GCP Cloud IAM) within public cloud providers. •Support Microsoft identity synchronization technologies (e.g. AAD Connect) •Instrument detective and preventative security controls into AD/AAD platforms and integrate with enterprise monitoring solutions and processes. •Support tooling that enables security incident response and recovery also including system backup and recovery. •Support the design and/or deployment of enterprise class privileged identity/access management, secrets management and key management on premises and in the Cloud. •Consult on the consumption of directory services capabilities by infrastructure and line of business applications e.g. network protocol usage, directory query efficiency, authentication types. •Support identity federation for both internal and external use cases utilizing a combination of AAD native features and third-party tools. •Design and deploy the directory services elements of a zero-trust computing environment. •Partner with other information security and information technology teams to deliver consistent and secure identity and access management services. •Support the transformation of the Identity and Access Management landscape. •Support the integration between Microsoft Office 365 and AAD e.g. Conditional Access, AAD Applications etc.
Required Qualifications and Experience •BS degree or equivalent: Information Technology or Computer Science preferred •Minimum 8 years of Enterprise level Information Technology experience. •Minimum 5 years Enterprise Microsoft Active Directory engineering experience. •Minimum 1 year Microsoft Azure Active Directory experience. •Understanding of best practices for Securing Active Directory. •Understanding of Azure Identity Management Security best practices. •Strong experience with Microsoft PowerShell to manage AD/AAD environments. •Strong knowledge of Microsoft Windows Server 2019. •Broad MS Windows experience (AD, PKI, Security, SCOM, SCCM, WSUS, IAM) •Experience with legacy and modern authentication and authorization protocols such as NTLM, Kerberos, OpenID Connect, OAuth or SAML. •Strong organizational, verbal and written communication skills. •Proven analytical and creative problem-solving abilities. •Demonstrated technical leadership, ownership, influencing skills, customer and user-experience focus and relationship management expertise.
Preferred Qualifications and Experience •Microsoft certifications (Windows, AD, AAD, Azure or AWS) •Security certifications (CISSP, GISP etc.) •Experience managing multi-factor authentication, single sign-on or passwordless authentication within hybrid environments. •Experience with identity lifecycle maintenance solutions such as One Identity Manager or access management solutions such as Ping Identity. •Experience with or good understanding of zero-trust infrastructure solutions. •Master’s Degree: Information Technology or Computer Science preferred.
Other •Flexibility to accommodate global working across different time zones and to provide out-of-hours advanced “Level 3 Support” during business-impacting critical incidents
Up to 5% domestic business travel expected Johnson & Johnson is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
United States-New Jersey-Raritan-1003 US HIghway 202
North America-United States
Johnson & Johnson (6067)
J&J Family of Companies
- J&J Family of Companies Jobs