Senior Identity and Access Management (IAM) Engineer

At Roche you can show up as yourself, embraced for the unique qualities you bring. Our culture encourages personal expression, open dialogue, and genuine connections,  where you are valued, accepted and respected for who you are, allowing you to thrive both personally and professionally. This is how we aim to prevent, stop and cure diseases and ensure everyone has access to healthcare today and for generations to come. Join Roche, where every voice matters.

The Position

A healthier future. That’s what drives us.  

We are seeking a dedicated and skilled IAM Engineer to join our team working on enhancing our enterprise data foundation capabilities to support our end users in delivering results swiftly, precisely and with the required level of detail.

You will be part of the team that will be working within Roche business units to excel implementation of their special use cases, often optimizing data storage and transfer, maximising identity and access management tools, platform and network solutions.

The Opportunity:

You will contribute to the delivery of challenging projects which require deep technical knowledge and soft skills as well being responsible for the completion of milestones associated with them.

You will lead and support complex computer applications, directories, and domains related to user lifecycle management. The ideal candidate will possess strong technical skills in IAM solutions, programming languages, and cloud infrastructure deployment.

• Manage and support multiple complex computer applications, directories, and domains, encompassing user lifecycle management (onboarding, transfers, offboarding, access reviews, etc.).

• Operate and maintain IAM solutions and optimize existing processes.

• Deploy Cloud infrastructure using "Infrastructure as Code" within CI/CD environments.

Who you are:

• Bachelor’s degree in Information Technology, Computer Science, Engineering or equivalent.

• Minimum of 5-7 years of experience with Identity and Access Management (IAM).

• At least 5+ years of experience deploying Cloud infrastructure using "Infrastructure as Code" in CI/CD environments (e.g., Gitlab CI/CD, Rundeck) as well as developing or being proficient in reviewing Terraform code as well as Proficiency with Source Code Management tools, Gitlab, Github.

• Proficiency in one or more programming languages (e.g., Java, .Net/C#, JS).

• Strong knowledge of OpenID, OAuth2, REST, SCIM, SAMLv2, SSO, MFA, PAM, RBAC, ABAC, PBAC.

• Solid understanding of SGBDs, SQL, and data science repositories.

• Solid understanding and hands-on experience with Directory Services: AD, LDAP, VDS as well as knowledge and hands-on experience with IAM Solutions like Sailpoint, AzureAD, Okta, Oracle IAM.

• Familiarity with the "Test Driven Development" methodology and testing tools: testinfra, molecule, InSpec.

• Intermediate knowledge in consuming APIs using different programming languages: Python, PowerShell, Ansible.

Relocation benefits are not available for this job posting.

A healthier future drives us to innovate. Together, more than 100’000 employees across the globe are dedicated to advance science, ensuring everyone has access to healthcare today and for generations to come. Our efforts result in more than 26 million people treated with our medicines and over 30 billion tests conducted using our Diagnostics products. We empower each other to explore new possibilities, foster creativity, and keep our ambitions high, so we can deliver life-changing healthcare solutions that make a global impact.

Let’s build a healthier future, together.

Roche is an Equal Opportunity Employer.