Identity and Access Management Architect

Vantive: A New Company Built On Our LegacyBaxter is on a journey to separate our ~$5B Kidney Care segment into a standalone company. Vantive will build on our nearly 70-year legacy in acute therapies and home and in-center dialysis to provide best-in-class care to the people we serve. We believe Vantive will not only build our leadership in the kidney care space, it will also offer meaningful work to those who join us.At Vantive, you will become part of a community of people who are focused, courageous and don't settle for the mediocre. Each of us are driven to help improve patients' lives worldwide. Join us as we revolutionize kidney care and other vital organ support.*Completion of the proposed separation of Kidney Care from Baxter into a standalone company (to be named Vantive) remains subject to the satisfaction of customary conditions.Your Role At BaxterThe Identity and Access Management (IAM) Architect plays a crucial role in ensuring the security and efficiency of the organization's digital assets by designing, implementing, and managing identity and access management solutions. You will work closely with cross-functional teams to understand business requirements, assess current systems, and develop strategies to enhance identity and access controls. Your expertise in IAM technologies and best practices will be instrumental in safeguarding sensitive information and maintaining compliance with regulatory standards.Your Team:You will be part of a newly formed, growing team who supports Baxter's mission to save and sustain lives through our talent.Responsibilities:Develop and implement IAM strategies aligned with business objectives and security requirementsDesign IAM solutions to support authentication, authorization, and user provisioning/de-provisioning processesDefine IAM architecture, including identity lifecycle management, single sign-on (SSO), multi-factor authentication (MFA), and privileged access management (PAM)Lead the implementation of IAM solutions, integrating with systems and applications, both on-premises and in the cloudConfigure IAM tools and platforms to meet functional requirements and security policiesCollaborate with development teams to ensure IAM capabilities are integrated into applications and services seamlesslyEstablish IAM policies, procedures, and standards to enforce security best practicesConduct risk assessments and audits to identify security vulnerabilities and compliance gapsEnsure IAM solutions comply with relevant regulations such as GDPR, HIPAA, and PCI DSSDesign and automate processes for user provisioning, de-provisioning, and access recertificationImplement role-based access control (RBAC) and attribute-based access control (ABAC) mechanismsMonitor user activity and enforce least privilege access principlesCollaborate with cross-functional teams, including IT operations, security, compliance, and business unitsProvide technical leadership and mentorship to junior team membersStay updated on emerging IAM technologies, trends, and threatsRequired Experience:Bachelor's or Master's degree in Computer Science, Information Technology, or related field5 years or more of experience as an Identity Architect or similar role, preferably in a large enterprise environmentPreferred Experience:In-depth knowledge of IAM concepts, principles, and technologies (e.g., LDAP, SAML, OAuth, OpenID Connect) and Digital Identity Standards (e.g. NIST 800-63)Hands-on experience with IAM solutions such as Microsoft Azure Active Directory, Okta, SailPoint, or Ping IdentityHands-on experience with cloud platforms such as AWS, Azure, or Google Cloud PlatformStrong understanding of cybersecurity principles, including encryption, PKI, and secure authentication protocolsExperience with scripting and automation tools (e.g., PowerShell, Python) for IAM deployment and configurationExperience with directory services such as Active Directory, Azure AD, or LDAPExcellent communication and interpersonal skills, with the ability to translate technical concepts into business termsIndustry certifications such as CISSP, CISM, or CISA are a plusEqual Employment OpportunityBaxter is an equal opportunity employer. Baxter evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status or any other legally protected characteristic.Reasonable AccommodationsBaxter is committed to working with and providing reasonable accommodations to individuals with disabilities globally. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application or interview process, please let us know the nature of your request along with your contact information.

#J-18808-Ljbffr