Job Description

Bausch + Lomb Corporation, (NYSE/TSX: BLCO), is solely dedicated to protecting and enhancing the gift of sight for millions of people around the world from the moment of birth through every phase of life. Our mission is simple yet powerful: Helping you see better to live better.

The company is one of the best-known and most respected healthcare brands in the world, offering the widest and finest range of eye health products including contact lenses and lens care products, pharmaceuticals, intraocular lenses, and other eye surgery products.

Our highest priority is the well-being of the people we serve. By listening to our customers and patients, by constantly honing our innovation edge, by executing with integrity and excellence, we strive to earn the trust of our partners and stakeholders.

Over the last 167 years, Bausch + Lomb has become a global hallmark for innovation and quality. Our talented and motivated colleagues work relentlessly to invent new materials, engineer new technologies, and ultimately bring new innovations to help people see better to live better.

IAM Operational Lead

The primary function of the Identity and Access Management Operational Lead is to implement and support platforms, processes, procedures and associated technologies relating to privileged identity and access. Key to this is the ongoing management of critical systems pertaining to privileged access management (PAM) and IDAM administration. The role focuses on a multitude of identity and access management aspects of IT information security and serves as a lead for managing fundamental aspects of access control tools and identity management processes and technologies.

Responsibilities

Serve as a pioneer for Identity and Access Management in facilitating the implementation of new technologies and strategic IAM goals.

Responsible for overseeing all operational tasks required to development and continual management of PAM related technologies and system improvements.

Accountable for overseeing the identification and remediation of legacy escalated or misaligned permissions related to Identity and Access Management, including managing the coordination of Identify Access Management reviews and the periodic recertification of access.

Provide invaluable technical oversight and support to the wider IT Security team, including Cyber Security Operations Center, with regards to IT security investigations, incident response and blue team defensive exercises.

Responsible for delivering identity related projects, working with project management teams to deliver the incremental improvements required to maintain a strong security posture.

Responsible for developing processes, policies, tools, and solutions to increase the operational efficiency and effectiveness of identity, accounts, authentication, and access management with a focus on excellent user journeys or experiences.

The IAM Technical Analyst will be responsible for understanding, following, and implementing Enterprise Access standards, baseline, security procedures, and policies.

Utilizes technical and environmental knowledge to support secure, risk-based practices, exercising judgment within broadly defined security practices and policies.

Designs, develops, tests, implements, and integrates Identity and Access Management (IAM) systems and solutions. Ensures that solutions protect information resources against unauthorized use, inappropriate degrees of access, disclosure, damage and/or loss. Leverages problem solving and data analysis skills to ensure projects deliver on time.

Facilitate the continuous adoption, training, communication, and education of IAM capabilities, functions, and standards

Qualifications

Bachelor\'s degree in Information Systems, Computer Science or Equivalent work experience required

5 or more years of experience in the Information Security field

Experience implementing and supporting IAM technologies including PAM solutions, such as CyberArk in a large, complex global environment.

5 years minimum working knowledge of Active Directory.

Proficient knowledge of User/Group OUs, Group policies

Knowledge of federated identity technologies such as Azure AD Connect

Knowledge of Active Directory Organizational Units (OU), groups and user attributes

Basic understanding of authentication protocols such as SAML, OAuth and LDAP.

Working knowledge of Cloud Identity management tools including Azure Conditional Access, PIM, and Identity Protection.

Excellent research, analytical, and critical thinking skills. Ability to analyze information/data, identify trends, draw conclusions, and make recommendations.

Strong verbal and written communications skills with the ability to facilitate crucial conversations and influence stakeholders.

Effective interpersonal and group communication skills, including negotiation, ability to influence, strong presentation, motivational, change management, and teaching skills.

Strong consultation skills and experience coaching and mentoring.

Familiarity with Identity and Access Management lifecycle, concepts, and technologies.

The masculine is used in this publication without prejudice for the sake of conciseness.

Bausch & Lomb is committed to equal employment opportunity and complies with equal employment opportunity laws in effect wherever it operates.

We are an equal opportunity employer. Minorities, women, veterans, and individuals with disabilities are encouraged to apply. Accommodations for job applicants with disabilities are available on reques.