Categories: Pharmaceutical, Information Technology, Cybersecurity, Identity Management

Job Description

We aspire to be the premier research-intensive biopharmaceutical company. We're at the forefront of research to deliver innovative health solutions that advance the prevention and treatment of diseases in people and animals.

As the Identity Security Strategy Lead, you will lead the Identity and Access Management TASK FORCE, focusing on assessing, advancing, and governing our company’s enterprise-wide identity strategy improvements. This role spans multiple domains — enterprise, product, operational technology (OT), and customer identity — to ensure security, compliance, and business enablement.

This position can be based in Prague Metropolitan Area, Czech Republic or US East Coast.

Please apply before 6th February. When submitting your application, please share with us a five-bullet point summary of what you’ve accomplished in the IAM space.

Your Responsibilities

• You'll conduct comprehensive gap assessments across enterprise, product, OT, and customer identity domains to identify risks and opportunities.
• Develop and architect strategic projects that enhance identity security, governance, and lifecycle management capabilities.
• You will oversee identity hygiene and cleanup efforts, ensuring issues are systematically resolved and sustainability plans are in place.
• Collaborate actively with IT, Security, Audit, and GRC stakeholders to align identity strategy with enterprise risk priorities and compliance obligations.
• Monitor identity-related risks closely and define effective mitigation strategies and response plans.
• Deliverables will include a governance framework, gap analysis report, and solution roadmap to guide long-term enterprise adoption.
• Serve as a thought leader for identity security, providing valuable guidance on trends, regulatory expectations, and industry best practices.
• Regularly report to leadership on progress of the Task Force.

Your Qualifications for Success

Required

• You have a Bachelor's degree in Cybersecurity, Information Systems, or a related field.
• Proven experience with identity and access management (IAM) systems, including identity governance and administration (IGA).
• You possess strong knowledge of identity lifecycle management, privileged access, and authentication frameworks.
• 7+ years of leadership experience driving identity security or IAM initiatives in global organizations.
• Strong team leadership, stakeholder engagement, and cross-functional influence skills.
• Demonstrated ability to drive remediation programs and manage complex organizational change.
• Ability to design and implement enterprise-wide identity strategies that balance security, compliance, and usability.
• Experience aligning identity initiatives with business goals, regulatory demands, and technology strategies.
• Excellent written and verbal communication skills with the ability to present identity strategies to senior leadership.
• Strong collaboration skills with a proven ability to align business, IT, and compliance stakeholders.
• Experience managing identity-related programs, budgets, and reporting cycles.
• Skilled in documentation, governance processes, and project portfolio execution.

Preferred

• CISSP certification
• CIAM certification
• CISM certification
• Familiarity with NIST SP 800-63 and ISO 27001 frameworks and standards
• Experience managing identity programs across global enterprises

Joining our company means becoming part of a team that values innovation, collaboration, and professional growth.

We offer:

• Opportunities to work on groundbreaking projects that have a global impact.
• A dynamic and inclusive work environment where your ideas are valued.
• Professional development programs to enhance your skills and advance your career.
• Competitive compensation and comprehensive benefits.

Required Skills:

Business Enablement, Business Strategies, Collaborative Communications, Communication, Data Management, Identity Governance, Information Security, ISO 27001 Implementation, IT Risk Assessments, IT Risk Governance, IT Risk Response and Reporting, Knowledge of regulations and frameworks, Leadership, Mitigated Risks, Operational Technology (OT), Organizational Change Management, Project Portfolio Management (PPM), Regulatory Requirements, REMOTE_SKILL-1-52891, Risk Management and Mitigation, Stakeholder Engagement, Stakeholder Management, Technical Advice

Preferred Skills:

Current Employees apply HERE

Current Contingent Workers apply HERE

Search Firm Representatives Please Read Carefully 
Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company.  No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. 

Employee Status:

Regular

Relocation:

Domestic/International

VISA Sponsorship:

No

Travel Requirements:

10%

Flexible Work Arrangements:

Hybrid

Shift:

Not Indicated

Valid Driving License:

No

Hazardous Material(s):

n/a

Job Posting End Date:

02/7/2026

*A job posting is effective until 11:59:59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date.