Advanced Authentication SME
We are seeking a highly skilled Identity and Access Management Expert with 10+ years’ of relevant experience, capable of delivering enterprise solutions. The ideal candidate will be a technical expert with deep knowledge of authentication protocols, capable of designing, implementing, and troubleshooting complex identity management solutions.
Design and implement robust Single Sign-On (SSO) architecture.
Develop and maintain authentication systems using industry-standard protocols.
Implement and optimize identity management solutions across enterprise platforms.
Conduct in-depth security assessments of authentication mechanisms.
Debug complex authentication and authorization challenges.
Create and maintain technical documentation for authentication systems.
Develop custom authentication solutions and integrate with existing enterprise systems.
Perform security audits of identity and access management infrastructure.
Basic Qualifications:
Extensive experience with SAML 2.0, OAuth 2.0, and OpenID Connect
Deep understanding of WS-Federation and LDAP
Proficiency in JWT (JSON Web Tokens) implementation
Knowledge of OIDC (OpenID Connect) flows
Programming experience in at least one language (Python, Java, JavaScript preferred)
Scripting capabilities for authentication testing and debugging
Familiarity with identity providers (PingFederate, Okta, Azure AD, Auth0)
Understanding of web communication protocols (HTTP/HTTPS)
Experience with API security and token-based authentication
Debugging skills for complex authentication scenarios
Advanced understanding of authentication security best practices
Experience with multi-factor authentication (MFA) implementations
Knowledge of threat modeling for identity systems
Understanding of encryption techniques and key management
Familiarity with compliance standards (NIST, SAML, FIDO)
Preferred Qualifications:
Certified Information Systems Security Professional (CISSP)
Microsoft Certified: Identity and Access Administrator
Certified Ethical Hacker (CEH)
Bachelor's degree in Computer Science, Cybersecurity, or related field
Experience with cloud identity solutions (Azure AD, AWS IAM, Google Cloud Identity)
Experience developing custom authentication middleware
Understanding of adaptive authentication techniques
Knowledge of biometric and advanced authentication methods
Experience with identity governance and administration
Familiarity with zero-trust security models
Excellent problem-solving abilities
Strong communication skills
Ability to explain complex technical concepts to non-technical stakeholders
Meticulous attention to detail
Proactive approach to security challenges
Previously worked in a central IT team within a regulated environment such as the Pharmaceutical or Financial services
Why GSK?
Uniting science, technology and talent to get ahead of disease together.
GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology).
Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves – feeling welcome, valued, and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together.
Important notice to Employment businesses/ Agencies
GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.
It has come to our attention that the names of GlaxoSmithKline or GSK or our group companies are being used in connection with bogus job advertisements or through unsolicited emails asking candidates to make some payments for recruitment opportunities and interview. Please be advised that such advertisements and emails are not connected with the GlaxoSmithKline group in any way.
GlaxoSmithKline does not charge any fee whatsoever for recruitment process. Please do not make payments to any individuals / entities in connection with recruitment with any GlaxoSmithKline (or GSK) group company at any worldwide location. Even if they claim that the money is refundable.
If you come across unsolicited email from email addresses not ending in gsk.com or job advertisements which state that you should contact an email address that does not end in “gsk.com”, you should disregard the same and inform us by emailing askus@gsk.com, so that we can confirm to you if the job is genuine.