<p style="text-align:inherit"></p><p style="text-align:inherit"></p><p><span>A career at Resilience is more than just a job – it’s an opportunity to change the future. </span></p><p></p><p>Resilience is a technology-focused biomanufacturing company that’s <span>changing the way medicine is made</span>. We’re building a sustainable network of high-tech, end-to-end manufacturing solutions <span>to better withstand disruptive events, serve scientific discovery, and reach those in need.</span> </p><p></p><p>For more information, please visit <a href="https://resilience.com/" target="_blank" rel="noopener noreferrer">www.resilience.com</a></p><p></p><p></p><p>The L3 Systems Engineer – Identity & Endpoint Platforms is a senior individual contributor responsible for the design, implementation, and ongoing administration of Resilience’s core identity and endpoint management platforms. This role owns Okta, Azure/Entra ID, and Microsoft Intune as the subject matter expert and primary engineer, ensuring secure, scalable, and compliant identity and device management across a GxP and non-GxP regulated environment. The role operates under the direction of the Digital Tech Ops leadership and partners closely with Security, IT Operations, and Application teams to support enterprise-wide identity governance, endpoint compliance, and cloud platform integrations.</p><p>This position serves as the escalation point for L3 identity and endpoint incidents, leads platform migration and modernization initiatives, and is responsible for maintaining documentation, SOPs, and architectural standards for all platforms in scope.</p><p><b>CORE RESPONSIBILITIES:</b></p><ul><li><p>Design, implement, and maintain Okta SSO and MFA configurations, including authentication policies, SCIM provisioning, RBAC, identity governance, and workflow automation.</p></li><li><p>Administer Azure/Entra ID including enterprise application integrations (SSO, SCIM, OIDC, WS-Fed), Conditional Access policy design, identity lifecycle management, and user provisioning and deprovisioning.</p></li><li><p>Manage Microsoft Intune environments including Autopilot deployment, device configuration profiles, compliance policies, security baselines, and endpoint protection across Windows, iOS, and Android.</p></li><li><p>Administer Microsoft 365 services including Exchange Online, SharePoint, Teams, and OneDrive, managing permissions, mail flow, retention policies, and cloud service integrations.</p></li><li><p>Design and enforce endpoint compliance standards, partnering with the Security team to respond to identity anomalies, implement best-practice security policies, and maintain audit-ready configurations.</p></li><li><p>Develop and maintain PowerShell scripts and automation workflows to streamline identity lifecycle operations, endpoint provisioning, and compliance reporting.</p></li><li><p>Provide advanced L3 troubleshooting for identity systems, endpoint connectivity, collaboration tools, and cloud platform issues across hybrid on-premises and cloud environments.</p></li><li><p>Maintain comprehensive technical documentation, SOPs, and knowledge base articles to standardize identity and endpoint management processes.</p></li><li><p>Collaborate cross-functionally within IT teams to support projects, improve workflows, and drive continuous improvement.</p></li></ul><p></p><p><b>REQUIRED QUALIFICATIONS:</b></p><ul><li><p>Extensive hands-on experience administering Okta, including SSO, MFA, SCIM provisioning, RBAC, identity governance, and application-level security policy design.</p></li><li><p>Strong experience with Azure/Entra ID including Conditional Access policy design, enterprise application management, identity lifecycle management, and hybrid Active Directory environments.</p></li><li><p>Demonstrated expertise with Microsoft Intune, including Autopilot, MDM/MAM policy configuration, device compliance, security baselines, and endpoint protection across Windows and mobile platforms.</p></li><li><p>Proficiency in PowerShell scripting for automation of identity, endpoint, and compliance workflows.</p></li><li><p>Experience leading complex platform migration projects, such as Okta org-to-org, tenant migrations, or MDM platform transitions.</p></li><li><p>Working knowledge of Microsoft 365 administration including Exchange Online, SharePoint, Teams, and OneDrive.</p></li><li><p>Understanding of identity federation standards including SAML, OIDC, WS-Federation, and SCIM.<br> </p></li></ul><p><b>PREFERRED QUALIFICATIONS:</b></p><ul><li><p>Experience with Privileged Access Management (PAM) solutions such as CyberArk, BeyondTrust, 1Password, or Keeper. Familiarity with AWS services including Workspaces, IAM, and CloudWatch. Knowledge of ITIL framework and IT service management best practices.</p></li><li><p>Bachelor’s degree in Computer Science, Information Systems, or a related technical field.</p></li><li><p>5+ years of experience in a systems engineering, identity engineering, or endpoint engineering role within a mid-to-large enterprise environment.</p></li><li><p>Experience working in a regulated environment (GxP, pharma, biotech, or equivalent) is strongly preferred.</p></li></ul><p></p><p><b>WORKING CONDITIONS:</b></p><ul><li><p>This is primarily a remote position. May require occasional evening or weekend work for planned maintenance activities, platform migrations, or system upgrades.Some travel may be required for training, conferences, meetings, or support of other company sites.</p></li></ul><p></p><p></p><p><i><b>Sponsorship or support for work authorization, including visas, is not available for this position.</b></i></p><p></p><p>Resilience is an Equal Employment Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, disability status, physical or mental disability, genetic information, or characteristic, or other non-job-related characteristics or other prohibited grounds specified in applicable federal, state, and local laws. Requests for reasonable accommodation can be made at any stage of the recruitment process.</p><p></p><p></p>Resilience offers employees a robust total rewards program including an annual cash bonus program, a 401(k) plan with a generous company match and our benefits package which is thoughtfully designed to support our employees with great healthcare (including medical, dental and vision), family building benefits, life and disability insurance, paid vacation, paid holidays, other paid leaves of absence, tuition reimbursement and support for caregiving needs. Our target base pay hiring range for this position is $90,000.00 - $153,750.00 per year. Actual base pay is dependent upon a number of factors, including but not limited to, the candidate’s geographical location, relevant experience, qualifications, skills and knowledge. Excited about Resilience? We encourage you to apply and start a conversation with one of our recruiters.<p style="text-align:inherit"></p><p style="text-align:inherit"></p>