Principal Engineer, Identity and Access Management (IAM)

Lantheus is headquartered in Bedford, Massachusetts with offices in New Jersey, Canada, and Sweden. For more than 60 years, Lantheus has been instrumental in pioneering the field of medical imaging and has helped physicians enhance patient care with its broad product portfolio.

Lantheus is an entrepreneurial, agile, growing organization that provides innovative diagnostics, targeted therapeutics, and artificial intelligence (AI) solutions that empower clinicians to find, fight and follow disease. At Lantheus our purpose and values guide our behaviors in all interactions and play a vital role in creating a dynamic environment that contributes to our success. Every employee is crucial to our success; we respect one another and act as one knowing that someone's health is in our hands. We believe in helping people be their best and are seeking to bring together a diverse group of individuals with different viewpoints and skill sets to be a part of a productive and inclusive team.

This role will report directly to the Chief Information Security Officer and will oversee the strategic and operational aspects of our identity and access management program. The Principal Engineer, Identity and Access Management (IAM) will provide support and collaboration with business leaders on matters related to identity and access management.

• Lead the development and execution of architecture and engineering roadmaps for IAM services globally and drive efforts to validate alignment between strategic direction and business objectives
• Work with business partners and development teams to design, integrate, test, and deploy IAM solutions for strategic initiatives
• Define formal IAM and enterprise directory standards and procedures consistent with corporate security policy, legal, and regulatory requirements, and industry best practices
• Actively participate in key IT Governance teams representing IAM interests (e.g., architecture, risk management, policy compliance)
• Collaborate with executive management and department leaders to assess near- and long-term IAM needs including multi-factor authentication, privileged access management, and certificate management
• Ensure appropriate access controls are in place via regular access reviews
• Research and recommend emerging IAM technologies and tools to address current and future needs
• Develop and maintain partnerships with key vendors and ensure that all technology and services roadmaps are understood and leveraged where applicable
• Serve as subject matter expert to internal business and IT partners

• Bachelor's or master's degree in a relevant field of work or equivalent combination of education and work experience
• 10+ years of experience in cybersecurity with a minimum of 5 years in identity and access management
• Management/leadership experience; managing people, projects, budgets, and processes
• CISSP preferred, but not required
• Proven experience and success with current and emerging IAM technologies such as automated provisioning/de-provisioning, SSO, identity federation, multifactor authentication, role/policy-based access, virtual directories, privileged management, etc.
• Proven experience and success with managing IAM product deployments
• Proven experience with enterprise directory architecture and design best practices
• Experience defining and executing on enterprise-wide identity and access management strategy and roadmap planning
• Familiarity with federated identity and web services security concepts such as SAML, Liberty ID-FF and ID-WSF, WS-Federation, OpenID, OAuth and WS-Security
• Proven project management and organizational skills, specifically managing multiple, concurrent projects
• Excellent oral and written communication skills with ability to communicate risks to executive leadership and key stakeholders
• Excellent analytical, problem-solving and decision-making abilities

Lantheus is committed to equal employment opportunity and non-discrimination for all employees and qualified applicants without regard to a person's race, color, sex, gender identity or expression, age, religion, national origin, ancestry, ethnicity, disability, veteran status, genetic information, sexual orientation, marital status, or any characteristic protected under applicable law. Lantheus is an E-Verify Employer in the United States. Lantheus will make reasonable accommodations for qualified individuals with known disabilities, in accordance with applicable law.

Any applicant requiring an accommodation in connection with the hiring process and/or to perform the essential functions of the position for which the applicant has applied should make a request to the Lantheus Talent Acquisition team at talentacquisition@lantheus.com.