Global IT-Infrastructure Engineer (IAM)

As Global IT Infrastructure Engineer (IAM), you will play a key role in designing, implementing and operating our global IT infrastructure with a strong focus on Identity & Access Management (IAM). You ensure secure, compliant and scalable identity services across IT and OT environments and actively contribute to our Zero Trust architecture. You will work in an international setup, closely collaborating with infrastructure, cybersecurity and business stakeholders worldwide.

Global Infrastructure & Operations

• Design, implement and operate global IT infrastructure services (servers, networks, cloud and identity services)
• Manage hybrid environments (on-prem, cloud and OT integration)
• Ensure availability, performance and resilience of infrastructure platforms

Identity & Access Management (IAM)

• Lead deployment, operation and continuous improvement of enterprise IAM solutions
• Manage the full identity lifecycle (joiner/mover/leaver), RBAC, MFA, SSO and PAM
• Integrate IAM solutions with Active Directory (separate IT/OT ADs), cloud platforms and enterprise applications

Security & Compliance

• Enforce identity and infrastructure security standards (ISO 27001, NIS2)
• Support audits, access reviews and compliance activities
• Collaborate with cybersecurity teams on Zero Trust and identity protection initiatives

Governance & Integration

• Align IAM and infrastructure standards across IT, OT and cloud environments
• Define standards, SOPs and automation processes to improve efficiency and security

Do you have experience in Microsoft Windows Server?, + University degree in IT or equivalent professional experience

• Certifications such as Certified Identity and Access Manager (CIAM) and/or GAMP are a plus

• Several years of experience (approx. 5+ years) in IT infrastructure (servers, networking, cloud)
• Hands-on experience implementing and operating IAM solutions in international environments
• Strong knowledge of Active Directory (hybrid/multi-domain), Windows Server and Azure
• Experience with IAM technologies such as Entra ID / Azure AD, Okta, CyberArk or comparable platforms
• Solid understanding of authentication and authorization protocols (SAML, OAuth2, OpenID Connect)
• Experience in regulated environments (e.g. Pharma/Manufacturing, GxP) is a plus
• Very good English skills

CordenPharma ist eine der führenden Contract Development and Manufacturing Organizations (CDMO) und entwickelt und produziert im Auftrag ihrer Kunden als "Full-Service"-Dienstleister pharmazeutische Wirkstoffe, Arzneimittel und damit verbundene Verpackungsdienstleistungen. Die Gruppe beschäftigt rund 3.000 Mitarbeiter. Unser Netzwerk in Europa und den USA bietet flexible und spezialisierte Lösungen für sechs Technologieplattformen: Peptides, Lipids & Carbohydrates, Injectables, Highly Potent & Oncology, Small Molecules und Oligonucleotides. Wir streben nach Spitzenleistungen bei der Unterstützung dieses Netzwerks und engagieren uns für die Bereitstellung von Produkten höchster Qualität zum Wohle der Patienten. Our People Vision: We strive for excellence. We share our passion. Together, we make a difference in patients' lives.