Alfasigma is a privately held global healthcare company founded over 75 years ago in Italy, where it remains headquartered today in Bologna and Milan. The Group operates in over 100 markets spanning Europe, North and South America, Asia, and Africa.
Over three years ago, we embarked on a transformative journey to become a truly global innovative healthcare company with a leading focus on Gastrointestinal (GI) health. We have experienced remarkable growth, nearly doubled our revenues, expanding geographically, and integrating several key acquisitions. We have also evolved our portfolio, expanded into rare and specialty segments, and strengthened our pipeline and people's capabilities.
But our journey is far from complete! In fact, this is just the beginning of a bold new chapter in Alfasigma's history. We are committed to advancing innovation and leveraging our deep expertise to provide better health and a better quality of life for patients and consumers worldwide and expand our reach across diverse markets.
As we continue to grow, we are seeking a Sr. Specialist, Global IT Enterprise Core Service. This position can be located in either Pomezia, Alanno, Milan, or Bologna.
Scope of the role:
The resource will be responsible for the management, evolution and security of the enterprise core services that underpin the digital workplace: identity and access management, authentication, directory services and collaboration platforms. The role guarantees the reliability, security and compliance of these foundational services across the organization in a regulated (GxP/GMP) environment, acting as the technical reference point for identity governance and Microsoft 365 collaboration services. The resource is also expected to manage the full lifecycle of the systems under their responsibility and to operate confidently across hybrid on-premises and cloud infrastructures.
Your key responsibilities:
- Administer and evolve identity platforms (Active Directory, Microsoft Entra ID / Azure AD), including hybrid identity and directory synchronization.
- Manage authentication services: Single Sign-On (SSO), Multi-Factor Authentication (MFA), Conditional Access and federation (SAML, OAuth, OIDC).
- Design and operate Identity & Access Management (IAM) processes: provisioning/de-provisioning, role-based access, access reviews and privileged access management (PAM).
- Manage and support enterprise collaboration platforms (Microsoft 365 — Exchange Online, Teams, SharePoint, OneDrive).
- Define and enforce identity and access policies aligned with security and compliance requirements.
- Support integration of applications and services with the corporate identity platform.
- Manage endpoint identity and security integration (Intune/MDM, conditional access, device compliance) in coordination with the Workplace team.
- Manage the full lifecycle of the core-service systems (provisioning, configuration, patching, upgrades, capacity management and secure decommissioning).
- Monitor core services health, availability and security; manage incidents and root-cause analysis.
- Contribute to Disaster Recovery and Business Continuity for identity and collaboration services.
- Maintain technical and validation documentation in line with GxP/GMP requirements.
- Coordinate with vendors and system integrators.
- Support modernization and security initiatives (Zero Trust, identity governance, lifecycle automation).
Who are you:
Technical requirements
- Strong hands-on experience with Active Directory (DNS, DHCP, GPO, sites & services) and Microsoft Entra ID / Azure AD.
- Solid experience with authentication and federation technologies (SSO, MFA, Conditional Access, SAML, OAuth, OIDC, ADFS).
- Experience with IAM / identity lifecycle and access governance.
- Experience administering Microsoft 365 collaboration services (Exchange Online, Teams, SharePoint, OneDrive).
- Solid knowledge of server virtualization on both Microsoft Hyper-V and VMware vSphere/ESXi (vCenter, clustering, HA/DR).
- Experience with hyperconverged infrastructure (HCI) platforms (VMware vSAN, Nutanix, Azure Stack HCI / Azure Local).
- Working knowledge of Microsoft Azure and hybrid-cloud services (Azure Arc, hybrid identity, hybrid connectivity).
- Ability to manage the end-to-end lifecycle of systems and infrastructure (deployment, patching, upgrades, capacity and decommissioning).
- Knowledge of endpoint management and identity-driven security (Intune/MDM, Microsoft Defender for Endpoint) considered a plus.
- Scripting and automation skills (PowerShell, Microsoft Graph) for identity lifecycle and reporting.
- Understanding of security best practices (least privilege, PAM, Zero Trust principles).
Required / preferred certifications
- Required: Microsoft SC-300 (Identity and Access Administrator) or MS-102 (Microsoft 365 Administrator).
- Strongly preferred: Microsoft AZ-104 (Azure Administrator) and/or SC-900 (Security, Compliance & Identity Fundamentals).
- Valued as a plus: Microsoft MS-700 (Teams Administrator), SC-400 (Information Protection), ITIL Foundation, and senior identity/security certifications (CISSP, CISM).
Regulatory context requirements
- Experience in regulated environments (Pharma, Medical, Food, Automotive).
- Experience in GMP environments is considered a strong added value.
- Knowledge of GxP, Annex 11 and Data Integrity principles.
- Experience supporting audits (AIFA/FDA/customers).
- Experience operating within validated environments (CSV).
Soft skills
- Structured, quality- and security-oriented approach.
- Ability to work in complex, multi-site environments.
- Strong problem-solving attitude and operational autonomy.
- Flexibility and ability to adapt to challenging, fast-changing and demanding contexts.
- Ability to interact with technical and business stakeholders.
- Orientation toward continuous improvement.
Required experience
- 5–8 years in similar roles covering identity, authentication and collaboration services.
- Experience in structured / mission-critical enterprise environments.
Why Join Alfasigma:
At Alfasigma, we foster a culture where the courage to innovate is key to our success.
We offer a competitive salary, comprehensive benefits, and extensive opportunities for professional growth and development.
Our commitment to people and patients is at the heart of everything we do. We value diversity and welcome individuals with unique perspectives and experiences. We believe that open-mindedness, collaboration, and a shared passion for innovation are essential to achieving meaningful progress.
Join Alfasigma and become part of a forward-thinking team dedicated to shaping the future of the pharmaceutical industry.
