Pam Operations Expert

**Your Key Responsibilities**:
Your responsibilities include, but not limited to:

- Grow the maturity of the Privileged Access Management operations team and achieving a high-quality service delivery:

- Define, implement and maintain a target operating model including people, processes and technologies across Privileged Access Management
- Propose process improvements across PAM area and Build and grow the PAM Operations team by helping to hire and arrange training for new and current resources. Escalation handling for Access Control management and Ensure to follow SLAs and KPIs defined for IAM Operations
- CyberArk/Centrify migration, creation of CyberArk safes and Create and update the documentation. Verification and pre/post activities related to Vulnerability Management. Provide feedback and improvement areas in PAM to engineering, architecture and product owner teams and other external stakeholders within Sandoz
- Responsible for monitoring of systems performance and ensure high availability. Implement and manage account on-boarding as per incoming requests within SLA. Configuring and overseeing Delinea Server Suite (Centrify)
- Ensuring system security. Manage user accounts, groups permissions, access controls. Implement compliant guidelines and procedures along with required troubleshooting. Resolve issues related to PAM services. Perform regular backup and recovery operations. Provide expertise and guidance on the analysis of the PAM incidents and identification of resolutions along with the root cause analysis.
- Act as an escalation point for major incidents and guide PAM operation resources in resolving open incidents and request items. Manage and distribute the workload for the PAM operations team which supports CyberArk services and solutions globally. Support audits as required, including preparation, evidence gathering and follow-up actions. Clearly and confidently communicate technical concepts and risks to decision-makers across the organization

**What you’ll bring to the role**:
Essential Requirements:

- At least 10 years of experience in first/second/third level support teams for Privileged Access Management services
- At least 7 years of experience in managing of PAM solutions (Centrify, OKTA, HashiCorp) as operations or admin role
- At least 2 years of experience in working as coordinator or team lead in highly regulated environment (i.e. pharma, banking, automotive)
- Hands on experience and practical knowledge of CyberArk solutions
- Strong understanding of identity and privileged access management principles, including credential autorotation, check-out/check-in, sessions management, service account management, CCP, DPA and multi-factor authentication.
- Proven experience with configuration of PAM and secret management use cases
- Experience with Delinea Server Suite (Centrify)
- Practical knowledge of Microsoft Windows Server environments
- Knowledge and awareness of various IAM technologies and vendors as Sailpoint, Microsoft Active Directory/Azure/EntraID, and PKI
- Knowledge in programming, scripting, operating systems, databases, network protocols
- Proven experience in CyberArk installation, configuration and management within both IT and OT environments
- Excellent negotiation, communication, and interpersonal skills ability to develop influential relationships with different stakeholders across all levels
- Experienced people leader with the ability to lead and develop teams across geographies, internal employees as well as external staff
- An entrepreneurial mindset driven by curiosity, continuous improvement, and interest in technical advancements and PAM trends
- Strong troubleshooting and problem-solving skills
- Excellent communication and interpersonal skills
- Strong project management skills with the ability to multitask and properly delegate work
- Fluent in written and spoken English

Desirable Requirements:

- University degree or equivalent experience in computer science, engineering, cyber security or information technology
- Experience in the Life Sciences industry is considered a plus
- Certification or practical knowledge of ITIL
- Certifications such as CyberArk Sentry, Defender, Guardian or Microsoft Certified: Active Directory Solutions Expert, Microsoft Certified: Identity and Access Administrator Associate, CISP or equivalent certifications are a plus.

**Why Sandoz?**:
Generic and Biosimilar medicines are the backbone of the global medicines industry. Sandoz, a leader in this sector, touched the lives of almost 500 million patients last year and while we are proud of this achievement, we have an ambition to do more

With investments in new development capabilities, state-of-the-art production sites, new acquisitions, and partnerships, we have the opportunity to shape the future of Sandoz and help more patients gain access to low-cost, high-quality medicines, sustainably.

The future is ours to shape

**Commitment to Diversity & Inclusion**:
We are