Agriculture, Forestry, & Fishing, Employment Placement Agencies, Finance/Economics, Healthcare, Other, Human Resources, Information Technology, Installation, Maintenance, and Repair, Insurance, Law Enforcement, and Security, Other / General, Executive Management, Quality Control, Research & Development, Energy / Utilities
Principal Engr, Directory Engineering
Johnson & Johnson is seeking a Principle Engineer Active Directory/Azure Active Directory to be part of our Security Engineering team, embarking on a major strategic transformation of their Identity and Access Management landscape including the adoption of enterprise tools and the establishment of an expert services team headquartered in Raritan, NJ. This position can be located in Raritan, NJ or Remote.
Remote work options may be considered on a case-by-case basis and if approved by the Company.
Caring for the world, one person at a time has inspired and united the people of Johnson & Johnson for over 130 years. We embrace research and science -- bringing innovative ideas, products and services to advance the health and well-being of people.
At Johnson & Johnson, we believe good health is the foundation of vibrant lives, thriving communities and forward progress. That’s why for more than 130 years, we have aimed to keep people well at every age and every stage of life. Today, as the world’s largest and most broadly-based healthcare company, we are committed to using our reach and size for good. We strive to improve access and affordability, create healthier communities, and put a healthy mind, body and environment within reach of everyone, everywhere. Every day, our more than 130,000 employees across the world are blending heart, science and ingenuity to profoundly change the trajectory of health for humanity. Thriving on a diverse company culture, celebrating the uniqueness of our employees and committed to inclusion. Proud to be an equal opportunity employer.
Overall, the candidate is an individual contributor responsible for engineering information security solutions and supporting ongoing management of J&J Directory Services, including multiple Active Directory forests, both on-prem and Azure based.
Responsibilities include working closely with J&J engineering technology groups and operations teams implement new capabilities.
Provide recommendations to the Lead Engineer and Product Owner regarding design and engineering solutions that support J&J’s business model and strategy.
Provide technical direction and hands on support for internal solutions and application owners using Active Directory/Azure-based services.
Collaborate to develop and refine requirements for ongoing Active Directory lifecycle management.
Promote information security, including ensuring processes, procedures, and other activities are defined and implemented to meet the requirements of the J&J Information Asset Protection Policies (IAPPs).
Manage and implement project or base business activities to upgrade or transition to new platforms with minimal user impact.
Ensure required Quality Assurance documentation and IT standard processes for staging and production environments are managed per company process
Provide ‘hypercare’ and documentation for new systems and solutions prior to transitioning them to full operational support.
Support Operational resources responsible for administering Directory Services.
Coordinate with the Operations Team Management to ensure resource requirements are planned, scheduled, and maintained.
Stay ahead of technology progression in order to help suggest and maintain technology lifecycle roadmaps for Active Directory and Azure related systems.
Provide Level 3 support for Azure AD / Active Directory and related directory applications.
Drive continuous improvement of Directory related services and solutions to increase reliability and resolve service problems.
Consult with vendors on product enhancements in support of J&J business goals.
Provide Level 3 Support and engage vendors for problem resolution purposes and proper engagement of back office support.
Maintain and upgrade technical skills via various training opportunities.
Design and deploy directory services within a hybrid multi-cloud environment including AAD and AD Domain Controllers within public cloud providers such as Azure, AWS and GCP, and Platform directory deployment (e.g., AWS Directory Service, GCP Cloud IAM)
Support Microsoft identity synchronization technologies
Instrument detective and preventative security controls into AD/AAD platforms and integrate with enterprise monitoring solutions and processes.
Support tooling for security incident response and recovery as well as system backup and recovery.
Support the design and/or deployment of enterprise class privileged identity/access management, secrets management and key management on premises and in the Cloud.
Consult on the consumption of directory services capabilities by infrastructure and line of business applications e.g. network protocol usage, directory query efficiency, authentication types.
Support identity federation applying a combination of AAD native features and third-party tools.
Design and deploy the directory services elements of a zero-trust computing environment.
Support the integration between Microsoft Office 365 and AAD
Employees may be eligible to participate in Company employee benefit programs such as health insurance, savings plan, pension plan, disability plan, long-term incentive, vacation pay, sick time, holiday pay, and work, personal and family time off in accordance with the terms of the applicable plans. Additional information can be found through the link below.
At Johnson & Johnson, we’re on a mission to change the trajectory of health for humanity. That starts by creating the world’s healthiest workforce. Through cutting-edge programs and policies, we empower the physical, mental, emotional and financial health of our employees and the ones they love. As such, depending on location and subject to local legislation, candidates offered employment may be required to show proof of COVID-19 vaccination or, in certain countries, secure an approved accommodation prior to the commencement of employment to support the well-being of our employees, their families and the communities in which we live and work. If you are invited to interview for the position, your recruiter will advise on the vaccine requirement status in your geographic location.
Johnson & Johnson is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
For U.S. applicants, in accordance with applicable disclosure requirements, the anticipated base pay range for this position is $112,000 to $168,500. The Company maintains highly competitive, performance-based compensation programs. Under current guidelines, this position is eligible for an annual performance bonus in accordance with the terms of the applicable plan. The annual performance bonus is a cash bonus intended to provide an incentive to achieve annual targeted results by rewarding for individual and the corporation’s performance over a calendar/ performance year. Bonuses are awarded at the Company’s discretion on an individual basis.
BS degree or equivalent: Information Technology or Computer Science preferred
Experience and Skills:
Minimum 8 years of Enterprise level Information Technology experience.
Minimum 5 years Enterprise Microsoft Active Directory engineering experience.
Minimum 2 years Microsoft Azure Active Directory experience.
Microsoft certifications (Windows, AD, AAD, Azure or AWS)
Demonstrated command of standard methodologies for Securing Active Directory (Enterprise Privileged Access Model, MIM/PAM, Bastion Environments, Conditional Access, Identity Management for Azure AD, Passwordless Authentication, Zero Trust)
Strong experience with Microsoft PowerShell to manage AD/AAD environments.
Demonstrated understanding of Microsoft Windows Server 2019.
Consistent record crafting technical solutions to business problems and improving processes.
MS Windows experience (AD, PKI, Security, SCOM, SCCM, WSUS, IAM)
Experience with legacy and modern authentication and authorization protocols such as NTLM, Kerberos, OpenID Connect, OAuth or SAML.
Strong organizational, verbal and written communication skills.
Tried analytical and creative problem-solving abilities.
Security certifications (CISSP, GISP etc.)
Demonstrated technical leadership, ownership, influencing skills, customer and user-experience focus and relationship management expertise.
Experience working in multi-factor authentication, single sign-on or passwordless authentication within hybrid environments.
Experience with identity lifecycle maintenance such as One Identity Manager or access management solutions such as Ping Identity.
Flexibility to accommodate global working across different time zones and ability to provide out-of-hours “Level 3 Support” during business-impacting critical incidents
Up to 10% business travel expected
Primary Location United States-New Jersey-Raritan-1003 US HIghway 202 Other Locations North America Organization Johnson & Johnson Services Inc. (6090) Job Function Info Technology Requisition ID 2206079191W