Job Specifications
Legend Biotech is a global biotechnology company dedicated to treating, and one day curing, life-threatening diseases. Headquartered in Somerset, New Jersey, we are developing advanced cell therapies across a diverse array of technology platforms, including autologous and allogenic chimeric antigen receptor T-cell, T-cell receptor (TCR-T), and natural killer (NK) cell-based immunotherapy. From our three R&D sites around the world, we apply these innovative technologies to pursue the discovery of safe, efficacious and cutting-edge therapeutics for patients worldwide.
Legend Biotech entered into a global collaboration agreement with Janssen, one of the pharmaceutical companies of Johnson & Johnson, to jointly develop and commercialize ciltacabtagene autolecuel (cilta-cel). Our strategic partnership is designed to combine the strengths and expertise of both companies to advance the promise of an immunotherapy in the treatment of multiple myeloma.
Legend Biotech is seeking an Identify Access Manager as part of the IT team based in Somerset, NJ.
Role Overview
The Information Security Manager, IAM will be a key team leader within the Information Security Office with responsibility in supporting the company in adhering to industry best-practices and governing regulations, documenting maturity in accordance with security frameworks. The successful candidate will lead our IAM Program and oversee the implementation and operation of our Identity Governance and Administration (IGA) tool. The IAM Manager will be responsible for managing, operating and enhancing our IAM practices to ensure the security and efficiency of our enterprise systems. He/She will demonstrate working knowledge of current enterprise technologies and security best practices.
Key Responsibilities
Support Enterprise-wide cybersecurity IAM operations using vendor security tools.
Implement IAM strategy aligned with the Company's security and business objectives.
Lead the deployment and integration of IGA tool, ensuring seamless operation and compliance with industry standard.
Manage the day-to-day operations of the IAM program, advising on user provisioning process and role management.
Collaborate with cross functional teams to define and enforce IAM policies, standards and procedures.
Coordinate regular audits and assessments with GRC team to identify and mitigate IAM related risks.
Provides leadership and guidance to the less experienced staff, fostering a culture of continuous improvement and innovation.
Drive adoption of IAM reference and architecture for new and existing emerging IAM technologies.
Stay current with industry trends and best practices in IAM and IGA and recommend enhancements to existing processes and technologies.
Make recommendations to improve automation efficiency, security practices, and end user experience.
Ensure compliance with regulatory requirements and internal security policies.
Develop and deliver training programs to educate cross functional teams on IAM policies and procedures.
Design, build, and maintain Directory Services environments across various hosting platforms both on-prem and in cloud (Azure and AWS), ensuring system reliability, efficiency, and compliance with security standards.
Collaborate with IT peers to establish and maintain security baselines, respond to security incidents, and ensure compliance with NIST cybersecurity standards.
Architect and implement secure, scalable IAM design patterns and reference architectures for authentication and authorization.
Develop enterprise-grade architectures that balance immediate needs with long-term scalability, reuse, and policy alignment.
Lead gap assessments, remediation planning, roadmap development, and execution for IAM projects.
Keep abreast of advances in industry to address the threat landscape.
Requirements
10+ years' experience in cybersecurity, IAM, utilizing security IAM/IGA tools and cloud environment experience.
Related certificates in Information Security, CISSP required.
Experience with implementing and configuring security IAM tools.
Experience with testing and evaluating security products.
Working knowledge of IT-related and compliance mandates (e.g. Sarbanes Oxley, HIPPA, GDPR,CCPA, PCI DSS, FDA) is desired.
Working knowledge of security frameworks and standards (NIST, ISO, CIS, CoBit).
Experience the following (Microsoft Entra ID, Azure AD, ADFS, SSO, Multi-factor authentication, SAML, PAM).
Excellent analytical and technical skills.
Professional planning and organizational skills, including presentation and strong written communication.
Ability to communicate technical information in understandable business terms.
Great interpersonal skills, including teamwork, facilitation and negotiating skills.
Ability to positively influence the behavior of peers and build relationships with other teams without direct authority over those teams.
The anticipated base pay range is:
$142,146--$186,567 USD
Benefits:
We are committed to creating a
About the Company
Legend Biotech is a global, commercial-stage biotechnology company developing and manufacturing novel therapies. We explore and apply innovative technologies to deliver cutting-edge options for patients around the world.
Our corporate headquarters is located in Somerset, NJ, and our manufacturing footprint includes facilities in the United States, China and the Belgium.
Know more