.IAM Engineer - OT Directory Services (m/f/d)Today, Lonza is a global leader in life sciences operating across three continents. While we work in science, there's no magic formula to how we do it. Our greatest scientific solution is talented people working together, devising ideas that help businesses to help people. In exchange, we let our people own their careers. Their ideas, big and small, genuinely improve the world. And that's the kind of work we want to be part of.The IAM Engineer - OT Active Directory role is a critical position responsible for the design, implementation, maintenance, and support of our company's Operational Technology (OT) Active Directory environments. This role will involve managing identity and access management (IAM) processes, ensuring the security and efficiency of OT systems, and providing ongoing monitoring and support to maintain the integrity and availability of these directories. The ideal candidate will have deep expertise in Active Directory management, strong problem-solving skills, and experience in OT environments, with a focus on securing and optimizing directory services to meet both current and future operational needs.Key responsibilities:Design and Implementation: Develop and deploy Active Directory (AD) architectures specifically tailored for Operational Technology (OT) environments, ensuring they are secure, scalable, and aligned with business requirements.Collaborate closely with IT, OT, and IAM Managed Service teams to integrate AD with existing infrastructure and to facilitate seamless operations across the 24/5 support framework.Maintenance and Oversight: Oversee the IAM Managed Service team's execution of routine maintenance tasks such as patch management, system upgrades, and configuration updates, ensuring adherence to best practices and company standards.Ensure proactive monitoring is in place, reviewing reports and alerts generated by the IAM Managed Service team, and addressing escalated issues that require advanced expertise.3rd Level Support and Troubleshooting: Serve as the escalation point for complex AD-related issues that require 3rd level support, working alongside the IAM Managed Service team to ensure swift and effective resolution.Provide guidance and direction to the IAM Managed Service team during critical incidents or when troubleshooting advanced technical issues.Security and Compliance: Define and enforce security policies within the AD environments, with a focus on OT security needs, including access controls, authentication mechanisms, and auditing practices.Collaborate with the IAM Managed Service team to ensure that all activities within the AD environments comply with industry standards and regulatory requirements relevant to OT systems.Collaboration and Training: Work closely with cross-functional teams, including cybersecurity, network engineering, and operations, to ensure the AD infrastructure meets all technical and business needs