System Integration Engineer II

About The Position

Requirements

• Bachelor's degree in IT, Computer Science, or a related field (or equivalent experience)
• 5+ years in Security Engineering, Identity Management, or B2B Integration in a mid to large enterprise. Proven experience configuring SAML/OIDC integrations and managing enterprise MFT solutions.
• Advanced expertise in SFTP, AS2, HTTPS, SAML, OIDC, and OAuth.
• Deep understanding of IdP mechanics, claim transformations and MFA implementation.
• Expert level knowledge of PKI, certificate chains, SSH key management and PGP.
• Solid grasp of DNS, firewall rules (NAT/PAT), load balancing (F5/Azure ALB), and WAFs.
• Proficiency in PowerShell or Python for automating security tasks and API interactions.
• CISSP, Security+, or GIAC (GSEC). Microsoft certified: Identity and Access Administrator (SC-300). Certified Professional in GoAnywhere, Cerberus, Cleo, or similar MFT platforms.

Nice To Haves

• Masters’s degree in IT, Computer Science, or related field
• Experience in pharmaceutical and healthcare IT environments
• Familiarity with CPR+, IPS, or other pharmacy-related systems.
• Familiarity with Cloud computer platforms (Azure, AWS, or Google Cloud).
• Experience implementing and maintaining security best practices for endpoint management.
• Understanding of HIPAA compliance and disaster recovery planning.
• Database and scripting experience.

Responsibilities

• Architect & Support: Design, implement, and maintain enterprise-grade MFT platforms (e.g., GoAnywhere, Cerberus, Cleo, IBM Sterling) to support SFTP, AS2, and HTTPS protocols.
• B2B Onboarding: Provision and manage complex partner connections, including authentication logic, directory structures, and automated routing workflows.
• AS2 Management: Oversee AS2 configurations, including synchronous/asynchronous MDNs, digital signatures, and payload encryption.
• Encryption Standards: Enforce high-standard security controls, including SSH, TLS 1.3, and PGP encryption for data at rest and in transit.
• SSO Implementation: Lead the integration of internal and third-party applications with Identity Providers (e.g., Azure AD/Entra ID, Okta) using SAML 2.0, OIDC, and OAuth 2.0.
• MFT Identity Hardening: Secure the MFT management console and user portals by implementing Multi-Factor Authentication (MFA) and SSO-based administrative access.
• User Provisioning: Develop and maintain automated user provisioning/deprovisioning workflows using SCIM or custom scripting to ensure access aligns with the Principle of Least Privilege.
• Access Governance: Define and audit Role-Based Access Control (RBAC) policies for data exchange folders and integration platforms.
• Certificate Lifecycle: Own the end-to-end management of digital certificates (SSL/TLS, AS2, PGP), including automated renewal, rotation, and vaulting.
• Automation: Develop "Infrastructure as Code" style automation for partner onboarding and SSO app registrations using PowerShell, Python, or Terraform.
• Monitoring & Response: Establish proactive monitoring for connection failures, identity anomalies, and performance bottlenecks; serve as Tier 3 support for complex integration outages.
• Compliance & Auditing: Support GxP, HIPAA, and PCI-DSS audits by providing detailed logs, workflow documentation, and evidence of security hardening.
• Perform other tasks as assigned.
• Conducts job responsibilities in accordance with the standards set out in the Company’s Code of Business Conduct and Ethics, its policies and procedures, the Corporate Compliance Agreement, applicable federal and state laws, and applicable professional standards.

Benefits

• Medical, Dental & Vision insurance
• 401k with a match
• Paid Time Off and Paid Holidays
• Tuition Reimbursement
• Paid Volunteer Day
• Floating Holiday
• Referral Incentive
• Paid Life, and short & long-term disability insurance