Spec, IT
2 months ago
This is where you save and sustain lives
At Baxter, we are deeply connected by our mission. No matter your role at Baxter, your work makes a positive impact on people around the world. You'll feel a sense of purpose throughout the organization, as we know our work improves outcomes for millions of patients.
Baxter's products and therapies are found in almost every hospital worldwide, in clinics and in the home. For over 85 years, we have pioneered significant medical innovations that transform healthcare.
Together, we create a place where we are happy, successful and inspire each other. This is where you can do your best work.
Join us at the intersection of saving and sustaining lives—where your purpose accelerates our mission.
About Us
Nothing changes if nothing changes, which is why Baxter is transforming our global IT function—into one that will strengthen partnerships and enable smarter, more efficient and connected business processes. In the dynamic healthcare industry, we need to be ready to face new challenges and opportunities. As we learn, we must be agile and innovative to reveal new ways of working. Technology and our digital capability will help create a more efficient and innovative ecosystem to enable our employees, customers and products to drive better outcomes for patients worldwide.
We are at the critical intersection where robust IT infrastructure and networking support meets the physicians, nurses and care givers who save and sustain lives. Together, we can build upon Baxter’s rich heritage to advance the next generation of transformative healthcare innovations. Together, we can change how IT meets healthcare. Together, we are Baxter.
This is where technology fuels purpose-driven work. Where your purpose accelerates our mission.
Title: Spec, IT – PAM Centrify Engineer
Location: Bangalore
Your Role
Subject matter expert in the design, development and implementation of identity and access management (IAM) solutions as well as Privileged Access Management (PAM) solutions to support critical systems, products, and business programs. Responsible for information security processes & controls to protect the confidentiality, integrity, and availability of personal and health information, as well as corporate data. Hands-on, active member of the team, helping to drive business and security objectives forward.
What you’ll be doing
Taking the lead on the execution of enterprise-wide identity and access management strategy, design and implementation of authentication, authorization, and administration capabilities of end-user and privileged accounts (admin, service etc.) in products, systems and infrastructure in the enterprise and cloud. Provide subject matter expertise on IAM specific capabilities to help customers design and implement Identity solutions such as but not limited to: Access Management, Governance and Attestation; Privileged Access Management, Multifactor/Single Sign On Leading the automation and implementation (including writing codes & scripts) of account provisioning, access review, sign-on, multi-factor authentication capabilities with identity protocols (SAML 2.0, WS-Federation, OpenID Connect, OAuth, SCIM, API etc.) to support identity federation and robust access control models (RBAC, ABAC). Define, review and onboarding of group/role, access policies (least privilege, step-up MFA with conditions) across multiple platforms, including but not limited to AWS, Delinea (Centrify +Thycotic ), Active Directory etc... Subject matter expert on security design and solution development in various security technologies (IAM, Encryption, SailPoint, Certificate Manager, Security Compliance tool etc.) Experience with AWS Cloud Security, Red Hat Enterprise Linux operating system, AMI, scripting experience - preferably with Python, PowerShell and Perl. Support the access governance and periodic access review & recertification of privileged accounts (admin, service) in management portal, operating systems and databases in AWS, Azure and on-Prem Lead and/or participate in the evaluation and testing of new & emerging (disruptive) security technology (e.g. blockchain) both “on paper” and technical “proof of concept”. Architectural review of the application tools as per the Baxter standards and deployment of the same in Dev, Test and Prod environments. Stay educated on new product technology, tangential team capabilities, and other specific offerings or programs emerging within our company and within the IAM industry Identify areas for continued advancement of strategies aligned with Industry direction, client need, practice scope and present solutions to leadership.What you’ll bring
Bachelor’s degree in Computer Science or higher, and/or equivalent experience. At least 6+ years of relevant technical experience in IT. 3+ years of experience with AWS IAM, KMS & security, identity, & compliance services, and Delinea (Centrify + Thycotic secret server ) or similar COTS tools is preferred. 3+ years of software development and coding experience in any programming languages such as Python, Java, .NET, PowerShell, JSON. Experience with various open source software and development tools. Experience in automating & implementing identity & security solutions for cloud infrastructure (AWS, Azure), SaaS deployment (Office 365, SailPoint, Salesforce, Workday) and on-premise IT landscapes. DevSecOps experience is a plus Knowledge of typical enterprise identity life cycle management processes and standards. Excellent analytical, problem solving, time management and task prioritization skills. Excellent oral and written communication skills including ability to interact effectively with developer community, technical staff, vendors, project stakeholders and senior management. Ability to work independently and cross-functionally supporting various integration and implementation projects. Experience working in large, complex, global environment, healthcare industry and regulatory controls such as HIPAA, GDPR, FDA, GxP, SOX is a plus.PREFERRED QUALIFICATIONS Deployed, managed and supported any enterprise level IAM and PAM application and tools Demonstrated ability to communicate complex technical matters clearly and concisely orally and in writing. Familiar with enterprise IT processes for asset, configuration, change, incident and problem management Demonstrated ability to adapt to new technologies and learn quickly
EEO (
