Site Name: Bengaluru Luxor North Tower
Posted Date: Feb 19 2026
Position Summary:
This role is responsible for implementing strong governance, controls, and monitoring across identity and privileged access operations. It supports audit readiness, technical documentation, and risk remediation activities while guiding teams on accessrelated risks and best practices. The position collaborates closely with IAM Product Owners, architects, and cybersecurity groups to ensure effective processes, continuity planning, and risk management. Additionally, it stays ahead of emerging AI and PAM trends to drive innovation and enhance the organization's security posture.
Your Responsibilities To Include
- Implement and embed the relevant governance, control and monitoring framework in order to ensure that access operations (including privileged access) supported by GSK strategic Identity management platforms are appropriately controlled and monitored
- Support the design, implementation, and ongoing management monitoring and reporting of access control
- Support all audits (both internally and externally led) and assessments that assess compliance in this area (this includes regulations related to GDPR, PII, Sarbanes Oxley, GxP, etc.)
- Use analytical techniques and tools to improve IAM performance or solve problems by optimizing processes, facilitating change, improving compliance with existing processes, and applying information technologies
- Create and maintain technical documentation
- Lead, teach, and mentor privileged access service team on privileged access risk and controls
- Supports access risk/control awareness campaign in GSK
- Define, coordinate and monitor remediation efforts to ensure timely resolution and communicate plans and status to management, Internal and External Auditors
- Support IAM Product Owners within DRN (Digital Risk Navigator) process across IAM
- Support IAM Product Owners & SMEs within BCP (Business Continuity Plan) process across IAM
- Coordinate IAM Product Owners / SME work within IRM process, to ensure, risks and issues are properly managed within and updated/closed on time
- Stay current with emerging AI technologies and PAM trends to continuously improve security posture
- Work closely with IAM architects, cybersecurity teams, and AI specialists to drive innovation
Why You
Required Qualification & skills:
- Overall, 10 to 12 years of professional experience
- Minimum 5 years of experience in managing IT risk, compliance or audit activities, ideally with a focus on Security and/or Identity and Access Management
- At least 5 years of experience in working with IAM solution and/or PAM solution
- Understanding of audit and regulatory compliance, with the ability to engage with compliance authorities
- Demonstrates skills in Data Analysis
- Understanding of Active Directory and Database authentication methods and techniques
- Experience in both on-prem and cloud-based access control, access management, access governance and identity methodologies
- Excellent verbal and written communication skills to convey technical concepts effectively to non-technical stakeholders
- Familiarity with application security best practices
- MS Office tools expert (e.g. excel)
- Education: Bachelor's degree in computer science, Information Technology, or a related field
- Soft Skills: Outstanding problem-solving capabilities, strong communication skills, and a collaborative team-oriented mindset
Preferred Qualifications:
- Knowledge of SailPoint
- Knowledge of CyberArk
- Power BI experience
- Familiarity with Azure (Access controls, RBAC), Azure Data Fabric
- Knowledge of monitoring tools (e.g. Splunk, Imperva)
- Previous experience working within a centralized IT team in highly regulated industries, such as pharmaceuticals or financial services
- Familiarity with implementing business process solutions utilizing Agentic AI design principles
Why GSK
Uniting science, technology and talent to get ahead of disease together.
GSK is a global biopharma company with a purpose to unite science, technology and talent to get ahead of disease together. We aim to positively impact the health of 2.5 billion people by the end of the decade, as a successful, growing company where people can thrive. We get ahead of disease by preventing and treating it with innovation in specialty medicines and vaccines. We focus on four therapeutic areas: respiratory, immunology and inflammation; oncology; HIV; and infectious diseases to impact health at scale.
People and patients around the world count on the medicines and vaccines we make, so we're committed to creating an environment where our people can thrive and focus on what matters most. Our culture of being ambitious for patients, accountable for impact and doing the right thing is the foundation for how, together, we deliver for patients, shareholders and our people.
Inclusion at GSK:
As an employer committed to Inclusion, we encourage you to reach out if you need any adjustments during the recruitment process.
Please contact our Recruitment Team at [Confidential Information] to discuss your needs.
Important notice to Employment businesses/ Agencies
GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site.
It has come to our attention that the names of GlaxoSmithKline or GSK or our group companies are being used in connection with bogus job advertisements or through unsolicited emails asking candidates to make some payments for recruitment opportunities and interview. Please be advised that such advertisements and emails are not connected with the GlaxoSmithKline group in any way.
GlaxoSmithKline does not charge any fee whatsoever for recruitment process. Please do not make payments to any individuals / entities in connection with recruitment with any GlaxoSmithKline (or GSK) group company at any worldwide location. Even if they claim that the money is refundable.
If you come across unsolicited email from email addresses not ending in gsk.com or job advertisements which state that you should contact an email address that does not end in gsk.com, you should disregard the same and inform us by emailing [HIDDEN TEXT], so that we can confirm to you if the job is genuine.
