ActiveJobs

PBAC Operations Engineer - RDT Identity & Access Management

Roche · San Jose, Costa Rica

Full-timeOn-sitePosted 14 July 2026
Apply on Company Site →

Job description

At Roche you can show up as yourself, embraced for the unique qualities you bring. Our culture encourages personal expression, open dialogue, and genuine connections, where you are valued, accepted and respected for who you are, allowing you to thrive both personally and professionally. This is how we aim to prevent, stop and cure diseases and ensure everyone has access to healthcare today and for generations to come. Join Roche, where every voice matters. The Position The Opportunity: As a Senior Cybersecurity Engineer in the IAM space, you will serve as the technical owner of our Policy Based Access Control (PBAC) infrastructure. In this role, you will lead the design, implementation, and tactical lifecycle management of core authorization components to ensure they are scalable, resilient, and deeply integrated across a hybrid global landscape. Key Responsibilities: Infrastructure Ownership & Strategy: Architect and maintain core PBAC components (PDP/PEP) for high availability. Lead the transition from initial use cases to enterprise-wide adoption, establishing global standards for policy-based authorization. Policy as Code (PaC) & DevOps: Drive the shift to PaC by designing automated CI/CD pipelines for versioning, testing, and deploying authorization logic like software. Integration & Consulting: Act as a primary consultant for global application and data owners to securely integrate systems via RESTful APIs, SQL/JDBC, and LDAP. Problem Solving & Analytics: Lead the analysis of complex, highly ambiguous technical problems across organizational boundaries, driving comprehensive root-cause analysis and proactive risk mitigation. Stakeholder & Vendor Management: Partner with product managers, global developers, and senior management to design secure, user-friendly PBAC flows. Manage production environments using ITIL principles and coordinate with external vendors and Managed Service Providers (MSPs). Leadership & Continuous Improvement: Mentor team members, build expertise across the organization, and champion business process improvements within Communities of Practice (CoPs). Who You Are: Education: Bachelor's degree in a relevant technical field or equivalent work experience Experience: 8–15 years in IT/Security, with 5+ years strictly focused on Identity & Access Management (IAM) and specific expertise in PBAC/ABAC within large enterprise environments. Technical Mastery: Advanced, hands-on knowledge of XACML, decentralized policy management, and modern web frameworks under Zero Trust principles (RBAC and ABAC). IAM & DevOps Foundations: Highly proficient in SAML, OAuth, OIDC, SSO, and IGA. Experience writing custom integrations in Java or Python and deploying via Git-based CI/CD pipelines. Architectural Mindset: Strong advocate for systems thinking and enterprise-wide consulting advice. You prioritize configurable, "off-the-shelf" capabilities over heavy customization for long-term maintainability. Communication: Fluent in English with exceptional interpersonal skills to navigate complex conflicts, build global consensus, and translate architectural concepts for non-technical stakeholders. Preferred Qualifications: Regulated Environments: Deep familiarity with data privacy regulations such as GDPR. Operational Frameworks: Experience working within Agile methodologies and applying ITIL frameworks in cross-functional global team structures. Relocation benefits are not available for this posting. Who we areA healthier future drives us to innovate. Together, more than 100’000 employees across the globe are dedicated to advance science, ensuring everyone has access to healthcare today and for generations to come. Our efforts result in more than 26 million people treated with our medicines and over 30 billion tests conducted using our Diagnostics products. We empower each other to explore new possibilities, foster creativity, and keep our ambitions high, so we can deliver life-changing healthcare solutions that make a global impact. Let’s build a healthier future, together. Roche is an Equal Opportunity Employer.

Verified and listed by ActiveJobs. Applications are made directly on Roche's own career page — we never sit in the middle.