(PAM) Specialist

Overview

Remote
Depends on Experience
Contract - W2

Skills

Active Directory
Amazon Web Services
Auditing
Critical Path Method
CyberArk
DevOps
Bash
Cloud Computing
Collaboration
Continuous Delivery
Continuous Integration
EPM
Facilitation
Financial Services
Good Clinical Practice
Google Cloud Platform
HIPAA
Health Care
High Availability
ISO/IEC 27001:2005
Management
IT Service Management
Identity Management
Information Security
JIT
Payment Card Industry
LDAP
Mentorship
Microsoft Azure
Microsoft Windows
Scripting
PSM
Python
RDP
Regulatory Compliance
SAFE
SIEM
Sarbanes-Oxley
Secure Shell
Technical Writing
Training
Unix
Windows PowerShell
Workflow

Job Details

Responsibilities

We are looking for a Senior Privileged Access Management (PAM) Specialist to lead the design, deployment, and ongoing support of our PAM infrastructure. The ideal candidate will have strong hands-on experience with CyberArk or BeyondTrust and a deep understanding of best practices in privileged access security. This role is critical to protecting sensitive assets, ensuring regulatory compliance, and reducing the organization's overall risk exposure.

Key Responsibilities:

  • Lead the implementation and configuration of PAM solutions (preferably CyberArk or BeyondTrust) across on-prem and cloud environments.
  • Design, deploy, and manage vaulting, session management, credential rotation, and privileged task automation.
  • Define and enforce PAM policies, including least privilege, just-in-time access, and session monitoring.
  • Collaborate with infrastructure, application, and cloud teams to onboard privileged accounts and manage secure access workflows.
  • Perform health checks, upgrades, and maintenance of PAM platforms, ensuring high availability and resilience.
  • Integrate PAM with SIEM, ITSM, IAM, and other security tools to enable centralized monitoring and response.
  • Drive compliance efforts by producing detailed access reports and facilitating audits (SOX, HIPAA, PCI, etc.).
  • Analyze access patterns and implement controls to minimize attack surface and prevent lateral movement.
  • Develop technical documentation, playbooks, and training for internal teams.
  • Act as a PAM SME and provide mentorship to junior staff and cross-functional stakeholders.

Required Qualifications:

  • 10+ years of experience in Information Security, with 3+ years focused on PAM.
  • Hands-on experience with CyberArk or BeyondTrust (e.g., PSM, CPM, PVWA, PTA, EPM, Password Safe).
  • Strong understanding of PAM concepts: vaulting, session management, least privilege, JIT, credential rotation.
  • Familiarity with Active Directory, LDAP, RDP/SSH, Windows/Unix systems, and cloud environments (AWS, Azure, Google Cloud Platform).
  • Experience integrating PAM with IAM tools, SIEM platforms, and ticketing systems.
  • Strong scripting skills (PowerShell, Python, Bash, etc.) for automation and integration.
  • Solid knowledge of security frameworks and regulatory standards (e.g., NIST, ISO 27001, CIS Controls, SOX).

Preferred Qualifications:

  • CyberArk or BeyondTrust certifications (e.g., CyberArk Trustee, Defender, Sentry; BeyondTrust Certified Admin).
  • Experience with cloud-native PAM solutions or containerized environments.
  • Exposure to DevOps tools and CI/CD pipelines.
  • Experience in regulated industries (financial services, healthcare, government
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.