Sr. Manager, Privileged Access Management Solutions Engineer

About This Role

Biogen is seeking a highly experienced and proven IAM Solutions Engineer with deep expertise in Identity and Access Management (IAM), specializing in Privileged Access Management (PAM) and hands-on CyberArk solution engineering. This role demands a strong understanding of directory services, authentication, and authorization systems. As a Sr. Manager, IAM Solutions Engineer, you will be instrumental in the end-to-end design, implementation, and optimization of critical PAM solutions, providing advanced technical leadership, mentoring, and expert-level (L4) support. Your work will directly ensure Biogen's identity services remain secure, compliant, and aligned with cutting-edge PAM best practices and solutions architecture principles.

• Lead the assessment of Biogen's authentication/authorization requirements and target architecture, identifying risks/gaps and designing and implementing robust, secure access patterns.
• Serve as the primary PAM expert, driving the design, configuration, and implementation of CyberArk's comprehensive product suite, including the Privileged Account Security Solution (PAS), Enterprise Password Vault (EPV), and Privileged Session Manager (PSM).
• Oversee the full lifecycle management of privileged accounts and credentials, encompassing identification, implementation of password rotation policies, meticulous management of access controls, and continuous monitoring of privileged user activities to ensure stringent compliance with security policies and regulations.
• Architect and execute seamless integrations of CyberArk solutions with other critical security systems and tools
• Develop comprehensive technical artifacts to document Biogen's identity security architecture and engineered solutions.
• Translate complex security risks and technical solutions into clear, actionable insights for both technical and non-technical stakeholders.
• Direct the end-to-end design and integration of authentication/authorization solutions, ranging from minor enhancements to large-scale strategic projects.
• Ensure all cybersecurity solutions consistently meet or exceed quality standards and stakeholder expectations.
• Coordinate development and operations teams to automate and streamline the delivery of secure, scalable solutions.
• Optimize system performance through rigorous testing, proactive monitoring, and efficient deployment practices.
• Ensure solutions adhere to organizational policies, SOx/GxP/NIST CSF, and budget targets, aligning with governance bodies for cross-functional stakeholder input.

• 10+ years of progressive IT experience, with a strong focus on cybersecurity.
• 5-8 years of hands-on experience with authentication and authorization technologies, specifically in Privileged Access Management, including a minimum of 4-5 years of direct, hands-on experience with CyberArk solutions.
• 3-5 years of experience in technical leadership or managing/mentoring teams.
• Undergraduate degree or equivalent combination of education and experience in Computer Science, Information Security, or a related field.

• Deep subject matter expertise in Access Management Platforms, including:
  
  
  • CyberArk (in-depth knowledge of PAS, EPV, PSM, and associated modules/APIs)
  • Microsoft Active Directory
  • Okta
• Extensive working knowledge of integration methodologies for various use cases, including:
  
  
  • Human and service accounts
  • IT infrastructure and applications
  • Development tools and endpoints using automation
  • Emerging areas like Internet of Things (IOT) and Industrial Control Systems (ICS/OT) equipment.
• Proficiency with scripting languages such as PowerShell or Python for automation and integration.
• Strong familiarity with various operating systems, including Windows Server, Unix, and Linux distributions.
• In-depth understanding of CyberArk's REST API for custom integrations and automation.
• Solid foundation in core cybersecurity principles, encompassing network security, identity and access management (IAM), and data protection.

• Adept at managing stakeholder relationships and aligning technical solutions with business needs.
• Proven ability to execute program management principles, preferably within an Agile framework.
• Strong experience in defining and managing system requirements and translating them into technical specifications.
• Expertise in planning and executing solution deployments, including comprehensive change management processes.
• Thorough understanding and experience with Systems Development Lifecycles (SDLC).
• Proficient in conducting integration and system testing, leading test planning, and facilitating user acceptance testing (UAT).
• Demonstrated ability to develop robust solution architectures for complex identity and access challenges.
• Skilled in balancing demand and delivery priorities to meet organizational objectives.

• Advanced certifications in CyberArk or other leading PAM solutions.
• Experience with Managed Security Service Provider (MSP) service delivery management.
• Familiarity with contract and vendor management processes.
• Hands-on experience with Cloud Identity Management and associated integrations (e.g., Azure AD, AWS IAM).
• Track record of successfully leading complex PAM implementations across diverse environments.

• Medical, Dental, Vision, & Life insurances
• Fitness & Wellness programs including a fitness reimbursement
• Short- and Long-Term Disability insurance
• A minimum of 15 days of paid vacation and an additional end-of-year shutdown time off (Dec 26-Dec 31)
• Up to 12 company paid holidays + 3 paid days off for Personal Significance
• 80 hours of sick time per calendar year
• Paid Maternity and Parental Leave benefit
• 401(k) program participation with company matched contributions
• Employee stock purchase plan
• Tuition reimbursement of up to $10,000 per calendar year
• Employee Resource Groups participation