Access Control Product Owner
Original Advert
Partner with Global IT team members and the client community to deliver IT systems that utilize underlying solutions in support of business objectives to improve productivity and enhance security processes. Activities include analysis, interpretation, identifying trends, and driving corrective actions at service and product level. Responsibilities include leading and participating on project teams, and endtoend accountability for PAM technology within the respective areas. Duties may include service oversight, lifecycle management, and coordination of operational activities.
You will work as part of a global team responsible for Privileged Access Management, App Registration Service, Conditional Access, and other services within the IT Infrastructure, CyberSecurity team. Your core responsibility will be to design, implement, and deliver systems and standards that support a secure, consolidated, and scalable service at Boehringer Ingelheim, including lifecycle management, optimization, governance, and advanced technology consulting.
As an employee of Boehringer Ingelheim, you will actively contribute to the discovery, development, and delivery of our products to our patients and customers. Our global presence provides opportunities for all employees to collaborate internationally, offering visibility and opportunity to directly contribute to the company's success. We realize that our strength and competitive advantage lie with our people. We support our employees in several ways to foster a healthy working environment, meaningful work, diversity and inclusion, mobility, networking, and worklife balance. Our competitive compensation and benefit programs reflect Boehringer Ingelheim's high regard for our employees.
As Product Owner for the Access Control Team, you are accountable endtoend for the service, covering strategy, architecture, delivery, compliance, projects, and continuous improvement.You act as domain expert and main audit contact, ensuring that services are secure, compliant, costeffective, and globally consistent.You work within a global IT Infrastructure Cybersecurity organization and partner closely with Service Lines, Architecture, Operations, Vendors, and Business Stakeholders to deliver consolidated, enterprisegrade, scalable, and stateoftheart solutions.
Tasks and responsibilities
- Product Management & Project Management: You will be responsible for managing our product portfolio, including its ongoing evolution and enhancement. Strong project management skills are essential, as they support the continuous development of our products.
- Azure App Registration Governance: Define standards and lifecycle governance for Azure AD App Registrations and Enterprise Applications, ensuring service principals and managed identities are designed and maintained in line with security and automation requirements.
- Conditional Access Strategy & Oversight: Own the Conditional Access policy framework, ensuring alignment with enterprise security objectives (MFA, device compliance, riskbased access) and validating policy effectiveness through metrics and reporting.
- Azure AD Application Proxy Service Ownership: Own the service model and architecture for Azure AD Application Proxy, ensuring secure and standardized access to onpremises applications in collaboration with network and infrastructure teams.
- Privileged Access Management: You will own the Privileged Access Management product portfolio, overseeing its strategy, lifecycle, and continuous evolution. This includes driving enhancements to improve security, compliance, and user experience across privileged access solutions to ensure the ongoing development and maturity of PAM services.
- Incident & Risk Accountability: Act as accountable owner for identityrelated risks and incidents, ensuring proper rootcause ownership, corrective actions, and continuous improvement
Additional Product Owner Responsibilities
- Represent the product and service internally and externally.
- Define and maintain product vision, roadmap, and strategy.
- Ensure alignment with stakeholders, users, and enterprise architecture.
- Coordinate with architects, SMEs, delivery teams, and service providers.
- Apply agile, technical, leadership, and product management skills to maximize business value.
Requirements
- Education & Experience: Bachelor's degree + 5 years, or 7 years of relevant experience
- Privileged Access Management, Secrets Management & Enterprise Password Management knowledge or experience.
- Consolidated experience governing Azure App Registrations, Enterprise Applications, Application Proxy and Service Principals in hybrid environments.
- Strong knowledge of Conditional Access policy frameworks and identity security controls.
- Strong understanding of OAuth 2.0, OpenID Connect, and SAML protocols from a design and governance standpoint.
- Strong teamwork and collaboration mindset.
- Excellent English communication skills, written and verbal.
- Preferred Experience: Scripting and automation knowledge (PowerShell, Python) to support design decisions and service evolution; knowledge of Azure AD / Entra ID, network security, and access control best practice & Zero Trust Concepts; experience supporting identity governance, compliance reviews, and audits; experience operating in global organizations; conducting compliance checks and access control assessments.
#IamBoehringerIngelheim because...
We are continuously working to design the best experience for you. Here are some examples of how we will take care of you:
- Flexible working conditions
- Life and accident insurance
- Health insurance at a competitive price
- Investment in your learning and development
- Gym membership discounts
If you have read this far, what are you waiting for to apply? We want to know more about you!
Application managed by Boehringer Ingelheim