Director PAM Engineering

• We are seeking a strategic leader to drive the functional and technical design of Privileged Access Management (PAM) systems, with a strong emphasis on HashiCorp Vault and modern secrets management practices.
• This role requires deep expertise in integrating business services with security controls and collaborating across IT, business, and industry partners.
• In this role, you will be responsible for the functional and technical design of business systems; integration of business services & information security; driving industry-specific best practices & standards; understanding regulatory compliance needs; coordinating test planning & execution; providing leadership to AD teams and acting as technology liaison to all IT areas within xxxx, to the business partners, and to the industry. Leading projects, teams, code reviews are required to be able to lead by example.

RESPONSIBILITIES:

• As an expert design and engineering team, your mission is to help lead our team of innovators and technologists toward crafting next-generation solutions that improve the way our business is run.
• Participate in the development and deployment of Privileged Access Management (PAM) solutions.
• Build and implement PAM policies and procedures, ensuring alignment with industry standard methodologies and regulatory requirements.
• Develop and lead the PAM roadmap, including technology upgrades, new features, and integrations with enterprise systems.
• Lead and maintain the PAM platform, including session management, credential management, policy enforcement, and secure access workflows.
• Define and incorporate performance, scalability, availability, resiliency, security, maintainability, support, testing, and cost requirements into technology selection and application design decisions.
• Define approaches for modernizing legacy applications, including migration to public or private cloud infrastructure.
• Lead engineering design practices within the software development organization.
• Conduct design review sessions and provide architectural mentorship.
• Collaborate with Infrastructure and Solution Architecture teams to select efficient hosting environments.
• Emphasize industry practices such as loose coupling of applications, standardization, APIs, reusability, isolation, extensibility, and consistency of solutions during architectural planning.
• Identify and address non-functional requirements for platform consumers.
• Ensure solutions adhere to organizational and industry security policies and standards.
• Conduct proof-of-concept evaluations for tools and technologies relevant to PAM and security architecture.

QUALIFICATIONS:

• Minimum of 10+ years of experience in Information Security with at least 5 years in Privileged Access Management or Secrets Management
• Bachelor s degree in Computer Science, Information Systems or a related field and/or equivalent experience
• Experience leading engineering teams a direct managerial role.
• Proven leadership experience guiding both junior and senior engineers and architects to establish a unified design and engineering philosophy.
• Ability to define and promote design tenets for PAM and secrets management using vendor-agnostic principles.
• Hands-on experience with HashiCorp Vault in enterprise environments, including deployment, policy management, and integration with cloud-native and hybrid systems.
• Familiarity with other PAM tools such as Bravura and CyberArk is a plus, but the primary focus is on HashiCorp Vault.
• Expertise in leading PAM patterns for both human and machine identities, including secure onboarding, credential rotation, and access workflows tailored to each identity type.
• Strong understanding of secrets management at scale, including dynamic secrets, lease management, and audit logging.
• Deep knowledge of PKI, certificate lifecycle management, and machine identity in on-perm and cloud-native environments.
• Experience leading multi-functional teams through modernization and transformation initiatives.
• Ability to interpret and contribute to architectural diagrams and solution designs.
• Sophisticated understanding of the privileged user lifecycle and controls, using a generic PAM framework rather than tool-specific implementations.
• Experience with IAM and PAM concepts across AWS, Azure, and/or Google Cloud Platform.
• Proven track record to fix and resolve sophisticated issues related to PAM solutions and their integration with enterprise applications.
• Strong communication skills to translate technical concepts for vendors, IT leadership, and multi-functional teams.
• Ability to collaborate with team members at all levels to define and deliver PAM services aligned with security standard processes.