Identity & Access Management Security Architect

Position Description

Identity & Access Management Security Architect - REMOTE

Collaborate with Innovative 3Mers Around the World

Choosing where to start and grow your career has a major impact on your professional and personal life, so it’s equally important you know that the company that you choose to work at, and its leaders, will support and guide you. With a diversity of people, global locations, technologies and products, 3M is a place where you can collaborate with other curious, creative 3Mers.

This position provides an opportunity to transition from other private, public, government or military experience to a 3M career.

The Impact You’ll Make in this Role
You are the influencer and shaper of next-generation Identity and Access Management. You will be responsible for strategic and current state architecture of globally and regionally applicable technology, processes, and business-wide role accountability of Identity & Access Management domain across the entire 3M Health Care Business Group. Your scope extends across Enterprise systems, Manufacturing, Commercial Products, R&D, Business Development.

You understand regulatory requirements of healthcare industry and embed these needs as part of your core deliverables. You are a passionate champion of contemporary principles for Identity such as Zero-Trust, Passwordless, Distributed Identity.

You are excited about shaping transformation in a large global company; to lay the groundwork for a secure design across a comprehensive footprint such as Identities of employees, third parties, customers, partners, non-human services / machines, IoT devices, servers, applications, network devices, commercially sold medical devices and software, data, cryptography; across environments such as cloud, on-premises, third party hosted, third party managed, and co-location sites.

You are a self-driven, hands-on individual who takes ownership of embedding secure design into new technology introductions and operational change. You have gained knowledge and expertise in broad range of cybersecurity domains. You enjoy the technical depth of Identity & Access and apply it across broad range of business needs.

As an Identity & Access Management Architect you will have the opportunity to tap into your curiosity and collaborate with some of the most innovative and diverse people around the world. Here, you will make an impact by:

• Designing and delivering appropriate architecture that support Identity & Access needs in meeting business goals of secure design, lifecycle and operations.
• Serving as the resident expert for IAM disciplines (such a,s but not limited to - Identity, Sign-On, Federation, Multifactor Authentication, Privileged Access Management, Directory Services, Role-based Governance & Administration, API Security, Key and token Lifecycle, Identity Risk, Identity threat modeling)
• Establishing, documenting, and publishing reference architecture models and promote use and adoption. Apply cross-domain experience and hands-on implementation of architecture across broad scale and multiple platforms. Build threat models for defined design to identify weaknesses in design
• Developing standards and reference architecture for repeatable use cases. Document new and existing solution designs within standardized SDLC and niche use cases
• Driving enforcement of policies, procedures, and associated plans for system security administration, highly privileged and high-risk users, and general user system access based on industry-standard best practices.
• Defining standards and reference architecture for Identity and access protection within secure manufacturing sites. Design solutions to on-board third party and cloud applications using various federation protocols. Architect lifecycle controls and processes in design for Identity and access of customers, partners, and B2B/C entities. Design full user provisioning and de-provisioning process, in line with regulatory and industry needs for termination.
• Facilitating cost effective solutions for integration of target applications to IAM platforms and services
• Remaining informed on trends and issues in the security industry, including current and emerging technologies and policies.
• Providing effective communications to senior management, peers, team, stakeholders, external parties – as required and aligned

Your Skills and Expertise 
To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:

• Bachelor’s degeee or higher (completed and verified prior to start) from an accredited institution with one or more information security certifications from institutions such as: ISC2, ISACA, SANS, etc.
• Seven (7) years of experience in the field of Information Technology with five (5) years of experience on enterprise IAM solutions across multiple disciplines.
• Demonstrated experience with the following: defense-in-depth, trust levels, privileges/permissions, creating complex architectural designs, applying current and emerging technology to regulatory industry requirements
• Five (5) years experience with IAM solutions such as Okta, AWS IAM, Azure AD, SailPoint, CyberArk, Active Directory, API authentication
• Two (2) years experience implementing the following: AWS IAM RBAC and ABAC, SAML, OIDC/OAuth, PKI, credential management, National/International regulations, and standards such as NIST, ISO27001, SOX, GDPR etc.

Additional qualifications that could help you succeed even further in this role include:

• Prior experience large global organization, high complexity, highly functional matrix team settings.
• Adept at building bridges to help drive decision making with strong communication skills to manage reporting and presentations across technical and non-technical stakeholders with the ability to influence cross business stakeholders in driving the needs of secure practices
• Fast learner, experience of onboarding and quickly learning, assimilating
• Demonstrated experience in driving adoption of standardized practices with agility in a fast-paced organization
• Highly collaborative, team player. Engages in mutually agreeable solutions. Champion cybersecurity need and rationale, be a vocal advocate for “what & why”

Work location: Choose 1:

• Work Your Way Eligible (Employee choice to work remote, on site, or hybrid)

Travel: May include up to [5%][domestic/international]

Relocation Assistance: May be authorized

Must be legally authorized to work in country of employment without sponsorship for employment visa status (e.g., H1B status).

Supporting Your Well-being 

3M offers many programs to help you live your best life – both physically and financially. To ensure competitive pay and benefits, 3M regularly benchmarks with other companies that are comparable in size and scope. 

Chat with Max

For assistance with searching through our current job openings or for more information about all things 3M, visit Max, our virtual recruiting assistant on 3M.com/careers.